Skysa App Bar 1.04 - Cross-Site Scripting

A cross-site scripting vulnerability in skysa-official/skysa.php in Skysa App Bar Integration plugin, possibly before 1.04, for WordPress allows remote attackers to inject arbitrary web script or HTML via the submit parameter. id: CVE-2011-5179 info: name: Skysa App Bar 1.04 - Cross-Site Scriptin...

CVE-2026-5179

creationtimestamp| type| source ---|---|--- 2026-03-31 07:15:33+00:00| published-proof-of-concept| Telegram/1iWaApiUM0jOADSkCxbAhXY3iS1qKmB0s9RsJgnPCTY34SA 2026-03-31 07:30:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3midnsbjtwx2q...

CVE-2026-5179 SourceCodester Simple Doctors Appointment System login.php sql injection

A vulnerability was detected in SourceCodester Simple Doctors Appointment System 1.0. This affects an unknown part of the file /admin/login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. The exploit is now public and may be used...

CVE-2026-5179 SourceCodester Simple Doctors Appointment System login.php sql injection

A vulnerability was detected in SourceCodester Simple Doctors Appointment System 1.0. This affects an unknown part of the file /admin/login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. The exploit is now public and may be used...

CVE-2026-5179

A vulnerability was detected in SourceCodester Simple Doctors Appointment System 1.0. This affects an unknown part of the file /admin/login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. The exploit is now public and may be used...

CVE-2025-5179

creationtimestamp| type| source ---|---|--- 2025-05-26 10:47:23+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17550 2025-05-26 13:44:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lq3cmgxb4u2e...

CVE-2025-5179

A vulnerability classified as problematic was found in Realce Tecnologia Queue Ticket Kiosk up to 20250517. Affected by this vulnerability is an unknown functionality of the file /adm/index.php of the component Cadastro de Administrador Page. The manipulation of the argument Name/Usuário leads to...

CVE-2025-5179

The CVE-2025-5179 entry describes a cross-site scripting vulnerability in Realce Tecnologia Queue Ticket Kiosk up to 20250517. The flaw affects an unknown functionality in /adm/index.php of the Cadastro de Administrador Page, where manipulating the Name/Usuário parameter enables XSS. The issue is...

CVE-2025-5179 Realce Tecnologia Queue Ticket Kiosk Cadastro de Administrador Page index.php cross site scripting

A vulnerability classified as problematic was found in Realce Tecnologia Queue Ticket Kiosk up to 20250517. Affected by this vulnerability is an unknown functionality of the file /adm/index.php of the component Cadastro de Administrador Page. The manipulation of the argument Name/Usuário leads to...

CVE-2020-5179

Comtech Stampede FX-1010 7.4.3 devices allow remote authenticated administrators to execute arbitrary OS commands by navigating to the Diagnostics Ping page and entering shell metacharacters in the Target IP address field. In some cases, authentication can be achieved with the comtech password fo...

CVE-2010-5179

Race condition in Trend Micro Internet Security Pro 2010 17.50.1647.0000 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memor...

CVE-2024-5179

The Cowidgets – Elementor Addons plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.1.2 via the 'itemstyle' and 'style' parameters. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute...

CVE-2020-5179

creationtimestamp| type| source ---|---|--- 2024-03-19 10:04:45+00:00| seen| https://t.me/ctinow/211304...

libxml2 security update

2.9.7-18 - Fix CVE-2023-39615 RHEL-5179 2.9.7-17 - Fix CVE-2023-28484 2186692 - Fix CVE-2023-29469 2186692...

CVE-2023-5179

Open Design Alliance Drawings SDK (pre-2024.10) is affected by CVE-2023-5179. A crafted DGN file can corrupt the MiniFat sector start value, causing an out-of-bounds read. Consequences described include crash/denial-of-service and potential code execution. The description does not specify a confi...

CVE-2023-5179

An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack Crash, Exit, or Restart o...

Wago PFC200 iocheckd service 'I/O-Check' cache Code Execution (CVE-2019-5179)

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service I/O-Check' functionality of WAGO PFC 200 Firmware version 03.02.0214. An attacker can send a specially crafted packet to trigger the parsing of this cache file. This plugin only works with Tenable.ot...

Debian: Security Advisory (DSA-5179-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2022-21069 · Totolink · Totolink T6

Name of the Vulnerable Software and Affected Versions: TOTOLINK T6 version 4.1.9cu.5179 B20201015 Description: A stack overflow issue was discovered via the desc parameter in the function FUN 00413be4. This issue affects the TOTOLINK T6 device. Recommendations: For TOTOLINK T6 version 4.1.9cu.517...

TOTOLINK T6 缓冲区错误漏洞

TOTOLINK T6 is a wireless dual-band router from China Gion Electronics TOTOLINK.A stack overflow vulnerability exists in TOTOLINK T6 V4.1.9cu.5179B20201015, which stems from the cloneMac parameter in the FUN0041621c function that does not check its length for input data. A remote attacker can...