127 matches found
CGA-97G9-5243-WVCJ
Bulletin has no description...
EUVD-2016-5243
Malware in sbrugna...
ECHO-5243-5F7F-9BA2
Bulletin has no description...
Linux Distros Unpatched Vulnerability : CVE-2020-5243
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Some regexes are vulnerable to regular expression...
CVE-2025-5243 Arbitrary File Upload in SMG Software's Information Portal
Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in SMG Software Information Portal allows Code Injection, Upload a Web Shell to a Web Server, Code Inclusion. This issue affects Information...
CVE-2025-5243
CVE-2025-5243 affects SMG Software Information Portal. Affected versions before 13.06.2025 are vulnerable to unrestricted file upload and improper neutralization of special elements in OS command contexts, enabling code injection and potential upload of a web shell leading to code inclusion. The ...
CVE-2020-5243
uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Some regexes are vulnerable to regular expression denial of service REDoS due to overlapping capture groups. This allows remote attackers to overload a server by setting the User-Agent...
CVE-2024-5243
creationtimestamp| type| source ---|---|--- 2024-07-10 17:39:07+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/10813 2026-02-06 17:02:11+00:00| seen| https://bsky.app/profile/buherator.bsky.social/post/3me7f227wvb2b 2026-02-08 13:20:11+00:00| seen|...
CVE-2023-5243
creationtimestamp| type| source ---|---|--- 2023-10-31 17:21:21+00:00| seen| https://t.me/cibsecurity/73247...
CVE-2023-5243 Login screen manager <= 3.5.2 - Admin+ Stored XSS
The Login Screen Manager WordPress plugin through 3.5.2 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-5243
CVE-2023-5243 affects the Login Screen Manager WordPress plugin (versions up to 3.5.2). The root cause is improper sanitization/escapement of certain settings, enabling Stored XSS by high-privilege users (e.g., Admin) even with unfiltered_html disallowed. Documented impact includes stored XSS on ...
WordPress Login Screen Manager Plugin <= 3.5.2 is vulnerable to Cross Site Scripting (XSS)
Software Login Screen Manager Type Plugin Vulnerable versions = 3.5.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5243 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7d813a002456 Credits Nano Required privile...
CVE-2013-5243
Rejected reason: This candidate is unused by its CNA...
Mageia: Security Advisory (MGASA-2016-0345)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 ESM : AIDE vulnerability (USN-5243-2)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5243-2 advisory. USN-5243-1 fixed a vulnerability in aide. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable has extracted the...
Ubuntu 18.04 LTS / 20.04 LTS : AIDE vulnerability (USN-5243-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5243-1 advisory. David Bouman discovered that AIDE incorrectly handled base64 operations. A local attacker could use this issue to cause AIDE to crash, resulting in a...
SUSE: Security Advisory (SUSE-SU-2017:2525-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Regular Expression Denial Of Service (ReDoS)
useragentparser is vulnerable to regular expression denial of service ReDoS. The vulnerability exists through the vendored module, uap-core, where a long digit string can cause ReDoS. This vulnerability is related to CVE-2020-5243...
CVE-2020-5243
uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Some regexes are vulnerable to regular expression denial of service REDoS due to overlapping capture groups. This allows remote attackers to overload a server by setting the User-Agent...
CVE-2020-5243 Denial of Service in uap-core when processing crafted User-Agent strings
uap-core before 0.7.3 is vulnerable to a denial of service attack when processing crafted User-Agent strings. Some regexes are vulnerable to regular expression denial of service REDoS due to overlapping capture groups. This allows remote attackers to overload a server by setting the User-Agent...