MINI-5488-H8VX-JG8X

Bulletin has no description...

RHSA-2023:5488

creationtimestamp| type| source ---|---|--- 2025-10-23 22:46:29+00:00| seen| Telegram/wJZIHXyulUhCfnzcUxi78Bls5nv2Nd02KaD6sbZdH2jehI...

CVE-2025-5488 WP Masonry & Infinite Scroll <= 2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

The WP Masonry & Infinite Scroll plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wmis' shortcode in all versions up to, and including, 2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

CVE-2025-5488 WP Masonry & Infinite Scroll <= 2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

The WP Masonry & Infinite Scroll plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wmis' shortcode in all versions up to, and including, 2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

Linux Distros Unpatched Vulnerability : CVE-2012-5488

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pythonscripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to execute Python code via a crafted URL, related to createObject...

CVE-2024-5488 SEOPress < 7.9 - Unauthenticated Object Injection

The SEOPress WordPress plugin before 7.9 does not properly protect some of its REST API routes, which combined with another Object Injection vulnerability can allow unauthenticated attackers to unserialize malicious gadget chains, compromising the site if a suitable chain is present...

CVE-2024-5488 SEOPress < 7.9 - Unauthenticated Object Injection

The SEOPress WordPress plugin before 7.9 does not properly protect some of its REST API routes, which combined with another Object Injection vulnerability can allow unauthenticated attackers to unserialize malicious gadget chains, compromising the site if a suitable chain is present...

WordPress SEOPress Plugin < 7.9 is vulnerable to PHP Object Injection

Software SEOPress Type Plugin Vulnerable versions 7.9 Fixed in 7.9 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-5488 Patch priority High CVSS severity High 8.3 Developer Claim ownership PSID b681d991dcc5 Credits Marc Montpas Required privilege Unauthenticated...

CVE-2024-5488

creationtimestamp| type| source ---|---|--- 2024-06-27 04:28:27+00:00| seen| https://t.me/HackingInsights/3751 2024-07-09 08:53:49+00:00| seen| https://t.me/cvedetector/252...

CVE-2023-5488

creationtimestamp| type| source ---|---|--- 2023-10-10 18:16:57+00:00| seen| https://t.me/cibsecurity/71956...

CVE-2023-5488

The CVE-2023-5488 entry concerns Byzoro/Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928. The vulnerability resides in the file /sysmanage/updatelib.php and is triggered by manipulating the file_upload argument, leading to unrestricted file up...

Debian DSA-5488-1 : thunderbird - security update

The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5488 advisory. Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. For the oldstable...

Debian: Security Advisory (DSA-5488-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 ESM : OpenSSL vulnerability (USN-5488-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5488-2 advisory. USN-5488-1 fixed vulnerabilities in OpenSSL. This update provides the corresponding updates for Ubuntu 16.04 ESM. Tenable has extracted the preceding description...

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : OpenSSL vulnerability (USN-5488-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5488-1 advisory. Chancen and Daniel Fiala discovered that OpenSSL incorrectly handled the crehash script. A local attacker could possibly use this issue to...

CVE-2020-5488

CVE-2020-5488 is rejected/not used and does not represent an active vulnerability entry.

CVE-2020-5488

...

Access Restriction Bypass

The Conga project is a management system for remote workstations. It consists of luci, which is a secure web-based front end, and ricci, which is a secure daemon that dispatches incoming messages to underlying management modules. It was discovered that Plone, included as a part of luci, did not...

Information Disclosure

The Conga project is a management system for remote workstations. It consists of luci, which is a secure web-based front end, and ricci, which is a secure daemon that dispatches incoming messages to underlying management modules. It was discovered that Plone, included as a part of luci, did not...

CVE-2019-5488

EARCLINK ESPCMS-P8 has SQL injection in the installpack/index.php?ac=Member&at=verifyAccount verifykey parameter. installpack/espcmspublic/espcmsdb.php may allow retrieving sensitive information from the ESPCMS database...