CVE-2026-5605

creationtimestamp| type| source ---|---|--- 2026-04-06 00:00:38+00:00| seen| https://infosec.exchange/users/offseq/statuses/116354818818250445 2026-04-06 00:00:40+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mirxhp6vtu2f 2026-04-06 01:15:46+00:00| published-proof-of-concept|...

PT-2026-30460

Name of the Vulnerable Software and Affected Versions Tenda CH22 version 1.0.0.1 Description A weakness exists in the Tenda CH22 version 1.0.0.1. A stack-based buffer overflow can be triggered by manipulating the GO argument of the formWrlExtraSet function within the /goform/WrlExtraSet file. Thi...

MiracleLinux 3 : nspr-4.10.2-2.AXS3, nss-3.15.3-4.AXS3 (AXSA:2014-237:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-237:01 advisory. nss: Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server...

MiracleLinux 4 : nspr-4.10.2-1.AXS4, nss-3.15.3-6.0.1.AXS4, nss-util-3.15.3-1.AXS4 (AXSA:2014-054:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-054:01 advisory. nss: Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server...

CVE-2025-5605

creationtimestamp| type| source ---|---|--- 2025-10-24 12:51:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m3ww2hhv7b2o 2025-10-30 05:42:09+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-5605.yaml 2025-10-31...

EUVD-2025-5605

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2015-5605

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The regular-expression implementation in Google V8, as used in Google Chrome before 44.0.2403.89, mishandles interrupts, which allows remote attackers to cause ...

CVE-2023-5605

The URL Shortify WordPress plugin before 1.7.9.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2020-5605

Directory traversal vulnerability in WHR-G54S firmware 1.43 and earlier allows an attacker to access sensitive information such as setting values via unspecified vectors...

Linux Distros Unpatched Vulnerability : CVE-2013-5605

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla Network Security Services NSS 3.14 before 3.14.5 and 3.15 before 3.15.3 allows remote attackers to cause a denial of service or possibly have unspecifie...

CVE-2024-5605

The Media Library Assistant plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter within the mlatagcloud Shortcode in all versions up to, and including, 3.16 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...

CVE-2024-5605 Media Library Assistant <= 3.16 - Authenticated (Contributor+) SQL Injection via order Parameter

The Media Library Assistant plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter within the mlatagcloud Shortcode in all versions up to, and including, 3.16 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...

WordPress Media Library Assistant Plugin <= 3.16 is vulnerable to SQL Injection

Software Media Library Assistant Type Plugin Vulnerable versions = 3.16 Fixed in 3.17 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-5605 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID a2ffbb62fd66 Credits Krzysztof Zając Required privilege Contribut...

RHEL 5 / 6 : CloudForms System Engine 1.1 update (Important) (RHSA-2012:1543)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:1543 advisory. Red Hat CloudForms is an on-premise hybrid cloud Infrastructure-as-a-Service IaaS product that lets you create and manage private and...

Debian: Security Advisory (DSA-5605-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Malicious code in wlwz-2312-5605 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9f7c81bbc64564ec1735790e781e6cc3a4eb7572b8934c61f6516ebe3355fe99 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Debian dsa-5605 : thunderbird - security update

The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5605 advisory. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5605...

CVE-2023-5605

creationtimestamp| type| source ---|---|--- 2023-11-07 00:26:11+00:00| seen| https://t.me/cibsecurity/73652...

CVE-2023-5605

CVE-2023-5605 affects the WordPress plugin URL Shortify prior to version 1.7.9.1. The issue is due to insufficient sanitization/escaping of certain plugin settings, enabling Stored Cross-Site Scripting (XSS) by high-privilege users (e.g., admins), including in multisite setups where unfiltered_ht...

Ubuntu: Security Advisory (USN-5605-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...