CVE-2025-5114

A vulnerability has been found in easysoft zentaopms 21.520250307 and classified as critical. This vulnerability affects the function Edit of the file /index.php?m=editor&f=edit&filePath=cGhhcjovLy9ldGMvcGFzc3dk&action=edit of the component Committer. The manipulation of the argument filePath lea...

CVE-2025-5114 easysoft zentaopms Editor index.php edit deserialization

A vulnerability has been found in easysoft zentaopms 21.520250307 and classified as critical. This vulnerability affects the function Edit of the file /index.php?m=editor&f=edit&filePath=cGhhcjovLy9ldGMvcGFzc3dk&action=edit of the component Committer. The manipulation of the argument filePath lea...

CVE-2025-5114

The CVE-2025-5114 entry affects easysoft zentaopms 21.5_20250307. According to PT-2025-22798 (and corroborating entries), the vulnerability resides in the Edit function of the Committer component, specifically the endpoint /index.php?m=editor&f=edit&filePath=…&action=edit, where manipulating the ...

CVE-2013-5114

LastPass prior to 2.5.1 allows secure wipe bypass...

CVE-2025-0431 Enterprise Protection Backslash URL Rewrite Bypass

Enterprise Protection contains a vulnerability in URL rewriting that allows an unauthenticated remote attacker to send an email which bypasses URL protections impacting the integrity of recipient's email. This occurs due to improper filtering of backslashes within URLs and affects all versions of...

Linux Distros Unpatched Vulnerability : CVE-2016-5114

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sapi/fpm/fpm/fpmlog.c in PHP before 5.5.31, 5.6.x before 5.6.17, and 7.x before 7.0.2 misinterprets the semantics of the snprintf return value, which allows...

CVE-2024-5114 Campcodes Complete Web-Based School Management System teacher_attendance_history1.php sql injection

A vulnerability classified as critical has been found in Campcodes Complete Web-Based School Management System 1.0. Affected is an unknown function of the file /view/teacherattendancehistory1.php. The manipulation of the argument index leads to sql injection. It is possible to launch the attack...

CVE-2024-5114

The CVE-2024-5114 entry affects Campcodes Complete Web-Based School Management System 1.0, with a vulnerability in /view/teacher_attendance_history1.php where manipulation of the index parameter enables SQL injection. The flaw is exploitable remotely and has been disclosed publicly. Connected doc...

CVE-2019-5114

creationtimestamp| type| source ---|---|--- 2024-01-29 09:11:07+00:00| seen| https://t.me/ctinow/175110...

CVE-2023-5114

creationtimestamp| type| source ---|---|--- 2023-10-31 15:50:53+00:00| seen| https://t.me/cibsecurity/73221...

CVE-2023-5114

CVE-2023-5114 affects the WordPress idbbee plugin up to version 1.0, exposing a stored XSS via the idbbee shortcode due to insufficient input sanitization/output escaping. Exploitation requires authenticated access at contributor level or higher, enabling injection of scripts that run when users ...

WordPress idbbee Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software idbbee Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5114 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 5bc71d675255 Credits István Márton Required privilege...

K41204355: PHP vulnerability CVE-2016-5114

Security Advisory Description sapi/fpm/fpm/fpmlog.c in PHP before 5.5.31, 5.6.x before 5.6.17, and 7.x before 7.0.2 misinterprets the semantics of the snprintf return value, which allows attackers to obtain sensitive information from process memory or cause a denial of service out-of-bounds read...

SUSE CVE-2018-5114

If an existing cookie is changed to be "HttpOnly" while a document is open, the original value remains accessible through script until that document is closed. Network requests correctly use the changed HttpOnly cookie. This vulnerability affects Firefox 58...

Debian DSA-5114-1 : chromium - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5114 advisory. - Type confusion in V8 in Google Chrome prior to 100.0.4896.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-1232 Note...

Mageia: Security Advisory (MGASA-2017-0423)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mozilla Firefox Security Advisory (MFSA2018-02) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

SUSE: Security Advisory (SUSE-SU-2016:1638-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-5114

CVE-2020-5114 entry is rejected/not used and does not represent an active vulnerability.

CVE-2020-5114

...