CVE-2026-5395

creationtimestamp| type| source ---|---|--- 2026-05-14 08:02:52+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlsdz4dcz62t 2026-05-14 09:28:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlsivoihzf2i 2026-05-14 09:36:20+00:00| seen|...

EUVD-2020-5395

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2020-5395

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FontForge 20190801 has a use-after-free in SFDGetFontMetaData in sfd.c. CVE-2020-5395 Note that Nessus relies on the presence of the package as reported by the...

CVE-2025-5395

creationtimestamp| type| source ---|---|--- 2025-06-11 07:30:56+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18057 2025-06-11 08:00:27+00:00| seen| Telegram/6nPqiPVroDt5io3cKj0YtamUWSCFCQWogXD7NdLQMDN4kgc 2025-06-11 09:18:21+00:00| seen|...

CVE-2025-5395 WordPress Automatic Plugin - AI content generator and auto poster plugin <= 3.115.0 - Authenticated (Author+) Arbitrary File Upload

The WordPress Automatic Plugin plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'core.php' file in all versions up to, and including, 3.115.0. This makes it possible for authenticated attackers, with Author-level access and above, to...

WordPress WordPress Automatic plugin <= 3.115.0 - Authenticated (Author+) Arbitrary File Upload vulnerability

Authenticated Author+ Arbitrary File Upload vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Automatic versions = 3.115.0...

CVE-2023-5395

Server receiving a malformed message that uses the hostname in an internal table may cause a stack overflow resulting in possible remote code execution. See Honeywell Security Notification for recommendations on upgrading and versioning...

RHEL 9 : thunderbird (RHSA-2024:5395)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:5395 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: EMBARGOED Thunderbird: 115.14/128.1 mozilla: Fullscreen...

CVE-2024-5395

Affects itsourcecode Online Student Enrollment System 1.0. The vulnerability resides in processing the file listofinstructor.php, where manipulating the FullName parameter leads to SQL injection. The issue can be exploited remotely and has been disclosed publicly. Reported impact and exploitation...

Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC Stack-based Buffer Overflow (CVE-2023-5395)

Server receiving a malformed message that uses the hostname in an internal table may cause a stack overflow resulting in possible remote code execution. See Honeywell Security Notification for recommendations on upgrading and versioning. This plugin only works with Tenable.ot. Please visit...

CVE-2020-5395

creationtimestamp| type| source ---|---|--- 2024-03-19 13:46:49+00:00| seen| https://t.me/ctinow/211484...

Debian: Security Advisory (DSA-5395-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2015-5395

Cross-site request forgery CSRF vulnerability in SOGo before 3.1.0...

SUSE CVE-2017-5395

Malicious sites can display a spoofed location bar on a subsequently loaded page when the existing location bar on the new page is scrolled out of view if navigations between pages can be timed correctly. Note: This issue only affects Firefox for Android. Other operating systems are not affected...

SUSE CVE-2020-5395

FontForge 20190801 has a use-after-free in SFDGetFontMetaData in sfd.c...

Mozilla Firefox Security Advisory (MFSA2017-01) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

NewStart CGSL CORE 5.05 / MAIN 5.05 : fontforge Vulnerability (NS-SA-2021-0153)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has fontforge packages installed that are affected by a vulnerability: - FontForge 20190801 has a use-after-free in SFDGetFontMetaData in sfd.c. CVE-2020-5395 Note that Nessus has not tested for this issue but has instead relie...

CentOS 8 : fontforge (CESA-2020:4844)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2020:4844 advisory. - fontforge: SFDGetFontMetaData insufficient CVE-2020-5395 backport CVE-2020-25690 Note that Nessus has not tested for this issue but has instead relied only on...

RHEL 8 : libexif (RHSA-2020:5395)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5395 advisory. The libexif packages provide a library for extracting extra information from image files. Security Fixes: libexif: out of bounds write due to an...

Updated fontforge packages fix a security vulnerability

SFDGetFontMetaData insufficient CVE-2020-5395 backport. CVE-2020-25690...