CVE-2026-5226

creationtimestamp| type| source ---|---|--- 2026-04-11 02:14:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mj6rbqz2cv23 2026-04-19 23:33:06+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mjv4hdt2ad2h...

MiracleLinux 7 : flatpak-1.0.2-5.el7 (AXSA:2019-3881:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-3881:02 advisory. flatpak: Sandbox bypass via IOCSTI incomplete fix for CVE-2017-5226 CVE-2019-10063 Tenable has extracted the preceding description block directly fr...

EUVD-2019-2124

Malware in sbrugna...

CVE-2025-5226

creationtimestamp| type| source ---|---|--- 2025-05-27 03:36:07+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq4r3iw7zj52 2025-05-27 13:48:23+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17632...

CVE-2025-5226 PHPGurukul Small CRM change-password.php sql injection

A vulnerability has been found in PHPGurukul Small CRM 3.0 and classified as critical. This vulnerability affects unknown code of the file /admin/change-password.php. The manipulation of the argument oldpass leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2025-5226

CVE-2025-5226 concerns PHPGurukul Small CRM 3.0. The vulnerability affects the file /admin/change-password.php, where manipulation of the parameter oldpass leads to an SQL injection. The issue is remote and has public exploits disclosed. Several sources corroborate a SQL injection risk with this ...

CVE-2019-5226

P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193C00E190R2P1, versions earlier than VOGUE-AL00A 9.1.0.193C00E190R2P1, versions earlier than Hima-AL00B 9.1.0.135C00E133R2P1 and HiSuite with versions earlier than HiSuite 9.1.0.305 have a version downgrade...

CVE-2024-5226 Fuse Social Floating Sidebar <= 5.4.10 - Authenticated (Author+) Stored Cross-Site Scripting via File Upload

The Fuse Social Floating Sidebar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the file upload functionality in all versions up to, and including, 5.4.10 due to insufficient validation of SVG files. This makes it possible for authenticated attackers, with contributor-level...

WordPress Fuse Social Floating Sidebar Plugin <= 5.4.10 is vulnerable to Cross Site Scripting (XSS)

Software Fuse Social Floating Sidebar Type Plugin Vulnerable versions = 5.4.10 Fixed in 5.4.11 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5226 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7b6ebef58b11 Credits wesley...

CVE-2019-5226

creationtimestamp| type| source ---|---|--- 2024-03-05 15:52:02+00:00| seen| https://t.me/ctinow/200375...

CentOS 9 : flatpak-1.12.8-1.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the flatpak-1.12.8-1.el9 build changelog. - Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Versions prior to 1.10.8, 1.12.8,...

CVE-2023-5226

creationtimestamp| type| source ---|---|--- 2023-12-21 18:11:53+00:00| seen| https://t.me/ctinow/157862 2025-05-22 04:44:28+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17251...

GitLab 0 < 16.4.3 / 16.5 < 16.5.3 / 16.6 < 16.6.1 (CVE-2023-5226)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. Under certain circumstances, ...

CVE-2023-5226

Removed by vendor...

CVE-2023-5226

CVE-2023-5226 affects GitLab versions before 16.4.3, 16.5 before 16.5.3, and 16.6 before 16.6.1. Under certain conditions, a malicious actor can bypass prohibitive branch checks by using a specially crafted branch name to manipulate repository content in the UI. The connected sources indicate thi...

CVE-2023-5226 Improper Control of Generation of Code ('Code Injection') in GitLab

An issue has been discovered in GitLab affecting all versions before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. Under certain circumstances, a malicious actor bypass prohibited branch checks using a specially crafted branch name to...

Oracle Linux 9 : flatpak (ELSA-2023-6518)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6518 advisory. 1.12.8-1 - Update to 1.12.8 CVE-2023-28100, CVE-2023-28101 Resolves: 2180312, 2221792 Tenable has extracted the preceding description block directly fr...

CVE-2013-5226

creationtimestamp| type| source ---|---|--- 2023-11-04 08:43:40+00:00| seen| https://t.me/cibsecurity/70468...

CVE-2013-5226

Rejected reason: This candidate is unused by its CNA...

CVE-2017-5226

creationtimestamp| type| source ---|---|--- 2023-03-16 19:30:51+00:00| seen| https://t.me/cibsecurity/60169 2026-01-08 16:43:07+00:00| seen| https://gist.github.com/sloonz/ef282a1f53366e1ed6f5cb848de015ba 2026-04-14 17:12:31+00:00| seen|...