CVE-2025-5307

Santesoft Sante DICOM Viewer Pro contains a memory corruption vulnerability. A local attacker could exploit this issue to potentially disclose information and to execute arbitrary code on affected installations of Sante DICOM Viewer Pro...

CVE-2025-5307

creationtimestamp| type| source ---|---|--- 2025-05-29 20:08:01+00:00| seen| https://bsky.app/profile/pigondrugs.bsky.social/post/3lqdjhg6pfs2u 2025-05-29 22:35:06+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqdro4qrlqg2 2025-05-30...

CVE-2012-5307

Cross-site scripting XSS vulnerability in servlet/traveler in IBM Lotus Notes Traveler before 8.5.3.3 Interim Fix 1, when Firefox is used, allows remote attackers to inject arbitrary web script or HTML via the redirectURL parameter, a different vulnerability than CVE-2012-4824 and CVE-2012-4825...

Linux Distros Unpatched Vulnerability : CVE-2015-5307

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service host OS panic or hang by...

CVE-2024-5307

CVE-2024-5307 affects Kofax Power PDF, specifically the AcroForm Annotation handling. The vulnerability is an out-of-bounds read that can disclose sensitive information from a vulnerable installation due to insufficient validation of user-supplied data in Annotation objects. User interaction is r...

Malicious code in wlwz-2312-5307 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6b01021028806a57d95f63736f9386c67f16c119d0ec7a806418a7878f54c5ed Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2020-5307

creationtimestamp| type| source ---|---|--- 2024-01-09 15:47:04+00:00| seen| https://t.me/ctinow/165078...

CVE-2023-5307

creationtimestamp| type| source ---|---|--- 2023-10-31 17:21:07+00:00| seen| https://t.me/cibsecurity/73237...

CVE-2023-5307

The Photos and Files Contest Gallery WordPress plugin before 21.2.8.1 does not sanitise and escape some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks via certain headers...

CVE-2023-5307

CVE-2023-5307 affects the Photos and Files Contest Gallery WordPress plugin (versions prior to 21.2.8.1). The vulnerability is an unauthenticated stored XSS via HTTP headers caused by insufficient sanitisation/escaping of certain parameters in the plugin’s contact form. Impact is logged as Cross-...

CVE-2023-5307 Photos and Files Contest Gallery – Contact Form < 21.2.8.1 - Unauthenticated Stored XSS via HTTP Headers

The Photos and Files Contest Gallery WordPress plugin before 21.2.8.1 does not sanitise and escape some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks via certain headers...

CVE-2023-5307 Photos and Files Contest Gallery – Contact Form < 21.2.8.1 - Unauthenticated Stored XSS via HTTP Headers

The Photos and Files Contest Gallery WordPress plugin before 21.2.8.1 does not sanitise and escape some parameters, which could allow unauthenticated users to perform Cross-Site Scripting attacks via certain headers...

WordPress Contest Gallery Plugin < 21.2.8.1 is vulnerable to Cross Site Scripting (XSS)

Software Contest Gallery Type Plugin Vulnerable versions 21.2.8.1 Fixed in 21.2.8.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5307 Patch priority Medium CVSS severity Medium 7.1 Developer Wasiliy Strecker PSID 79977d335b6c Credits Dmitrii...

Debian: Security Advisory (DLA-479-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

K31026324: Linux kernel vulnerabilities CVE-2015-2925, CVE-2015-5307, and CVE-2015-8104

Security Advisory Description CVE-2015-2925 The prependpath function in fs/dcache.c in the Linux kernel before 4.2.4 does not properly handle rename actions inside a bind mount, which allows local users to bypass an intended container protection mechanism by renaming a directory, related to a...

IBM Java 6.0 < 6.0.16.60 / 6.1 < 6.1.8.60 / 7.0 < 7.0.10.20 / 7.1 < 7.1.4.20 / 8.0 < 8.0.5.10 Multiple Vulnerabilities

The version of IBM Java installed on the remote host is prior to 6.0 6.0.16.60 / 6.1 6.1.8.60 / 7.0 7.0.10.20 / 7.1 7.1.4.20 / 8.0 8.0.5.10. It is, therefore, affected by multiple vulnerabilities as referenced in the Oracle January 16 2018 CPU advisory. - Vulnerability in the Java SE, Java SE...

Ubuntu: Security Advisory (USN-5307-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2016-0225)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2016-0233)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:0658-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...