Lucene search
K

39 matches found

OSV
OSV
added 2026/04/30 7:16 a.m.4 views

DEBIAN-CVE-2026-5654

AMR-NB codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

7.5CVSS5.8AI score0.00206EPSS
Exploits1References1
OSV
OSV
added 2026/04/30 7:16 a.m.4 views

UBUNTU-CVE-2026-5654

AMR-NB codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

7.5CVSS5.8AI score0.00206EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/04/30 5:39 a.m.3 views

CVE-2026-5654

AMR-NB codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00206EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2026/04/30 5:39 a.m.5 views

CVE-2026-5654

AMR-NB codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

7.5CVSS5.3AI score0.00206EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 9 : toolbox-0.0.99.3-9.el9 (AXSA:2023-5654:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5654:01 advisory. golang: net/http: handle server errors after sending GOAWAY CVE-2022-27664 golang: net/http: An attacker can cause excessive memory growth in a Go...

7.5CVSS7.6AI score0.05623EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-5654

Malware in sbrugna...

5.5CVSS7.3AI score0.00538EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2025/06/07 12:17 p.m.16 views

CVE-2025-5654

A vulnerability was found in PHPGurukul Complaint Management System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/edit-state.php. The manipulation of the argument description leads to sql injection. The attack may be launched remotely. The...

8.8CVSS6.7AI score0.00325EPSS
Exploits1References1
NVD
NVD
added 2025/06/05 11:15 a.m.15 views

CVE-2025-5654

A vulnerability was found in PHPGurukul Complaint Management System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/edit-state.php. The manipulation of the argument description leads to sql injection. The attack may be launched remotely. The...

8.8CVSS0.00325EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 4:32 a.m.8 views

CVE-2023-5654

The React Developer Tools extension registers a message listener with window.addEventListener'message', in a content script that is accessible to any webpage that is active in the browser. Within the listener is code that requests a URL derived from the received message via fetch. The URL is not...

6.5CVSS6.9AI score0.00467EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.34 views

Oracle Linux 8 : curl (ELSA-2024-5654)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-5654 advisory. - provide common cleanup method for push headers CVE-2024-2398 Tenable has extracted the preceding description block directly from the Oracle Linux security...

8.6CVSS6.9AI score0.36081EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/08/20 12:0 a.m.33 views

RHEL 8 : curl (RHSA-2024:5654)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5654 advisory. The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, a...

8.6CVSS6.9AI score0.36081EPSS
Exploits1References6
Cvelist
Cvelist
added 2024/06/08 8:39 a.m.32 views

CVE-2024-5654 CF7 Google Sheets Connector <= 5.0.9 - Missing Authorization to Limited Site Configuration Update

The CF7 Google Sheets Connector plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'executepostdatacg7free' function in all versions up to, and including, 5.0.9. This makes it possible for unauthenticated attackers to toggle site...

6.5CVSS0.00352EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/06/07 12:0 a.m.12 views

WordPress CF7 Google Sheets Connector Plugin <= 5.0.9 is vulnerable to Broken Access Control

Software CF7 Google Sheets Connector Type Plugin Vulnerable versions = 5.0.9 Fixed in 5.0.10 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-5654 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 90b82cd51794 Credits 1337Wannabe...

6.5CVSS6.5AI score0.00352EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2024/04/04 12:0 a.m.28 views

Debian: Security Advisory (DSA-5654-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.01599EPSS
Exploits0References2
Circl
Circl
added 2023/10/19 7:31 p.m.3 views

CVE-2023-5654

creationtimestamp| type| source ---|---|--- 2023-10-19 19:31:53+00:00| seen| https://t.me/cibsecurity/72575...

6.5CVSS6.3AI score0.00467EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2023/10/19 3:31 p.m.7 views

4help-app-shared (>=1.0.21 <=1.0.26), 4help-shared (>=1.0.2 <=1.0.20) +3205 more potentially affected by CVE-2023-5654 via react-devtools-core (>=1.0.6 <=4.28.0)

react-devtools-core NPM version =1.0.6, =1.0.21, =1.0.2, =0.0.1, =1.0.0, =0.0.1, =0.0.1, =1.0.22, =0.0.12, =1.2.0, =1.0.4, =0.0.1, =0.0.6 and more Source cves: CVE-2023-5654 Source advisory: OSV:GHSA-RXRC-RGV4-JPVX...

6.5CVSS6.5AI score0.00467EPSS
Exploits0
NVD
NVD
added 2023/10/19 3:15 p.m.11 views

CVE-2023-5654

The React Developer Tools extension registers a message listener with window.addEventListener'message', in a content script that is accessible to any webpage that is active in the browser. Within the listener is code that requests a URL derived from the received message via fetch. The URL is not...

6.5CVSS6.5AI score0.00467EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/19 2:28 p.m.20 views

CVE-2023-5654

The React Developer Tools extension registers a message listener with window.addEventListener'message', in a content script that is accessible to any webpage that is active in the browser. Within the listener is code that requests a URL derived from the received message via fetch. The URL is not...

6.5CVSS6.7AI score0.00467EPSS
Exploits0References1
CVE
CVE
added 2023/10/19 2:28 p.m.88 views

CVE-2023-5654

The CVE-2023-5654 issue affects the React Developer Tools extension and is caused by a content-script listener registered with window.addEventListener('message', …) that fetches a URL derived from a received message without validating/sanitising it. This allows a malicious page to trigger the vic...

6.5CVSS6.5AI score0.00467EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.115 views

Ubuntu 20.04 LTS : Linux kernel (GKE) vulnerabilities (USN-5654-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5654-1 advisory. It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of-...

8.2CVSS7.3AI score0.05561EPSS
Exploits3References7
Rows per page
Query Builder