75 matches found
CVE-2026-5205
creationtimestamp| type| source ---|---|--- 2026-03-31 19:36:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miewehc6cf25...
CVE-2026-5205
A vulnerability was identified in chatwoot up to 4.11.2. Affected by this vulnerability is the function Webhooks::Trigger in the library lib/webhooks/trigger.rb of the component Webhook API. Such manipulation of the argument url leads to server-side request forgery. The attack can be launched...
ECHO-5827-8B0B-5205
Bulletin has no description...
CVE-2025-5205
creationtimestamp| type| source ---|---|--- 2025-05-26 21:41:48+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq45bqbupz52 2025-05-26 21:48:27+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17579 2025-05-26...
CVE-2025-5205
A vulnerability classified as critical has been found in 1000 Projects Daily College Class Work Report Book 1.0. Affected is an unknown function of the file /dcwrentry.php. The manipulation of the argument Date leads to sql injection. It is possible to launch the attack remotely. The exploit has...
CVE-2025-5205 1000 Projects Daily College Class Work Report Book dcwr_entry.php sql injection
A vulnerability classified as critical has been found in 1000 Projects Daily College Class Work Report Book 1.0. Affected is an unknown function of the file /dcwrentry.php. The manipulation of the argument Date leads to sql injection. It is possible to launch the attack remotely. The exploit has...
Linux Distros Unpatched Vulnerability : CVE-2017-5205
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ISAKMP parser in tcpdump before 4.9.0 has a buffer overflow in print-isakmp.c:ikev2eprint. CVE-2017-5205 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2018-5205
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When using incomplete escape codes, Irssi before 1.0.6 may access data beyond the end of the string. CVE-2018-5205 Note that Nessus relies on the presence of th...
CVE-2024-5205
The Videojs HTML5 Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's videojsvideo shortcode in all versions up to, and including, 1.1.11 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...
Malicious code in wlwz-2312-5205 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b38ec0f0cda1be1a6a10d5d79b046c90e944093060e41fbe4e771de72ded5463 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2023-5205
creationtimestamp| type| source ---|---|--- 2023-10-21 12:35:50+00:00| seen| https://t.me/cibsecurity/72728...
CVE-2023-5205
The Add Custom Body Class plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'addcustombodyclass' value in versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2023-5205
CVE-2023-5205 concerns the WordPress plugin Add Custom Body Class, affected <= 1.4.1. The vulnerability is a stored Cross-Site Scripting (XSS) flaw caused by insufficient input sanitization and output escaping of the add_custom_body_class parameter, allowing authenticated users with contributo...
CVE-2023-5205 Add Custom Body Class <= 1.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Add Custom Body Class plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'addcustombodyclass' value in versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
WordPress Add Custom Body Class Plugin <= 1.4.1 is vulnerable to Cross Site Scripting (XSS)
Software Add Custom Body Class Type Plugin Vulnerable versions = 1.4.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5205 Patch priority Low CVSS severity Low 6.4 Developer Claim ownership PSID 55c282d5e4c0 Credits Francesco Carlucci...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM : Tcpreplay vulnerabilities (USN-5205-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5205-1 advisory. It was discovered that Tcpreplay incorrectly handled certain specially crafted packet capture input when processed by...
RHEL 9 : firefox (RHSA-2023:5205)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:5205 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...
BELL-CVE-2017-5205 CVE-2017-5205 does not affect BellSoft software
Bulletin has no description...
Ubuntu: Security Advisory (USN-5205-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware: Security Advisory (SSA:2017-041-04)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...