55 matches found
CVE-2026-5543
A vulnerability was identified in PHPGurukul User Registration & Login and User Management System 3.3. The affected element is an unknown function of the file /admin/yesterday-reg-users.php. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible...
CVE-2026-5543
creationtimestamp| type| source ---|---|--- 2026-04-05 08:20:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miqcxdntua2o...
EUVD-2010-5304
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2023-5543
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When duplicating a BigBlueButton activity, the original meeting ID was also duplicated instead of using a new ID for the new activity. This could provide...
CVE-2010-20059 FreeNAS < 0.7.2 rev 5543 exec_raw.php Arbitrary Command Execution
FreeNAS 0.7.2 prior to revision 5543 includes an unauthenticated command‐execution backdoor in its web interface. The execraw.php script exposes a cmd parameter that is passed directly to the underlying shell without sanitation...
PT-2025-34099 · Undefined · Undefined
FreeNAS 0.7.2 prior to revision 5543 includes an unauthenticated command‐execution backdoor in its web interface. The exec raw.php script exposes a cmd parameter that is passed directly to the underlying shell without sanitation...
CVE-2025-5543
A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...
CVE-2025-5543
creationtimestamp| type| source ---|---|--- 2025-06-04 02:32:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqqrbsve4q2e...
CVE-2025-5543
A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...
CVE-2025-5543 TOTOLINK X2000R Parent Controls Page cross site scripting
A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...
CVE-2025-5543 TOTOLINK X2000R Parent Controls Page cross site scripting
A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...
CVE-2025-5543
CVE-2025-5543 – TOTOLINK X2000R : The vulnerability affects the Parent Controls Page in TOTOLINK X2000R v1.0.0-B20230726.1108, caused by improper handling of the Device Name argument leading to cross-site scripting. It can be exploited remotely and the exploit has been disclosed. No official patc...
CVE-2019-5543
For VMware Horizon Client for Windows 5.x and prior before 5.3.0, VMware Remote Console for Windows 10.x before 11.0.0, VMware Workstation for Windows 15.x before 15.5.2 the folder containing configuration files for the VMware USB arbitration service was found to be writable by all users. A local...
CVE-2007-5543
Stack-based buffer overflow in Miranda IM 0.6.8 and 0.7.0 allows remote attackers to execute arbitrary code via a crafted Yahoo! Messenger packet. NOTE: this might overlap CVE-2007-5590...
CVE-2024-5543
The Slideshow Gallery LITE plugin for WordPress is vulnerable to time-based SQL Injection via the id parameter in all versions up to, and including, 1.8.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possib...
CGA-5543-J23V-VPMV
Bulletin has no description...
CVE-2024-5543
The CVE-2024-5543 entry concerns the WordPress plugin Slideshow Gallery LITE, affected versions
CVE-2024-5543 Slideshow Gallery LITE <= 1.8.1 - Authenticated (Contributor+) SQL Injection
The Slideshow Gallery LITE plugin for WordPress is vulnerable to time-based SQL Injection via the id parameter in all versions up to, and including, 1.8.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possib...
WordPress Left right image slideshow gallery Plugin <= 1.8.1 is vulnerable to SQL Injection
Software Left right image slideshow gallery Type Plugin Vulnerable versions = 1.8.1 Fixed in 1.8.2 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-5543 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 26f19037ceb8 Credits Krzysztof Zając Required...
CVE-2023-5543
When duplicating a BigBlueButton activity, the original meeting ID was also duplicated instead of using a new ID for the new activity. This could provide unintended access to the original meeting...