82 matches found
CVE-2013-5626
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: A public posting on 20130831 referenced this ID for a specific issue, but that issue had not been assigned this ID by any CNA. Notes: The posting will later have IDs assigned in accordance with CVE content decisions...
MiracleLinux 4 : mariadb55-mariadb-5.5.53-1.AXS4 (AXSA:2016-717:04)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-717:04 advisory. MariaDB is a community developed branch of MySQL. MariaDB is a multi-user, multi-threaded SQL database server. It is a client/server implementation...
MiracleLinux 7 : mysql55-mysql-5.5.52-1.el7 (AXSA:2016-716:03)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-716:03 advisory. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many...
MiracleLinux 7 : mariadb-5.5.52-1.el7 (AXSA:2016-1117:03)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-1117:03 advisory. MariaDB is a community developed branch of MySQL. MariaDB is a multi-user, multi-threaded SQL database server. It is a client/server implementation...
CVE-2025-5626
creationtimestamp| type| source ---|---|--- 2025-06-05 02:00:22+00:00| published-proof-of-concept| Telegram/euXhbHsGx015k54gDP7v4lysNN30IVq03uDJTCPpV2PP448...
CVE-2025-5626
CVE-2025-5626 affects Campcodes Online Teacher Record Management System 1.0; vulnerability in the file /admin/edit-subjects-detail.php where manipulating the editid parameter enables SQL injection, exploitable remotely. Evidence across sources confirms this is a SQLi in an unknown function, with ...
CVE-2020-5626
Logstorage version 8.0.0 and earlier, and ELC Analytics version 3.0.0 and earlier allow remote attackers to execute arbitrary OS commands via a specially crafted log file...
CVE-2019-5626
The Android mobile application BlueCats Reveal before 3.0.19 stores the username and password in a clear text file. This file persists until the user logs out or the session times out from non-usage 30 days of no user activity. This can allow an attacker to compromise the affected BlueCats networ...
Linux Distros Unpatched Vulnerability : CVE-2016-5626
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL 5.5.51 and earlier, 5.6.32 and earlier, and 5.7.14 and earlier allows remote authenticated users to affect availabilit...
CVE-2024-5626
creationtimestamp| type| source ---|---|--- 2024-07-12 09:23:17+00:00| seen| https://t.me/cvedetector/708...
CVE-2024-5626 Inline Related Posts < 3.7.0 - Reflected XSS
The Inline Related Posts WordPress plugin before 3.7.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
WordPress Inline Related Posts Plugin < 3.7.0 is vulnerable to Cross Site Scripting (XSS)
Software Inline Related Posts Type Plugin Vulnerable versions 3.7.0 Fixed in 3.7.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5626 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID e490330be604 Credits Dmitrii Ignatye...
RHEL 5 : mysql (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - mysql: generallog can write to configuration files, leading to privilege escalation CPU Oct 2016...
GHSA-5626-PW9C-HMJR
creationtimestamp| type| source ---|---|--- 2024-01-31 19:17:54+00:00| seen| https://t.me/ctinow/177009 2024-02-22 16:51:26+00:00| seen| https://t.me/ctinow/190922...
CVE-2023-5626
creationtimestamp| type| source ---|---|--- 2023-10-18 07:33:29+00:00| seen| https://t.me/cibsecurity/72482...
CVE-2023-5626
Cross-Site Request Forgery CSRF in GitHub repository pkp/ojs prior to 3.3.0-16...
CVE-2023-5626 Cross-Site Request Forgery (CSRF) in pkp/ojs
Cross-Site Request Forgery CSRF in GitHub repository pkp/ojs prior to 3.3.0-16...
CVE-2023-5626 Cross-Site Request Forgery (CSRF) in pkp/ojs
Cross-Site Request Forgery CSRF in GitHub repository pkp/ojs prior to 3.3.0-16...
CVE-2023-5626 Cross-Site Request Forgery (CSRF) in pkp/ojs
Cross-Site Request Forgery CSRF in GitHub repository pkp/ojs prior to 3.3.0-16...
CVE-2023-5626
CVE-2023-5626 affects Open Journal Systems (OJS) pkp/ojs versions prior to 3.3.0-16. Root cause is a Cross-Site Request Forgery (CSRF) vulnerability. The impact is described as high in CVSS metrics (C/H, I/H, A/H) for the NVD entry; exploitation may allow unauthorized actions requiring user inter...