101 matches found
ECHO-A700-C851-5103
Bulletin has no description...
CVE-2026-5103 Totolink A3300R cstecgi.cgi setUPnPCfg command injection
A weakness has been identified in Totolink A3300R 17.0.0cu.557b20221024. This issue affects the function setUPnPCfg of the file /cgi-bin/cstecgi.cgi. This manipulation of the argument enable causes command injection. The attack is possible to be carried out remotely. The exploit has been made...
EUVD-2014-5103
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2017-5103
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use of an uninitialized value in Skia in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to obtain potentially sensiti...
CVE-2025-5103
The Ultimate Gift Cards for WooCommerce plugin for WordPress is vulnerable to boolean-based SQL Injection via the 'defaultprice' and 'productid' parameters in all versions up to, and including, 3.1.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on...
CVE-2025-5103 Ultimate Gift Cards for WooCommerce <= 3.1.4 - Authenticated (Administrator+) SQL Injection via wps_wgm_save_post Function
The Ultimate Gift Cards for WooCommerce plugin for WordPress is vulnerable to boolean-based SQL Injection via the 'defaultprice' and 'productid' parameters in all versions up to, and including, 3.1.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on...
CVE-2025-5103
CVE-2025-5103 affects the WordPress plugin Ultimate Gift Cards for WooCommerce. Many versions up to 3.1.4 are vulnerable to boolean-based SQL injection via the default_price and product_id parameters due to insufficient escaping and lack of prepared statements. Exploitation requires Administrator...
CVE-2025-5103 Ultimate Gift Cards for WooCommerce <= 3.1.4 - Authenticated (Administrator+) SQL Injection via wps_wgm_save_post Function
The Ultimate Gift Cards for WooCommerce plugin for WordPress is vulnerable to boolean-based SQL Injection via the 'defaultprice' and 'productid' parameters in all versions up to, and including, 3.1.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on...
WordPress Ultimate Gift Cards for WooCommerce plugin <= 3.1.4 - Authenticated (Administrator+) SQL Injection via wps_wgm_save_post Function vulnerability
Authenticated Administrator+ SQL Injection via wpswgmsavepost Function vulnerability discovered by Abdulaziz Alzamil in WordPress Plugin Ultimate Gift Cards For WooCommerce versions = 3.1.4...
CVE-2023-5103
Improper Restriction of Rendered UI Layers or Frames in RDT400 in SICK APU allows an unprivileged remote attacker to potentially reveal sensitive information via tricking a user into clicking on an actionable item using an iframe...
CVE-2009-5103
Cross-site scripting XSS vulnerability in ATCOM Netvolution 1.0 ASP allows remote attackers to inject arbitrary web script or HTML via the email variable...
CVE-2024-5103
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /view/studentfirstpayment.php. The manipulation of the argument grade leads to sql injection. The attack...
CVE-2024-5103
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /view/studentfirstpayment.php. The manipulation of the argument grade leads to sql injection. The attack...
CVE-2024-5103
CVE-2024-5103 affects Campcodes Complete Web-Based School Management System v1.0. The vulnerability is an SQL injection in the file /view/student_first_payment.php caused by manipulation of the grade parameter. It is exploitable remotely, with the exploit publicly disclosed. Details across source...
MAL-2024-632 Malicious code in wlwz-2312-5103 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware faf9130e46e470d7b48e49bc9484c898a3ba384396cf0370e9de21be2cdb6a20 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wlwz-2312-5103 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware faf9130e46e470d7b48e49bc9484c898a3ba384396cf0370e9de21be2cdb6a20 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2023-5103
Improper Restriction of Rendered UI Layers or Frames in RDT400 in SICK APU allows an unprivileged remote attacker to potentially reveal sensitive information via tricking a user into clicking on an actionable item using an iframe...
CVE-2023-5103
The CVE-2023-5103 issue affects SICK APU’s RDT400, where improper restriction of rendered UI layers or frames can allow an unprivileged remote attacker to disclose sensitive information by tricking a user into clicking an actionable item in an iframe. Documents consistently identify the affected ...
CVE-2023-5103
Improper Restriction of Rendered UI Layers or Frames in RDT400 in SICK APU allows an unprivileged remote attacker to potentially reveal sensitive information via tricking a user into clicking on an actionable item using an iframe...
CVE-2023-5103
Improper Restriction of Rendered UI Layers or Frames in RDT400 in SICK APU allows an unprivileged remote attacker to potentially reveal sensitive information via tricking a user into clicking on an actionable item using an iframe...