phpPgAdmin <=4.2.1 - Local File Inclusion

phpPgAdmin 4.2.1 is vulnerable to local file inclusion in libraries/lib.inc.php when register globals is enabled. Remote attackers can read arbitrary files via a .. dot dot in the language parameter to index.php. id: CVE-2008-5587 info: name: phpPgAdmin =4.2.1 - Local File Inclusion author:...

CVE-2026-5587

A vulnerability was identified in wbbeyourself MAC-SQL up to 31a9df5e0d520be4769be57a4b9022e5e34a14f4. This affects the function executesql of the file core/agents.py of the component Refiner Agent. The manipulation leads to sql injection. Remote exploitation of the attack is possible. The exploi...

WordPress Appzend Theme <= 1.2.6 is vulnerable to Cross Site Scripting (XSS)

Software Appzend Type Theme Vulnerable versions = 1.2.6 Fixed in 1.2.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2025-5587 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 9aa23509b5fd Credits Peter Thaleikis Required privileg...

CVE-2024-5587

A vulnerability was found in Casdoor up to 1.335.0. It has been classified as problematic. Affected is an unknown function of the file /conf/app.conf of the component Configuration File Handler. The manipulation leads to files or directories accessible. It is possible to launch the attack remotel...

CVE-2012-5587

Cross-site scripting XSS vulnerability in the Email Field module 6.x-1.x before 6.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via the mailto link...

CVE-2013-5587

Cross-site scripting XSS vulnerability in Request Tracker RT 4.x before 4.0.13, when MakeClicky is configured, allows remote attackers to inject arbitrary web script or HTML via a URL in a ticket. NOTE: this issue has been SPLIT from CVE-2013-3371 due to different affected versions...

CVE-2024-5587

CVE-2024-5587 affects Casdoor up to 1.335.0, specifically the Configuration File Handler’s /conf/app.conf. The issue arises from a manipulation of an unknown function in that file, allowing access to files or directories. The vulnerability can be exploited remotely and an exploit has been disclos...

Debian: Security Advisory (DSA-5587-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-5587

creationtimestamp| type| source ---|---|--- 2023-11-10 16:54:03+00:00| published-proof-of-concept| https://t.me/apsecurity/253 2023-11-10 16:54:03+00:00| published-proof-of-concept| https://t.me/apsecurity/204...

CVE-2023-5587

creationtimestamp| type| source ---|---|--- 2023-10-16 02:36:12+00:00| seen| https://t.me/cibsecurity/72297...

CVE-2023-5587

The CVE-2023-5587 entry describes a SQL injection in SourceCodester Free Hospital Management System for Small Practices 1.0, specifically in the /vm/admin/doctors.php file of the Parameter Handler. The vulnerability arises from unsafeguarded manipulation of the search parameter, allowing remote a...

RHEL 8 : virt:rhel (RHSA-2023:5587)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:5587 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contai...

SUSE CVE-2015-5587

Stack-based buffer overflow in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allows attackers to execute arbitrary...

Ubuntu: Security Advisory (USN-5587-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : curl vulnerability (USN-5587-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5587-1 advisory. Axel Chong discovered that when curl accepted and sent back cookies containing control bytes that a HTTPS server might return ...

Rapid7 Nexpose Installer 6.6.39 Local Privilege Escalation Vulnerability

Rapid7 Nexpose Installer version 6.6.39 suffers from a local privilege escalation vulnerability. Rapid7 Nexpose Installer 6.6.39 Local Privilege Escalation Vendor: Rapid7 Product web page: https://www.rapid7.com Affected version: sc qc nexposeengine SC QueryServiceConfig SUCCESS SERVICENAME:...

CVE-2020-5587

Summary: CVE-2020-5587 affects Cybozu Garoon 4.0.0–5.0.1, with information disclosure possible to remote authenticated attackers via unspecified vectors. The impact is exposure of unintended information. Affected products/versions (as provided): Cybozu Garoon 4.0.0 to 5.0.1. Root cause / vectors:...

CVE-2008-5587

Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when registerglobals is enabled, allows remote attackers to read arbitrary files via a .. dot dot in the language parameter to index.php...

CVE-2019-5587

Lack of root file system integrity checking in Fortinet FortiOS VM application images all versions below 6.0.5 may allow attacker to implant malicious programs into the installing image by reassembling the image through specific methods...

CVE-2019-5587

Fortinet FortiOS VM images (pre-6.0.5) lack root file-system integrity checking, enabling an attacker with read/write access to the VM image before boot to reassemble or inject malicious implants into the installed image. This CVE-2019-5587 issue is documented in Fortinet’s FG-IR-19-017 advisory ...