CVE-2026-5144

creationtimestamp| type| source ---|---|--- 2026-04-11 02:12:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mj6r6feokr2o 2026-04-11 03:21:49+00:00| seen| Telegram/-uyrs94fGKBZTNu2mzMK-L-9Rc5lrbCygfSEFHI7W39U14 2026-04-11 05:00:48+00:00| seen|...

CVE-2025-5144

The The Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-date-’ parameters in all versions up to, and including, 6.13.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

CVE-2025-5144

creationtimestamp| type| source ---|---|--- 2025-06-11 13:30:56+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18069...

CVE-2025-5144 The Events Calendar <= 6.13.2 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting

The The Events Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-date-’ parameters in all versions up to, and including, 6.13.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

WordPress The Events Calendar plugin <= 6.13.2 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ DOM-Based Stored Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin The Events Calendar versions = 6.13.2...

CVE-2020-5144

SonicWall Global VPN client version 4.10.4.0314 and earlier allows unprivileged windows user to elevate privileges to SYSTEM through loaded process hijacking vulnerability...

CVE-2013-5144

Passcode Lock in Apple iOS before 7.0.3 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by tapping the emergency-call button during a certain notification and camera-pane state to trigger a NULL pointer...

CVE-2010-5144

The ISAPI Filter plug-in in Websense Enterprise, Websense Web Security, and Websense Web Filter 6.3.3 and earlier, when used in conjunction with a Microsoft ISA or Microsoft Forefront TMG server, allows remote attackers to bypass intended filtering and monitoring activities for web traffic via an...

CVE-2020-5144

creationtimestamp| type| source ---|---|--- 2024-09-16 16:13:19+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2525...

RHEL 6 : django (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - python-django: DNS rebinding vulnerability when 'DEBUG=True' CVE-2016-9014 - Django before 1.4.21, 1.5.x...

CVE-2019-5144

creationtimestamp| type| source ---|---|--- 2024-03-11 15:46:37+00:00| seen| https://t.me/ctinow/204788...

CVE-2023-5144

creationtimestamp| type| source ---|---|--- 2023-09-25 02:33:45+00:00| seen| https://t.me/cibsecurity/70969...

CVE-2023-5144 D-Link DAR-7000/DAR-8000 updateos.php unrestricted upload

UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, was found in D-Link DAR-7000 and DAR-8000 up to 20151231. Affected is an unknown function of the file /sysmanage/updateos.php. The manipulation of the argument fileupload leads to unrestricted upload. It is possible to...

CVE-2023-5144

An advisory describes CVE-2023-5144 as a critical vulnerability in D-Link DAR-7000/DAR-8000 (up to 2015-12-31) affecting an unknown function in /sysmanage/updateos.php. Manipulating the file_upload parameter leads to unrestricted upload, enabling remote execution. The affected devices are end-of-...

Rocky Linux 8 : .NET 6.0 (RLSA-2023:5144)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:5144 advisory. - .NET Core and Visual Studio Denial of Service Vulnerability CVE-2023-36799 Note that Nessus has not tested for this issue but has instead relied only on the...

AlmaLinux 8 : .NET 6.0 (ALSA-2023:5144)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:5144 advisory. - .NET Core and Visual Studio Denial of Service Vulnerability CVE-2023-36799 Note that Nessus has not tested for this issue but has instead relied only on the...

Debian: Security Advisory (DLA-272-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2018-0338)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2018-0203)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2018-0202)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...