43 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-5490
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the theme-name fallback functionality in wp-includes/class-wp- theme.php in WordPress before 4.7.1 allows remote...
WordPress Football Pool plugin <= 2.12.4 - Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability
Authenticated Administrator+ Stored Cross-Site Scripting vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin Football Pool versions = 2.12.4...
CVE-2025-5490
creationtimestamp| type| source ---|---|--- 2025-06-19 05:42:28+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18840 2025-06-19 09:43:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrxadqhpjx2i...
CVE-2024-5490
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in aggregate reports option...
ManageEngine ADAudit Plus < Build 8000 Multiple Vulnerabilities
The version of ManageEngine ADAudit Plus installed on the remote host is prior to build 8000. It is, therefore, affected by multiple vulnerabilities. - Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in reports module. CVE-2024-5556 -...
CVE-2024-5490
creationtimestamp| type| source ---|---|--- 2024-08-23 17:07:49+00:00| seen| https://t.me/cvedetector/3984...
CVE-2024-5490 SQL Injection
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in aggregate reports option...
CVE-2024-5490 SQL Injection
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in aggregate reports option...
CVE-2023-5490
creationtimestamp| type| source ---|---|--- 2023-10-10 18:16:39+00:00| seen| https://t.me/cibsecurity/71940...
CVE-2023-5490
A vulnerability classified as critical was found in Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230928. This vulnerability affects unknown code of the file /useratte/userattestation.php. The manipulation of the argument webimg leads to unrestricted uploa...
CVE-2023-5490
CVE-2023-5490 affects the Beijing Baichuo/Byzoro Smart S45F Multi-Service Secure Gateway Intelligent Management Platform (up to 20230928). The vulnerability resides in the /useratte/userattestation.php file, where manipulating the web_img argument enables unrestricted file upload, with remote exp...
Debian DSA-5490-1 : aom - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5490 advisory. - AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component av1/av1dxiface.c. CVE-2020-36130 - AOM v2.0.1 was discovered to contain a stac...
Ubuntu 16.04 ESM : Protocol Buffers vulnerability (USN-5490-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5490-1 advisory. It was discovered that Protocol Buffers did not properly parse certain symbols. An attacker could possibly use this issue to cause a denial of service or other...
CVE-2020-5490
...
CVE-2020-5490
CVE-2020-5490 entry is rejected/not used per the Initial Description.
Default Privileged Account Vulnerability in the NetApp Service Processor - Lenovo Support US
No description provided...
Default Privileged Account Vulnerability in the NetApp Service Processor - US
Lenovo Security Advisory: LEN-26771 Potential Impact: Privilege escalation Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2019-5490 Summary Description: Certain versions of the NetApp Service Processor firmware were shipped with a default account enabled that could allow...
CVE-2019-5490
CVE-2019-5490 affects NetApp Service Processor firmware 2.x–5.x, shipped with a default account enabled, enabling unauthorized command execution. The issue is tied to the default-privilege account and is documented by NetApp/Lenovo advisories; affected platforms may include the listed models, req...
CVE-2018-5490
Read-Only export policy rules are not correctly enforced in Clustered Data ONTAP 8.3 Release Candidate versions and therefore may allow more than "read-only" access from authenticated SMBv2 and SMBv3 clients. This behavior has been resolved in the GA release. Customers running prior release...
CVE-2018-5490
NetApp Data ONTAP 8.3 RC releases are affected by CVE-2018-5490 where read-only export policy rules were not correctly enforced, potentially allowing more than read-only access via authenticated SMBv2/v3 clients. The issue has been resolved in the GA 8.3 release; customers running RCs should upda...