Lucene search
K

55 matches found

RedhatCVE
RedhatCVE
added 2026/04/06 5:24 a.m.5 views

CVE-2026-5543

A vulnerability was identified in PHPGurukul User Registration & Login and User Management System 3.3. The affected element is an unknown function of the file /admin/yesterday-reg-users.php. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible...

6.5CVSS6.5AI score0.00196EPSS
Exploits0References1
Circl
Circl
added 2026/04/05 8:20 a.m.4 views

CVE-2026-5543

creationtimestamp| type| source ---|---|--- 2026-04-05 08:20:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miqcxdntua2o...

6.5CVSS6.6AI score0.00196EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2010-5304

Malware in sbrugna...

9.3CVSS6.4AI score0.00953EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/09/05 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-5543

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When duplicating a BigBlueButton activity, the original meeting ID was also duplicated instead of using a new ID for the new activity. This could provide...

3.3CVSS5AI score0.00243EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/20 3:35 p.m.5 views

CVE-2010-20059 FreeNAS < 0.7.2 rev 5543 exec_raw.php Arbitrary Command Execution

FreeNAS 0.7.2 prior to revision 5543 includes an unauthenticated command‐execution backdoor in its web interface. The execraw.php script exposes a cmd parameter that is passed directly to the underlying shell without sanitation...

9.3CVSS6.4AI score0.00953EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.7 views

PT-2025-34099 · Undefined · Undefined

FreeNAS 0.7.2 prior to revision 5543 includes an unauthenticated command‐execution backdoor in its web interface. The exec raw.php script exposes a cmd parameter that is passed directly to the underlying shell without sanitation...

9.3CVSS7.2AI score0.00953EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/06/05 11:14 p.m.22 views

CVE-2025-5543

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...

4.8CVSS6.2AI score0.00279EPSS
Exploits1References1
Circl
Circl
added 2025/06/04 2:32 a.m.14 views

CVE-2025-5543

creationtimestamp| type| source ---|---|--- 2025-06-04 02:32:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqqrbsve4q2e...

4.8CVSS7AI score0.00279EPSS
Exploits1References1
NVD
NVD
added 2025/06/03 11:15 p.m.12 views

CVE-2025-5543

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...

4.8CVSS0.00279EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/06/03 10:31 p.m.7 views

CVE-2025-5543 TOTOLINK X2000R Parent Controls Page cross site scripting

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...

4.8CVSS3.5AI score0.00279EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/06/03 10:31 p.m.15 views

CVE-2025-5543 TOTOLINK X2000R Parent Controls Page cross site scripting

A vulnerability was found in TOTOLINK X2000R 1.0.0-B20230726.1108. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Parent Controls Page. The manipulation of the argument Device Name leads to cross site scripting. The attack can be...

4.8CVSS0.00279EPSS
Exploits1References5
CVE
CVE
added 2025/06/03 10:31 p.m.54 views

CVE-2025-5543

CVE-2025-5543 – TOTOLINK X2000R : The vulnerability affects the Parent Controls Page in TOTOLINK X2000R v1.0.0-B20230726.1108, caused by improper handling of the Device Name argument leading to cross-site scripting. It can be exploited remotely and the exploit has been disclosed. No official patc...

4.8CVSS6.4AI score0.00279EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 10:30 a.m.6 views

CVE-2019-5543

For VMware Horizon Client for Windows 5.x and prior before 5.3.0, VMware Remote Console for Windows 10.x before 11.0.0, VMware Workstation for Windows 15.x before 15.5.2 the folder containing configuration files for the VMware USB arbitration service was found to be writable by all users. A local...

7.8CVSS7AI score0.00391EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:6 p.m.14 views

CVE-2007-5543

Stack-based buffer overflow in Miranda IM 0.6.8 and 0.7.0 allows remote attackers to execute arbitrary code via a crafted Yahoo! Messenger packet. NOTE: this might overlap CVE-2007-5590...

9.3CVSS7.9AI score0.03952EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 6:28 a.m.5 views

CVE-2024-5543

The Slideshow Gallery LITE plugin for WordPress is vulnerable to time-based SQL Injection via the id parameter in all versions up to, and including, 1.8.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possib...

8.1CVSS7.3AI score0.00486EPSS
Exploits0References1
OSV
OSV
added 2024/09/12 12:8 p.m.10 views

CGA-5543-J23V-VPMV

Bulletin has no description...

7.5CVSS7.1AI score0.01046EPSS
Exploits0
CVE
CVE
added 2024/06/12 1:55 a.m.52 views

CVE-2024-5543

The CVE-2024-5543 entry concerns the WordPress plugin Slideshow Gallery LITE, affected versions

8.1CVSS8.1AI score0.00486EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/06/12 1:55 a.m.22 views

CVE-2024-5543 Slideshow Gallery LITE <= 1.8.1 - Authenticated (Contributor+) SQL Injection

The Slideshow Gallery LITE plugin for WordPress is vulnerable to time-based SQL Injection via the id parameter in all versions up to, and including, 1.8.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possib...

8.1CVSS0.00486EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/06/11 12:0 a.m.8 views

WordPress Left right image slideshow gallery Plugin <= 1.8.1 is vulnerable to SQL Injection

Software Left right image slideshow gallery Type Plugin Vulnerable versions = 1.8.1 Fixed in 1.8.2 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-5543 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 26f19037ceb8 Credits Krzysztof Zając Required...

8.1CVSS6.8AI score0.00486EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/11/09 10:15 p.m.25 views

CVE-2023-5543

When duplicating a BigBlueButton activity, the original meeting ID was also duplicated instead of using a new ID for the new activity. This could provide unintended access to the original meeting...

3.3CVSS6.7AI score
Exploits0References3
Rows per page
Query Builder