MINI-W83X-5248-JQ86

Bulletin has no description...

CVE-2026-5248 gougucms User Registration Login.php reg_submit dynamically-determined object attributes

A vulnerability has been found in gougucms 4.08.18. This affects the function regsubmit of the file gougucms-master\app\home\controller\Login.php of the component User Registration Handler. Such manipulation of the argument level leads to dynamically-determined object attributes. The attack may b...

CVE-2026-5248

creationtimestamp| type| source ---|---|--- 2026-03-31 23:16:41+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-5248...

MINI-5248-64P6-HMCX

Bulletin has no description...

CVE-2025-5248

creationtimestamp| type| source ---|---|--- 2025-05-27 16:52:49+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17663 2025-05-27 17:06:35+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq667ldjfe62...

CVE-2025-5248 PHPGurukul Company Visitor Management System bwdates-reports-details.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Company Visitor Management System 1.0. Affected is an unknown function of the file /bwdates-reports-details.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to launch the attack...

CVE-2025-5248 PHPGurukul Company Visitor Management System bwdates-reports-details.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Company Visitor Management System 1.0. Affected is an unknown function of the file /bwdates-reports-details.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to launch the attack...

CVE-2024-5248

In lunary-ai/lunary version 1.2.5, an improper access control vulnerability exists due to a missing permission check in the GET /v1/users/me/org endpoint. The platform's role definitions restrict the Prompt Editor role to prompt management and project viewing/listing capabilities, explicitly...

CVE-2024-5248

In lunary-ai/lunary version 1.2.5, an improper access control vulnerability exists due to a missing permission check in the GET /v1/users/me/org endpoint. The platform's role definitions restrict the Prompt Editor role to prompt management and project viewing/listing capabilities, explicitly...

CVE-2024-5248

Summary: In lunary-ai/lunary v1.2.5, an improper access control vulnerability exists due to a missing permission check on the GET /v1/users/me/org endpoint, allowing users with the Prompt Editor role to access the full organization user list. Root cause: Access control enforcement failure in the ...

CGA-662H-WC2R-5248

Bulletin has no description...

SUSE CVE-2012-5248

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adobe AIR before 3.4.0.2710; and Adobe AIR SDK...

SUSE CVE-2018-5248

In ImageMagick 7.0.7-17 Q16, there is a heap-based buffer over-read in coders/sixel.c in the ReadSIXELImage function, related to the sixeldecode function...

Ubuntu 18.04 LTS / 20.04 LTS : Thunderbird vulnerabilities (USN-5248-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5248-1 advisory. Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing contex...

Exploit for Use of Hard-coded Credentials in Glpi-Project Glpi

CVE-2020-5248 POC 환경 구성 및 테스트 입니다. 테스트 방법 - 환경 구성 v...

CVE-2020-5248

GLPI before version 9.4.6 is vulnerable due to a default, public encryption key (GLPIKEY) used to encrypt data. This allows decryption of sensitive data stored with that key. The issue arises because changing the key after installation requires re-encrypting existing data, and some columns/rows (...

CVE-2019-5248

CloudEngine 12800 has a DoS vulnerability. An attacker of a neighboring device sends a large number of specific packets. As a result, a memory leak occurs after the device uses the specific packet. As a result, the attacker can exploit this vulnerability to cause DoS attacks on the target device...

CVE-2019-5248

The CVE-2019-5248 issue affects Huawei CloudEngine 12800 devices. Affected component is the device’s handling of certain packets from neighboring devices, triggering a memory leak that can lead to a Denial of Service. The core root cause and exact vulnerable code path are described in Huawei’s ad...

Security Advisory - Denial of Service Vulnerability in some Huawei Products

Some Huawei products have a DoS vulnerability. An attacker of a neighboring device sends a large number of specific packets. As a result, a memory leak occurs after the device uses the specific packet. As a result, the attacker can exploit this vulnerability to cause DoS attacks on the target...

Debian DSA-4204-1 : imagemagick - security update

This update fixes several vulnerabilities in imagemagick, a graphical software suite. Various memory handling problems or issues about incomplete input sanitizing would result in denial of service or memory disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in th...