39 matches found
MINI-7852-5369-C5P4
Bulletin has no description...
CVE-2025-5369
creationtimestamp| type| source ---|---|--- 2025-05-31 05:44:10+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqh23v7poed2 2025-05-31 08:17:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqhconcvqk2q...
CVE-2025-5369
A vulnerability classified as critical has been found in SourceCodester PHP Display Username After Login 1.0. Affected is an unknown function of the file /login.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has bee...
CVE-2025-5369
CVE-2025-5369 affects SourceCodester PHP Display Username After Login 1.0. The /login.php file processes the Username parameter insecurely, enabling remote SQL injection. Reported as critical with various CVSS baselines; no concrete patch/version fix is provided in the connected documents. Exploi...
CVE-2025-5369 SourceCodester PHP Display Username After Login login.php sql injection
A vulnerability classified as critical has been found in SourceCodester PHP Display Username After Login 1.0. Affected is an unknown function of the file /login.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has bee...
CVE-2025-5369 SourceCodester PHP Display Username After Login login.php sql injection
A vulnerability classified as critical has been found in SourceCodester PHP Display Username After Login 1.0. Affected is an unknown function of the file /login.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has bee...
CVE-2008-5369
noip2 in noip2 2.1.7 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/noip2 temporary file...
CVE-2024-5369
A vulnerability was found in Kashipara College Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file submitadmin.php. The manipulation of the argument adminname leads to cross site scripting. The attack can be launched...
CVE-2024-5369
A vulnerability was found in Kashipara College Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file submitadmin.php. The manipulation of the argument adminname leads to cross site scripting. The attack can be launched...
CVE-2024-5369
CVE-2024-5369 affects Kashipara College Management System 1.0. The vulnerability is in the file submit_admin.php, where manipulating the argument admin_name triggers cross-site scripting (XSS) . The attack is described as remotely exploitable and the exploit has been disclosed publicly (VDB-26628...
CVE-2023-5369 copy_file_range insufficient capability rights check
Before correction, the copyfilerange system call checked only for the CAPREAD and CAPWRITE capabilities on the input and output file descriptors, respectively. Using an offset is logically equivalent to seeking, and the system call must additionally require the CAPSEEK capability. This incorrect...
CVE-2023-5369
CVE-2023-5369 concerns copy_file_range with an incomplete privilege check. Connected FreeBSD advisories confirm the issue: the syscall validated only CAP_READ and CAP_WRITE; CAP_SEEK is also required for offset-based access. The flaw enables a sandboxed process with read or write capabilities but...
CVE-2023-5369 copy_file_range insufficient capability rights check
Before correction, the copyfilerange system call checked only for the CAPREAD and CAPWRITE capabilities on the input and output file descriptors, respectively. Using an offset is logically equivalent to seeking, and the system call must additionally require the CAPSEEK capability. This incorrect...
FreeBSD : FreeBSD -- copy_file_range insufficient capability rights check (e261e71c-6250-11ee-8e38-002590c1f29c)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the e261e71c-6250-11ee-8e38-002590c1f29c advisory. - Before correction, the copyfilerange system call checked only for the CAPREAD and CAPWRITE capabiliti...
FreeBSD-SA-23:13.capsicum
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-23:13.capsicum Security Advisory The FreeBSD Project Topic: copyfilerange insufficient capability rights check Category: core Module: capsicum Announced:...
Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : oslo.utils vulnerability (USN-5369-1)
The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5369-1 advisory. It was discovered that oslo.utils incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive...
Mageia: Security Advisory (MGASA-2014-0421)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 8 : microcode_ctl (RHSA-2020:5369)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:5369 advisory. The microcodectl packages provide microcode updates for Intel. Security Fixes: hw: Information disclosure issue in Intel SGX via RAPL...
CVE-2020-5369
Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability. An authenticated malicious user may exploit this vulnerability by using SyncIQ to gain unauthorized access to system management files...
CVE-2020-5369
Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability. An authenticated malicious user may exploit this vulnerability by using SyncIQ to gain unauthorized access to system management files...