CVE-2026-5709

creationtimestamp| type| source ---|---|--- 2026-04-06 22:21:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miucg2xmrl2o 2026-04-06 23:22:29+00:00| seen| Telegram/dGmhhMfdsalqLxLHWWo3a-Yu-qP75XdMdTLlCh9YxDeGRw 2026-04-10 21:37:07+00:00| seen|...

EUVD-2025-5709

Malicious code in bioql PyPI...

CVE-2025-5709 code-projects Real Estate Property Management System InsertCategory.php sql injection

A vulnerability classified as critical was found in code-projects Real Estate Property Management System 1.0. This vulnerability affects unknown code of the file /Admin/InsertCategory.php. The manipulation of the argument txtCategoryName leads to sql injection. The attack can be initiated remotel...

CVE-2025-5709

CVE-2025-5709 affects Code-projects Real Estate Property Management System 1.0, specifically the file /Admin/InsertCategory.php. The vulnerability arises from manipulation of the parameter txtCategoryName , leading to an SQL injection in unknown code paths. The attack is remote and the exploit is...

CVE-2024-5709

The WPBakery Visual Composer plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 7.7 via the 'layoutname' parameter. This makes it possible for authenticated attackers, with Author-level access and above, and with post permissions granted by an...

CVE-2024-5709

creationtimestamp| type| source ---|---|--- 2024-08-06 09:09:11+00:00| seen| https://t.me/cvedetector/2540...

CVE-2024-5709 WPBakery <= 7.7 - Authenticated (Author+) Local File Inclusion

The WPBakery Visual Composer plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 7.7 via the 'layoutname' parameter. This makes it possible for authenticated attackers, with Author-level access and above, and with post permissions granted by an...

WordPress WPBakery Page Builder Plugin <= 7.7 is vulnerable to Local File Inclusion

Software WPBakery Page Builder Type Plugin Vulnerable versions = 7.7 Fixed in 7.8 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-5709 Patch priority Low CVSS severity Low 6.6 Developer WPBakery PSID 1374f7b043bd Credits João Pedro Soares de Alcântara Required privileg...

Debian: Security Advisory (DSA-5709-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WordPress WD WidgetTwitter Plugin <= 1.0.9 is vulnerable to SQL Injection

Software WD WidgetTwitter Type Plugin Vulnerable versions = 1.0.9 Fixed in N/A OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-5709 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID c5d291d814d2 Credits Lana Codes Required privilege Contributor Published...

Oracle Linux 8 : dotnet7.0 (ELSA-2023-5709)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-5709 advisory. 7.0.112-1.0.1 - Update to .NET SDK 7.0.112 and Runtime 7.0.12 - Resolves: RHEL-11698 Tenable has extracted the preceding description block directly from the...

AlmaLinux 8 : dotnet7.0 (ALSA-2023:5709)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:5709 advisory. - The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wild ...

RHEL 8 : dotnet7.0 (RHSA-2023:5709)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:5709 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. N...

BELL-CVE-2018-5709 CVE-2018-5709 does not affect BellSoft software

Bulletin has no description...

Ubuntu 18.04 LTS / 20.04 LTS : Firefox vulnerabilities (USN-5709-2)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5709-2 advisory. USN-5709-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the...

Ubuntu: Security Advisory (USN-5709-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 18.04 LTS / 20.04 LTS : Firefox vulnerabilities (USN-5709-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5709-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could...

Oracle Linux 9 : java-1.8.0-openjdk (ELSA-2022-5709)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-5709 advisory. 1.8.0.342.b07-1.0.1 - Replace upstream references Orabug: 34340145 1:1.8.0.342.b07-1 - Update to shenandoah-jdk8u342-b07 - Update release notes for...

RHEL 9 : java-1.8.0-openjdk (RHSA-2022:5709)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5709 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. The followin...

Carel pCOWeb HVAC BACnet Gateway 2.1.0 Unauthenticated Directory Traversal Vulnerability

Carel pCOWeb HVAC BACnet Gateway version 2.1.0 suffers from an unauthenticated arbitrary file disclosure vulnerability. Input passed through the file GET parameter through the logdownload.cgi bash script is not properly verified before being used to download log files. This can be exploited to...