CVE-2026-5147

creationtimestamp| type| source ---|---|--- 2026-03-30 21:00:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3micklfjq5o2i 2026-03-30 21:21:40+00:00| seen| Telegram/3uob0OgNXCPySF5ZgiHiYbQAvLr6RIUarGC854yFCH2MAgQ...

CVE-2026-5147 YunaiV yudao-cloud get-by-website sql injection

A security flaw has been discovered in YunaiV yudao-cloud up to 2026.01. This affects an unknown part of the file /admin-api/system/tenant/get-by-website. The manipulation of the argument Website results in sql injection. It is possible to launch the attack remotely. The exploit has been released...

EUVD-2015-7465

Malware in sbrugna...

CVE-2025-5147

creationtimestamp| type| source ---|---|--- 2025-05-25 11:43:21+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpylf24ajrv2 2025-05-25 11:45:54+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17506 2025-05-25...

CVE-2020-5147

SonicWall NetExtender Windows client vulnerable to unquoted service path vulnerability, this allows a local attacker to gain elevated privileges in the host operating system. This vulnerability impact SonicWall NetExtender Windows client version 10.2.300 and earlier...

CVE-2010-5147

The Remote Filtering component in Websense Web Security and Web Filter before 6.3.3 Hotfix 18 and 7.x before 7.1.1 allows remote attackers to cause a denial of service daemon exit via a large volume of traffic...

CVE-2007-5147

Multiple PHP remote file inclusion vulnerabilities in Puzzle Apps CMS 2.2.1 allow remote attackers to execute arbitrary PHP code via a URL in the MODULEDIR parameter to 1 core/modules/my/my.module.php or 2 core/modules/xml/xml.module.php; the COREROOT parameter to 3 config.loader.php, 4...

Linux Distros Unpatched Vulnerability : CVE-2009-5147

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DL::dlopen in Ruby 1.8, 1.9.0, 1.9.2, 1.9.3, 2.0.0 before patchlevel 648, and 2.1 before 2.1.8 opens libraries with tainted names. CVE-2009-5147 Note that Nessu...

CVE-2024-5147

creationtimestamp| type| source ---|---|--- 2025-02-06 02:43:29+00:00| seen| Telegram/fTsBj-4hqZUJRyHvTE-0ETX0RKjs526WCW-SUvGC6LYaW-Ok...

CVE-2024-5147

The WPZOOM Addons for Elementor Templates, Widgets plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.1.37 via the 'gridstyle' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server,...

CVE-2024-5147

The WPZOOM Addons for Elementor Templates, Widgets plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.1.37 via the 'gridstyle' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server,...

WordPress WPZOOM Addons for Elementor (Templates, Widgets) Plugin <= 1.1.37 is vulnerable to Local File Inclusion

Software WPZOOM Addons for Elementor Templates, Widgets Type Plugin Vulnerable versions = 1.1.37 Fixed in 1.1.38 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-5147 Patch priority High CVSS severity High 9 Developer Claim ownership PSID 22efc0d58f5d Credits Webbernaut...

CVE-2023-5147

UNSUPPORTED WHEN ASSIGNED A vulnerability was found in D-Link DAR-7000 up to 20151231. It has been classified as critical. This affects an unknown part of the file /sysmanage/updateos.php. The manipulation of the argument 1fileupload leads to unrestricted upload. It is possible to initiate the...

CVE-2023-5147 D-Link DAR-7000 updateos.php unrestricted upload

UNSUPPORTED WHEN ASSIGNED A vulnerability was found in D-Link DAR-7000 up to 20151231. It has been classified as critical. This affects an unknown part of the file /sysmanage/updateos.php. The manipulation of the argument 1fileupload leads to unrestricted upload. It is possible to initiate the...

CVE-2023-5147

CVE-2023-5147 affects D-Link DAR-7000 firmware up to 2015-12-31. The vulnerability resides in the /sysmanage/updateos.php file where manipulation of the argument 1_file_upload leads to an unrestricted file upload, enabling a remote attack. The issue is documented as critical and is tied to device...

CVE-2023-5147 D-Link DAR-7000 updateos.php unrestricted upload

UNSUPPORTED WHEN ASSIGNED A vulnerability was found in D-Link DAR-7000 up to 20151231. It has been classified as critical. This affects an unknown part of the file /sysmanage/updateos.php. The manipulation of the argument 1fileupload leads to unrestricted upload. It is possible to initiate the...

Debian: Security Advisory (DLA-299-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2012-5147

Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to DOM handling...

Debian DSA-5147-1 : dpkg - security update

The remote Debian 10 / 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5147 advisory. - Dpkg::Source::Archive in dpkg, the Debian package management system, before version 1.21.8, 1.20.10, 1.19.8, 1.18.26 is prone to a directory traversal vulnerability...

Ubuntu: Security Advisory (USN-5147-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...