Lucene search
K

127 matches found

OSV
OSV
added 2026/02/25 1:30 p.m.1 views

CGA-97G9-5243-WVCJ

Bulletin has no description...

8CVSS5.1AI score0.00505EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2016-5243

Malware in sbrugna...

9.3CVSS8.7AI score0.04282EPSS
Exploits0References10
OSV
OSV
added 2025/09/15 1:11 a.m.1 views

ECHO-5243-5F7F-9BA2

Bulletin has no description...

7.8CVSS9AI score0.00227EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2020-5243

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Some regexes are vulnerable to regular expression...

7.5CVSS7AI score0.02205EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/07/24 12:45 p.m.11 views

CVE-2025-5243 Arbitrary File Upload in SMG Software's Information Portal

Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in SMG Software Information Portal allows Code Injection, Upload a Web Shell to a Web Server, Code Inclusion. This issue affects Information...

10CVSS0.01536EPSS
Exploits0References2
CVE
CVE
added 2025/07/24 12:45 p.m.28 views

CVE-2025-5243

CVE-2025-5243 affects SMG Software Information Portal. Affected versions before 13.06.2025 are vulnerable to unrestricted file upload and improper neutralization of special elements in OS command contexts, enabling code injection and potential upload of a web shell leading to code inclusion. The ...

10CVSS5.3AI score0.01536EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:38 p.m.7 views

CVE-2020-5243

uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Some regexes are vulnerable to regular expression denial of service REDoS due to overlapping capture groups. This allows remote attackers to overload a server by setting the User-Agent...

7.5CVSS6.8AI score0.02205EPSS
Exploits1
Circl
Circl
added 2024/07/10 5:39 p.m.5 views

CVE-2024-5243

creationtimestamp| type| source ---|---|--- 2024-07-10 17:39:07+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/10813 2026-02-06 17:02:11+00:00| seen| https://bsky.app/profile/buherator.bsky.social/post/3me7f227wvb2b 2026-02-08 13:20:11+00:00| seen|...

7.5CVSS7.3AI score0.00815EPSS
Exploits1References5
Circl
Circl
added 2023/10/31 5:21 p.m.5 views

CVE-2023-5243

creationtimestamp| type| source ---|---|--- 2023-10-31 17:21:21+00:00| seen| https://t.me/cibsecurity/73247...

4.8CVSS6.5AI score0.00379EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/10/31 1:54 p.m.8 views

CVE-2023-5243 Login screen manager <= 3.5.2 - Admin+ Stored XSS

The Login Screen Manager WordPress plugin through 3.5.2 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.9AI score0.00379EPSS
Exploits2References1
CVE
CVE
added 2023/10/31 1:54 p.m.52 views

CVE-2023-5243

CVE-2023-5243 affects the Login Screen Manager WordPress plugin (versions up to 3.5.2). The root cause is improper sanitization/escapement of certain settings, enabling Stored XSS by high-privilege users (e.g., Admin) even with unfiltered_html disallowed. Documented impact includes stored XSS on ...

4.8CVSS5AI score0.00379EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2023/10/31 12:0 a.m.16 views

WordPress Login Screen Manager Plugin <= 3.5.2 is vulnerable to Cross Site Scripting (XSS)

Software Login Screen Manager Type Plugin Vulnerable versions = 3.5.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5243 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7d813a002456 Credits Nano Required privile...

4.8CVSS6AI score0.00379EPSS
Exploits2References2Affected Software1
NVD
NVD
added 2023/09/14 7:15 p.m.7 views

CVE-2013-5243

Rejected reason: This candidate is unused by its CNA...

6.6AI score
Exploits0
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2016-0345)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.05521EPSS
Exploits5References10
Tenable Nessus
Tenable Nessus
added 2022/01/21 12:0 a.m.29 views

Ubuntu 16.04 ESM : AIDE vulnerability (USN-5243-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5243-2 advisory. USN-5243-1 fixed a vulnerability in aide. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable has extracted the...

7.8CVSS7.6AI score0.00493EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/01/20 12:0 a.m.50 views

Ubuntu 18.04 LTS / 20.04 LTS : AIDE vulnerability (USN-5243-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5243-1 advisory. David Bouman discovered that AIDE incorrectly handled base64 operations. A local attacker could use this issue to cause AIDE to crash, resulting in a...

7.8CVSS8AI score0.00493EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2017:2525-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.3AI score0.20797EPSS
Exploits65References87
Veracode
Veracode
added 2020/03/11 1:28 a.m.18 views

Regular Expression Denial Of Service (ReDoS)

useragentparser is vulnerable to regular expression denial of service ReDoS. The vulnerability exists through the vendored module, uap-core, where a long digit string can cause ReDoS. This vulnerability is related to CVE-2020-5243...

7.5CVSS3.2AI score0.02205EPSS
Exploits1
NVD
NVD
added 2020/02/21 12:15 a.m.34 views

CVE-2020-5243

uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Some regexes are vulnerable to regular expression denial of service REDoS due to overlapping capture groups. This allows remote attackers to overload a server by setting the User-Agent...

7.5CVSS6.3AI score0.02205EPSS
Exploits1References2
Cvelist
Cvelist
added 2020/02/20 11:15 p.m.34 views

CVE-2020-5243 Denial of Service in uap-core when processing crafted User-Agent strings

uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Some regexes are vulnerable to regular expression denial of service REDoS due to overlapping capture groups. This allows remote attackers to overload a server by setting the User-Agent...

5.7CVSS7.4AI score0.02205EPSS
Exploits1References2
Rows per page
Query Builder