Lucene search
K

54 matches found

OSV
OSV
added 2026/06/09 7:45 p.m.4 views

MINI-5674-8JH2-534M

Bulletin has no description...

8.1CVSS5.2AI score0.00552EPSS
Exploits0
OSV
OSV
added 2026/06/05 4:52 p.m.3 views

MINI-5674-XFC7-WWJX

Bulletin has no description...

9.6CVSS5.2AI score0.00478EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/05 12:0 a.m.2 views

EPSON Printers Uncontrolled Search Path Element (CVE-2020-5674)

Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

7.8CVSS7.4AI score0.00343EPSS
Exploits0References4
OSV
OSV
added 2025/06/05 7:15 p.m.3 views

CVE-2025-5674

A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file urinalysisform.php. The manipulation of the argument urinalysisid leads to sql injection. The attack may be launched remotel...

8.8CVSS5.8AI score0.00369EPSS
Exploits1References5
CVE
CVE
added 2025/06/05 6:0 p.m.57 views

CVE-2025-5674

CVE-2025-5674 affects code-projects Patient Record Management System 1.0. The vulnerability is a SQL injection in urinalysis_form.php caused by lack of validation of the urinalysis_id parameter, enabling remote exploitation. Multiple connected sources (CNVD, Red Hat, CNVD/CVELIST mirrors, CNNVD, ...

8.8CVSS6.8AI score0.00369EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/05 6:0 p.m.7 views

CVE-2025-5674 code-projects Patient Record Management System urinalysis_form.php sql injection

A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file urinalysisform.php. The manipulation of the argument urinalysisid leads to sql injection. The attack may be launched remotel...

6.5CVSS7.3AI score0.00369EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/06/05 6:0 p.m.15 views

CVE-2025-5674 code-projects Patient Record Management System urinalysis_form.php sql injection

A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file urinalysisform.php. The manipulation of the argument urinalysisid leads to sql injection. The attack may be launched remotel...

6.5CVSS0.00369EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 8:55 a.m.14 views

CVE-2024-5674

The Newsletter - API v1 and v2 addon plugin for WordPress is vulnerable to unauthorized subscribers management due to PHP type juggling issue on the checkapikey function in all versions up to, and including, 2.4.5. This makes it possible for unauthenticated attackers to list, create or delete...

6.5CVSS6.9AI score0.00317EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:7 a.m.9 views

CVE-2023-5674

The WP Mail Log WordPress plugin before 1.1.3 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as Contributor...

8.8CVSS7.5AI score0.10826EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:26 p.m.10 views

CVE-2020-5674

Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8CVSS7.1AI score0.00343EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/12 11:5 a.m.36 views

CVE-2024-5674 Newsletter - API v1 and v2 addon for Newsletter <= 2.4.5 - Missing Authorization to Email Subscribers Management

The Newsletter - API v1 and v2 addon plugin for WordPress is vulnerable to unauthorized subscribers management due to PHP type juggling issue on the checkapikey function in all versions up to, and including, 2.4.5. This makes it possible for unauthenticated attackers to list, create or delete...

6.5CVSS0.00317EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/12 11:5 a.m.18 views

CVE-2024-5674 Newsletter - API v1 and v2 addon for Newsletter <= 2.4.5 - Missing Authorization to Email Subscribers Management

The Newsletter - API v1 and v2 addon plugin for WordPress is vulnerable to unauthorized subscribers management due to PHP type juggling issue on the checkapikey function in all versions up to, and including, 2.4.5. This makes it possible for unauthenticated attackers to list, create or delete...

6.5CVSS7.2AI score0.00317EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/06/12 12:0 a.m.17 views

WordPress Newsletter - API addon (Premium) Plugin <= 2.4.5 is vulnerable to Broken Access Control

Software Newsletter - API addon Premium Type Plugin Vulnerable versions = 2.4.5 Fixed in 2.4.6 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-5674 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID f2621f00fec2 Credits Arkadiusz...

6.5CVSS6.5AI score0.00317EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2024/04/26 12:0 a.m.10 views

Debian: Security Advisory (DSA-5674-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.00825EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/04/25 12:0 a.m.16 views

Debian dsa-5674 : pdns-recursor - security update

The remote Debian 12 host has a package installed that is affected by a vulnerability as referenced in the dsa-5674 advisory. - A crafted response from an upstream server the recursor has been configured to forward-recurse to can cause a Denial of Service in the Recursor. The default configuratio...

7.5CVSS7.2AI score0.00825EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/01/30 1:25 p.m.48 views

Moderate: Red Hat Security Advisory: curl security and bug fix update

An update for curl is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

6.5CVSS6.7AI score0.02211EPSS
Exploits2References4
Circl
Circl
added 2023/12/26 8:26 p.m.5 views

CVE-2023-5674

creationtimestamp| type| source ---|---|--- 2023-12-26 20:26:51+00:00| seen| https://t.me/ctinow/159438 2024-01-04 21:22:08+00:00| seen| https://t.me/ctinow/163232 2024-01-19 14:11:31+00:00| seen| https://t.me/ctinow/170202...

8.8CVSS7.3AI score0.10826EPSS
Exploits2References3
OSV
OSV
added 2023/12/26 7:15 p.m.5 views

CVE-2023-5674

The WP Mail Log WordPress plugin before 1.1.3 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as Contributor...

8.8CVSS5.8AI score0.10826EPSS
Exploits2References1
NVD
NVD
added 2023/12/26 7:15 p.m.24 views

CVE-2023-5674

The WP Mail Log WordPress plugin before 1.1.3 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as Contributor...

8.8CVSS0.10826EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/12/26 6:33 p.m.20 views

CVE-2023-5674 WP Mail Log < 1.1.3 – Contributor+ SQL Injection in wml_logs/send_mail endpoint

The WP Mail Log WordPress plugin before 1.1.3 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as Contributor...

9.2AI score0.10826EPSS
Exploits2References1
Rows per page
Query Builder