CVE-2026-5708

creationtimestamp| type| source ---|---|--- 2026-04-06 22:28:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miucrfzhbw2o 2026-04-06 23:22:29+00:00| seen| Telegram/dGmhhMfdsalqLxLHWWo3a-Yu-qP75XdMdTLlCh9YxDeGRw 2026-04-07 04:11:48+00:00| seen|...

CVE-2019-11511

Zoho ManageEngine ADSelfService Plus before build 5708 has XSS via the mobile app API...

CVE-2025-5708

A vulnerability classified as critical has been found in code-projects Real Estate Property Management System 1.0. This affects an unknown part of the file /Admin/NewsReport.php. The manipulation of the argument txtFrom leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2025-5708

A vulnerability classified as critical has been found in code-projects Real Estate Property Management System 1.0. This affects an unknown part of the file /Admin/NewsReport.php. The manipulation of the argument txtFrom leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2025-5708

The CVE-2025-5708 entry affects code-projects Real Estate Property Management System 1.0, specifically the /Admin/NewsReport.php file. The root cause is improper handling of the txtFrom parameter, enabling SQL injection with remote attack potential. Public exploit/details have been disclosed. Pra...

CVE-2025-5708 code-projects Real Estate Property Management System NewsReport.php sql injection

A vulnerability classified as critical has been found in code-projects Real Estate Property Management System 1.0. This affects an unknown part of the file /Admin/NewsReport.php. The manipulation of the argument txtFrom leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2025-5708 code-projects Real Estate Property Management System NewsReport.php sql injection

A vulnerability classified as critical has been found in code-projects Real Estate Property Management System 1.0. This affects an unknown part of the file /Admin/NewsReport.php. The manipulation of the argument txtFrom leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2023-22624

Zoho ManageEngine Exchange Reporter Plus before 5708 allows attackers to conduct XXE attacks...

CVE-2013-5708

Coursemill Learning Management System LMS 6.8 constructs secret tokens based on time values, which makes it easier for remote attackers to conduct cross-site request forgery CSRF attacks via vectors related to cookies, a different vulnerability than CVE-2013-3605...

CVE-2006-5708

creationtimestamp| type| source ---|---|--- 2025-04-03 15:34:55+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10244...

CVE-2024-5708

creationtimestamp| type| source ---|---|--- 2024-08-06 09:09:15+00:00| seen| https://t.me/cvedetector/2541...

CVE-2024-5708 WPBakery <= 7.7 - Authenticated (Author+) Stored Cross-Site Scripting

The WPBakery Visual Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ parameter in all versions up to, and including, 7.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level acces...

Malicious code in wlwz-2312-5708 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5f56bfb3fd82293222f2ae781c4175a97718510049c2f618218a0c1b74d30bba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-5708 WP Post Columns <= 2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The WP Post Columns plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'column' shortcode in all versions up to, and including, 2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2023-5708

CVE-2023-5708 affects WP Post Columns plugin for WordPress (

Rocky Linux 9 : dotnet6.0 (RLSA-2023:5708)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:5708 advisory. - The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wil...

WordPress WP Post Columns Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Software WP Post Columns Type Plugin Vulnerable versions = 2.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-5708 Patch priority Low CVSS severity Low 6.4 Developer Claim ownership PSID c69c50e97d86 Credits István Márton Required...

Oracle Linux 9 : dotnet6.0 (ELSA-2023-5708)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-5708 advisory. 6.0.123-1.0.1 - Update to .NET SDK 6.0.123 and Runtime 6.0.23 - Resolves: RHEL-11696 Tenable has extracted the preceding description block directly from the...

AlmaLinux 9 : dotnet6.0 (ALSA-2023:5708)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:5708 advisory. - The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wild ...

RHEL 9 : dotnet6.0 (RHSA-2023:5708)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:5708 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. N...