DEBIAN-CVE-2026-5124

A security vulnerability has been detected in osrg GoBGP up to 4.3.0. Affected is the function BGPHeader.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component BGP Header Handler. The manipulation leads to improper access controls. Remote exploitation of the attack is possible. The...

CVE-2026-5124

A security vulnerability has been detected in osrg GoBGP up to 4.3.0. Affected is the function BGPHeader.DecodeFromBytes of the file pkg/packet/bgp/bgp.go of the component BGP Header Handler. The manipulation leads to improper access controls. Remote exploitation of the attack is possible. The...

CVE-2026-5124

The CVE-2026-5124 entry concerns osrg GoBGP up to 4.3.0. Affected is BGPHeader.DecodeFromBytes in pkg/packet/bgp/bgp.go (BGP Header Handler). The issue is improper access controls with remote exploitation possible, reported as high complexity and low ease of exploitation. A patch is identified by...

Mozilla Firefox < 58.0.1

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 58.0.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2018-05 advisory. - Sanitize HTML fragments created for chrome-privileged documentsCVE-2018-5124 CVE-2018-5124 Note that Nessus has not...

EUVD-2023-33249

Malicious code in bioql PyPI...

CVE-2025-5124

Sony SNC-M1, SNC-M3, SNC-RZ25N, SNC-RZ30N, SNC-DS10, SNC-CS3N and SNC-RX570N (versions up to 1.30) are affected by a vulnerability in the Administrative Interface where default credentials can be used. The issue allows remote initiation, with high attack complexity and a high impact on confidenti...

CVE-2025-5124

creationtimestamp| type| source ---|---|--- 2025-05-23 18:07:08+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114558476459630627 2025-05-24 13:44:56+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17488 2025-05-24 13:48:15+00:00| seen|...

CVE-2023-5124

The Page Builder: Pagelayer WordPress plugin before 1.8.0 doesn't prevent attackers with administrator privileges from inserting malicious JavaScript inside a post's header or footer code, even when unfilteredhtml is disallowed, such as in multi-site WordPress configurations...

CVE-2023-29711

An incorrect access control issue was discovered in Interlink PSG-5124 version 1.0.4, allows attackers to execute arbitrary code via crafted GET request...

CVE-2011-5124

Stack-based buffer overflow in the BCAAA component before build 60258, as used by Blue Coat ProxySG 4.2.3 through 6.1 and ProxyOne, allows remote attackers to execute arbitrary code via a large packet to the synchronization port 16102/tcp...

CVE-2009-5124

The Antivirus component in Comodo Internet Security before 3.11.108364.552 allows remote attackers to cause a denial of service application crash via a crafted packed file...

CVE-2024-5124

creationtimestamp| type| source ---|---|--- 2024-12-03 03:55:45+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/9294...

CVE-2024-5124 Timing Attack Vulnerability in gaizhenbiao/chuanhuchatgpt

A timing attack vulnerability exists in the gaizhenbiao/chuanhuchatgpt repository, specifically within the password comparison logic. The vulnerability is present in version 20240310 of the software, where passwords are compared using the '=' operator in Python. This method of comparison allows a...

Ruijie Switch PSG-5124 26293 - Remote Code Execution Exploit

Exploit Title: Ruijie Switch PSG-5124 26293 - Remote Code Execution RCE - Shodan Dork: http.htmlhash:-1402735717 - Fofa Dork: body="img/freeloginge.gif" && body="./img/loginbg.gif" - Exploit Author: ByteHunter - Email: email protected - Version: PSG-5124LINK SOFTWARE RELEASE:26293 - Tested on:...

Ruijie Switch PSG-5124 26293 - Remote Code Execution (RCE)

Exploit Title: Ruijie Switch PSG-5124 26293 - Remote Code Execution RCE - Shodan Dork: http.htmlhash:-1402735717 - Fofa Dork: body="img/freeloginge.gif" && body="./img/loginbg.gif" - Exploit Author: ByteHunter - Email: [email protected] - Version: PSG-5124LINK SOFTWARE RELEASE:26293 - Tested...

Ruijie Switch PSG-5124 26293 Remote Code Execution

Exploit Title: Ruijie Switch PSG-5124 26293 - Remote Code Execution RCE - Shodan Dork: http.htmlhash:-1402735717 - Fofa Dork: body="img/freeloginge.gif" && body="./img/loginbg.gif" - Exploit Author: ByteHunter - Email: [email protected] - Version: PSG-5124LINK SOFTWARE RELEASE:26293 - Tested...

WordPress PageLayer Plugin <= 1.7.9 is vulnerable to Cross Site Scripting (XSS)

Software PageLayer Type Plugin Vulnerable versions = 1.7.9 Fixed in 1.8.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5124 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID efa5efc51ff9 Credits Marc Montpas Required privileg...

CVE-2023-5124

creationtimestamp| type| source ---|---|--- 2024-01-29 16:26:14+00:00| seen| https://t.me/ctinow/175361 2024-02-05 19:16:53+00:00| seen| https://t.me/ctinow/179430 2024-02-21 16:11:27+00:00| seen| https://t.me/ctinow/189709...

CVE-2023-5124 PageLayer < 1.8.0 - Author+ Stored XSS

The Page Builder: Pagelayer WordPress plugin before 1.8.0 doesn't prevent attackers with administrator privileges from inserting malicious JavaScript inside a post's header or footer code, even when unfilteredhtml is disallowed, such as in multi-site WordPress configurations...

CVE-2023-5124

The CVE-2023-5124 issue affects Page Layer (Pagelayer) Page Builder for WordPress up to version 1.7.9. The vulnerability allows an attacker with Author+/Administrator privileges to inject malicious JavaScript into a post’s header/footer code, even when unfiltered_html is disallowed (notably in mu...