CVE-2026-5741

creationtimestamp| type| source ---|---|--- 2026-04-07 21:22:30+00:00| published-proof-of-concept| Telegram/PsCoAl2rNCHfpa-IE94yjZNK4tjM6zifbqO0UkQOdEj8yI...

CVE-2026-5741 suvarchal docker-mcp-server HTTP index.ts pull_image os command injection

A weakness has been identified in suvarchal docker-mcp-server up to 0.1.0. The impacted element is the function stopcontainer/removecontainer/pullimage of the file src/index.ts of the component HTTP Interface. This manipulation causes os command injection. The attack is possible to be carried out...

MiracleLinux 7 : bind-9.11.4-9.P2.0.1.el7.AXS7 (AXSA:2019-4292:05)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4292:05 advisory. bind: Incorrect documentation of krb5-subdomain and ms-subdomain update policies CVE-2018-5741 Tenable has extracted the preceding description block directly...

Linux Distros Unpatched Vulnerability : CVE-2024-5741

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stored XSS in inventory tree rendering in Checkmk before 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 EOL CVE-2024-5741 Note that Nessus relies on the presence of the...

CVE-2025-5741

CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could cause arbitrary file reads from the charging station. The exploitation of this vulnerability does require an authenticated session of the web server...

CVE-2025-5741

CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could cause arbitrary file reads from the charging station. The exploitation of this vulnerability does require an authenticated session of the web server...

CVE-2025-5741

creationtimestamp| type| source ---|---|--- 2025-06-10 08:32:36+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17838 2025-06-24 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-175-04...

CVE-2025-5741

CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could cause arbitrary file reads from the charging station. The exploitation of this vulnerability does require an authenticated session of the web server...

CVE-2025-5741

CVE-2025-5741 affects Schneider Electric EVLink WallBox charging stations. The vulnerability is a Path Traversal (CWE-22) in the web server component that could allow an authenticated user to read arbitrary files on the device. Public documents note that exploitation requires an authenticated ses...

CVE-2025-5741

CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could cause arbitrary file reads from the charging station. The exploitation of this vulnerability does require an authenticated session of the web server...

CVE-2024-5741

Stored XSS in inventory tree rendering in Checkmk before 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 EOL...

CVE-2020-5741

Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated attacker to execute arbitrary Python code...

Debian: Security Advisory (DSA-5741-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-5741

Stored XSS in inventory tree rendering in Checkmk before 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 EOL...

CVE-2023-5741

The POWR plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'powr-powr-pack' shortcode in all versions up to, and including, 2.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2023-5741

CVE-2023-5741 corresponds to the Powr Pack plugin for WordPress (Powr Pack) vulnerability via the plugin shortcode powr-pack. The issue is a Stored XSS caused by insufficient input sanitization and output escaping on user-supplied shortcode attributes, exposing authenticated attackers with contri...

Oracle Linux 7 : bind (ELSA-2019-2057)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-2057 advisory. - Fix CVE-2019-6471 - Fix inefective limit of TCP clients CVE-2018-5743 Tenable has extracted the preceding description block directly from the Oracle Linux...

LastPass Hack: Engineer's Failure to Update Plex Software Led to Massive Data Breach

The massive breach at LastPass was the result of one of its engineers failing to update Plex on their home computer, in what's a sobering reminder of the dangers of failing to keep software up-to-date. The embattled password management service last week revealed how unidentified actors leveraged...

Security Bulletin: A vulnerability in ISC BIND affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (CVE-2018-5741)

Summary A vulnerability in ISC BIND affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data CVE-2018-5741. Please see below for details on how to remediate this issue. Vulnerability Details CVEID:CVE-2018-5741 DESCRIPTION: ISC BIND could allow a remote authenticated attacker to...

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Exim vulnerability (USN-5741-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5741-1 advisory. It was discovered that Exim incorrectly handled certain regular expressions. An attacker could use this issue to cause Exim to crash,...