MINI-XQ4R-5238-JF9V

Bulletin has no description...

CVE-2026-5238

creationtimestamp| type| source ---|---|--- 2026-04-01 01:15:30+00:00| published-proof-of-concept| Telegram/I7gM78d3mp9wugorspZkHmlDKuo-8DymFEq-4a44ip7mrow 2026-04-01 02:58:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mifp3tpzjc2i...

EUVD-2001-0669

Malware in sbrugna...

CVE-2025-5238

creationtimestamp| type| source ---|---|--- 2025-06-14 09:35:11+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18373 2025-06-14 13:15:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrkzvbb5wy2a...

CVE-2023-5238

The EventPrime WordPress plugin before 3.2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to an HTML Injection on the plugin in the search area of the website...

CentOS 6 : thunderbird (RHSA-2020:5238)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:5238 advisory. - Side-channel information leakage in graphics in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to leak cross-origin data via a crafted...

CGA-745W-5238-QHQ6

Bulletin has no description...

CVE-2024-5238 Campcodes Complete Web-Based School Management System timetable_insert_form.php sql injection

A vulnerability, which was classified as critical, was found in Campcodes Complete Web-Based School Management System 1.0. This affects an unknown part of the file /view/timetableinsertform.php. The manipulation of the argument grade leads to sql injection. It is possible to initiate the attack...

CVE-2024-5238

CVE-2024-5238 affects Campcodes Complete Web-Based School Management System 1.0. The vulnerability is an SQL injection in an unknown part of /view/timetable_insert_form.php triggered by manipulating the grade parameter. It can be exploited remotely and has publicly disclosed exploit information (...

CVE-2023-5238 EventPrime < 3.2.0 - Reflected HTML Injection on keyword parameter

The EventPrime WordPress plugin before 3.2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to an HTML Injection on the plugin in the search area of the website...

CVE-2023-5238

The CVE-2023-5238 entry corresponds to the EventPrime WordPress plugin prior to version 3.2.0, where a parameter is not sanitized/escaped before being echoed in the plugin’s search page, causing a reflected HTML injection. Multiple sources (NVD, Red Hat, CVE lists, WPVulndb/PatchStack references)...

CVE-2023-5238 EventPrime < 3.2.0 - Reflected HTML Injection on keyword parameter

The EventPrime WordPress plugin before 3.2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to an HTML Injection on the plugin in the search area of the website...

WordPress EventPrime Plugin < 3.2.0 is vulnerable to Other Vulnerability Type

Software EventPrime Type Plugin Vulnerable versions 3.2.0 Fixed in 3.2.0 OWASP Top 10 A3: Injection Classification Other Vulnerability Type CVE CVE-2023-5238 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 5e5aac5b95f3 Credits Miguel Santareno Required privilege...

SUSE CVE-2016-5238

The getcmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash via vectors related to reading from the information transfer buffer in non-DMA mode...

Ubuntu: Security Advisory (USN-5238-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5238.me Cross Site Scripting vulnerability OBB-2542534

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

AlmaLinux 8 : virt:rhel and virt-devel:rhel (ALSA-2021:5238)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:5238 advisory. QEMU: off-by-one error in modesensepage in hw/scsi/scsi-disk.c CVE-2021-3930 QEMU: net: e1000: infinite loop while processing transmit descriptors...

Oracle Linux 8 : virt:ol / and / virt-devel:rhel (ELSA-2021-5238)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-5238 advisory. - Resolves: bz2025605 CVE-2021-3930 virt:rhel/qemu-kvm: QEMU: off-by-one error in modesensepage in hw/scsi/scsi-disk.c rhel-8.5.0.z Tenable has extract...

CentOS 8 : virt:rhel and virt-devel:rhel (CESA-2021:5238)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:5238 advisory. - QEMU: net: e1000: infinite loop while processing transmit descriptors CVE-2021-20257 - QEMU: off-by-one error in modesensepage in hw/scsi/scsi-disk.c...

SUSE: Security Advisory (SUSE-SU-2016:2528-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...