CVE-2026-5637 projectworlds Car Rental System Parameter message_admin.php sql injection

A security vulnerability has been detected in projectworlds Car Rental System 1.0. This vulnerability affects unknown code of the file /messageadmin.php of the component Parameter Handler. Such manipulation of the argument Message leads to sql injection. The attack may be launched remotely. The...

CVE-2025-5637

A vulnerability, which was classified as critical, was found in PCMan FTP Server 2.0.7. Affected is an unknown function of the component SYSTEM Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public an...

CVE-2025-5637

creationtimestamp| type| source ---|---|--- 2025-06-05 05:01:52+00:00| published-proof-of-concept| Telegram/oX1vYS7fbSJ0h1a0bZEPYKBgYMMh1l1U07HgwogbL2WglU 2025-06-05 08:54:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqtx3n55ri2m...

CVE-2025-5637 PCMan FTP Server SYSTEM Command buffer overflow

A vulnerability, which was classified as critical, was found in PCMan FTP Server 2.0.7. Affected is an unknown function of the component SYSTEM Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public an...

CVE-2025-5637

CVE-2025-5637 affects PCMan FTP Server 2.0.7, in the SYSTEM Command Handler component. The vulnerability is a buffer overflow and can be exploited remotely with no user interaction required. Multiple connected sources (e.g., NVD, Red Hat, CVE lists) confirm the remote attack possibility and high/...

CVE-2013-5637

PQI AirCard has persistent XSS...

Security Bulletin: Multiple security vulnerabilities have been identified in IBM® DB2® shipped with IBM PureData System for Operational Analytics

Summary IBM® DB2® is shipped as a component of IBM PureData System for Operational Analytics. Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin. Vulnerability Details CVEID:CVE-2017-12973 DESCRIPTION: Connect2id Nimbus JOSE+JWT could provide...

Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities (CVE-2017-5637, CVE-2019-0201, CVE-2018-8012, CVE-2023-44981)

Summary IBM Security Guardium uses Apache ZooKeeper as a component. This component has multiple vulnerabilities which might affect the product. These vulnerabilities have been addressed in an update. Vulnerability Details CVEID:CVE-2017-5637 DESCRIPTION: Apache Zookeeper is vulnerable to a denial...

CVE-2024-5637

The Market Exporter plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'removefiles' function in all versions up to, and including, 2.0.19. This makes it possible for authenticated attackers, with Subscriber-level access and above, to use path...

CVE-2024-5637

The Market Exporter plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'removefiles' function in all versions up to, and including, 2.0.19. This makes it possible for authenticated attackers, with Subscriber-level access and above, to use path...

CVE-2024-5637 Market Exporter <= 2.0.19 - Missing Authorization to Arbitrary File Deletion

The Market Exporter plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'removefiles' function in all versions up to, and including, 2.0.19. This makes it possible for authenticated attackers, with Subscriber-level access and above, to use path...

WordPress Market Exporter Plugin <= 2.0.19 is vulnerable to Arbitrary File Deletion

Software Market Exporter Type Plugin Vulnerable versions = 2.0.19 Fixed in 2.0.20 OWASP Top 10 A5: Broken Access Control Classification Arbitrary File Deletion CVE CVE-2024-5637 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID c9e019d8b649 Credits Lucio Sá Required...

CVE-2019-5637

creationtimestamp| type| source ---|---|--- 2024-02-26 12:41:43+00:00| seen| https://t.me/ctinow/193284...

CVE-2023-5637

Unrestricted Upload of File with Dangerous Type vulnerability in ArslanSoft Education Portal allows Read Sensitive Strings Within an Executable. This issue affects Education Portal: before v1.1...

CVE-2023-5637

ArslanSoft Education Portal (before v1.1) is affected by CVE-2023-5637 due to an Unrestricted Upload of File with Dangerous Type vulnerability, which allows reading sensitive strings within an executable. The issue is described as a code issue in the Education Portal prior to v1.1. Exploitation d...

CVE-2023-5637 Plaintext Storage of a Password in ArslanSoft's Education Portal

Unrestricted Upload of File with Dangerous Type vulnerability in ArslanSoft Education Portal allows Read Sensitive Strings Within an Executable. This issue affects Education Portal: before v1.1...

Ubuntu: Security Advisory (USN-5637-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 ESM : libvpx vulnerability (USN-5637-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5637-1 advisory. It was discovered that libvpx incorrectly handled certain WebM media files. A remote attacker could use this issue to crash an application using libvpx under...

cn.acooly:acooly-auth-wechat-authenticator (=5.2.1), cn.org.thinkcloud:think-cloud-starter-id (=2.0.1.RELEASE) +398 more potentially affected by CVE-2017-5637 via org.apache.zookeeper:zookeeper (>=3.5.1-alpha <=3.5.3-beta)

org.apache.zookeeper:zookeeper MAVEN version =3.5.1-alpha, =3.2.0, =3.0.5, =3.0.5, =0.85, =3.2.0, =3.2.0, =3.3.0-RELEASE, =3.0.0, =1.0.0, =3.0.2-beta1 and more Source cves: CVE-2017-5637 Source advisory: OSV:GHSA-7CWJ-J333-X7F7...

at.salzburgresearch.nodekeeper:nodekeeper-java (>=1.0 <=1.2), com.baidu.beidou:navi-rpc (=1.1.0) +85 more potentially affected by CVE-2017-5637 via org.apache.zookeeper:zookeeper (>=3.4.0 <=3.4.1)

org.apache.zookeeper:zookeeper MAVEN version =3.4.0, =1.0, =1.0.0.RELEASE, =1.0.0.RELEASE, =1.0.0.RELEASE, =0.13, =0.13, =0.13, =0.16, =0.13, =0.15, =0.13, =0.15, =0.17 and more Source cves: CVE-2017-5637 Source advisory: OSV:GHSA-7CWJ-J333-X7F7...