56 matches found
MINI-5577-X6JW-J2HG
Bulletin has no description...
CVE-2026-5577
creationtimestamp| type| source ---|---|--- 2026-04-05 17:15:47+00:00| published-proof-of-concept| Telegram/gzCKNObz4im4uV-yc9tEdz-C82sp4ablGsaOO-Gqtulpb0 2026-04-05 18:33:49+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mirf7byob52k 2026-04-05 20:05:50+00:00| seen|...
CVE-2025-5577
A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System 1.3. Affected is an unknown function of the file /profile.php. The manipulation of the argument mobilenumber leads to sql injection. It is possible to launch the attack remotely. The explo...
CVE-2025-5577
A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System 1.3. Affected is an unknown function of the file /profile.php. The manipulation of the argument mobilenumber leads to sql injection. It is possible to launch the attack remotely. The explo...
CVE-2025-5577
creationtimestamp| type| source ---|---|--- 2025-06-04 08:02:16+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqrdp2s53lo2 2025-06-04 08:33:58+00:00| published-proof-of-concept| Telegram/JORd5OezDY3YsiR-DAhtuPFE5h5v2OCRMz2Z1Evvjd5Hz4...
CVE-2025-5577 PHPGurukul Dairy Farm Shop Management System profile.php sql injection
A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System 1.3. Affected is an unknown function of the file /profile.php. The manipulation of the argument mobilenumber leads to sql injection. It is possible to launch the attack remotely. The explo...
CVE-2025-5577
CVE-2025-5577 affects PHPGurukul Dairy Farm Shop Management System 1.3. The vulnerability is a SQL injection in the /profile.php file, exploitable via the mobilenumber parameter. The issue is exploitable remotely and has been publicly disclosed. Several connected sources (NVD/CNVD/Red Hat/others)...
CVE-2024-5577 Where I Was, Where I Will Be <= 1.1.1 - Unauthenticated Remote File Inclusion
The Where I Was, Where I Will Be plugin for WordPress is vulnerable to Remote File Inclusion in version = 1.1.1 via the WIWHEADER parameter of the /system/include/includeuser.php file. This makes it possible for unauthenticated attackers to include and execute arbitrary files hosted on external...
WordPress Where I Was, Where I Will Be Plugin <= 1.1.1 is vulnerable to Remote File Inclusion
Software Where I Was, Where I Will Be Type Plugin Vulnerable versions = 1.1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Remote File Inclusion CVE CVE-2024-5577 Patch priority Low CVSS severity Low 9 Developer Claim ownership PSID d67a5f36ea60 Credits Jonas Höbenreich Required privile...
CVE-2023-5577
CVE-2023-5577 concerns Bitly’s WordPress plugin (wp-bitly). The vulnerability is a Stored Cross-Site Scripting (XSS) in the plugin’s wpbitly shortcode due to insufficient input sanitization and output escaping of user-supplied attributes. It affects all versions up to and including 2.7.1. Exploit...
WordPress Bitly Plugin <= 2.7.1 is vulnerable to Cross Site Scripting (XSS)
Software Bitly Type Plugin Vulnerable versions = 2.7.1 Fixed in 2.7.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5577 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID b8be7a26a071 Credits Lana Codes Required privilege...
Ubuntu: Security Advisory (USN-5577-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 20.04 LTS : Linux kernel (OEM) vulnerabilities (USN-5577-1)
The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5577-1 advisory. Asaf Modelevsky discovered that the IntelR 10GbE PCI Express ixgbe Ethernet driver for the Linux kernel performed insufficient control flow management. A...
SUSE: Security Advisory (SUSE-SU-2017:0575-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-5577
Movable Type series Movable Type 7 r.4606 7.2.1 and earlier Movable Type 7, Movable Type Advanced 7 r.4606 7.2.1 and earlier Movable Type Advanced 7, Movable Type for AWS 7 r.4606 7.2.1 and earlier Movable Type for AWS 7, Movable Type 6.5.3 and earlier Movable Type 6.5, Movable Type Advanced 6.5....
CVE-2020-5577
Movable Type series Movable Type 7 r.4606 7.2.1 and earlier Movable Type 7, Movable Type Advanced 7 r.4606 7.2.1 and earlier Movable Type Advanced 7, Movable Type for AWS 7 r.4606 7.2.1 and earlier Movable Type for AWS 7, Movable Type 6.5.3 and earlier Movable Type 6.5, Movable Type Advanced 6.5....
CVE-2020-5577
Movable Type series Movable Type 7 r.4606 7.2.1 and earlier Movable Type 7, Movable Type Advanced 7 r.4606 7.2.1 and earlier Movable Type Advanced 7, Movable Type for AWS 7 r.4606 7.2.1 and earlier Movable Type for AWS 7, Movable Type 6.5.3 and earlier Movable Type 6.5, Movable Type Advanced 6.5....
CVE-2020-5577
CVE-2020-5577 affects Movable Type and related products (Movable Type 7.x, MT Advanced, MT for AWS, MT 6.x, MT Premium) and allows remote authenticated attackers to upload arbitrary files and execute a PHP script via unspecified vectors. The issue is categorized as CWE-434 (unrestricted upload of...
JVN#28806943: Multiple vulnerabilities in Movable Type
Movable Type provided by Six Apart Ltd. contains multiple vulnerabilities listed below. HTML attribute value injection vulnerability CWE-74 - CVE-2020-5574 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N| Base Score: 4.7 CVSS v2| AV:N/AC:M/Au:N/C:N/I:P/A:N...
CVE-2019-5577
...