Lucene search
+L

115 matches found

Circl
Circl
added 2026/05/07 3:26 p.m.12 views

CVE-2026-5784

creationtimestamp| type| source ---|---|--- 2026-05-07 15:26:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlbjnwbuc52v 2026-05-07 17:30:29+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mlbqlij36a2c 2026-05-07 19:50:22+00:00| seen|...

8.8CVSS5.8AI score0.00327EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 4 : axis-1.2.1-7.3.AXS4 (AXSA:2013-129:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2013-129:01 advisory. Apache AXIS is an implementation of the SOAP Simple Object Access Protocol submission to W3C. From the draft W3C specification: SOAP is a lightweight protocol...

5.8CVSS7.6AI score0.05722EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/13 10:29 a.m.17 views

Security Bulletin: IBM System Storage Support for Microsoft Volume Shadow Copy Service and Virtual Disk Service is vulnerable to multiple vulnerabilities due to Apache Axis. CVE-2018-8032, CVE-2014-3596, CVE-2019-0227, CVE-2012-5784

Summary IBM System Storage Support for Microsoft Volume Shadow Copy Service and Virtual Disk Service is vulnerable to multiple vulnerabilities due to Apache Axis. CVE-2018-8032, CVE-2014-3596, CVE-2019-0227, CVE-2012-5784. Vulnerability Details CVEID:CVE-2018-8032 DESCRIPTION: Apache Axis 1.x up ...

7.5CVSS7AI score0.86503EPSS
Exploits8Affected Software1
NVD
NVD
added 2025/06/06 4:15 p.m.11 views

CVE-2025-5784

A vulnerability has been found in PHPGurukul Employee Record Management System 1.3 and classified as critical. This vulnerability affects unknown code of the file /myexp.php. The manipulation of the argument emp3ctc leads to sql injection. The attack can be initiated remotely. The exploit has bee...

8.8CVSS0.00325EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/06/06 4:0 p.m.13 views

CVE-2025-5784 PHPGurukul Employee Record Management System myexp.php sql injection

A vulnerability has been found in PHPGurukul Employee Record Management System 1.3 and classified as critical. This vulnerability affects unknown code of the file /myexp.php. The manipulation of the argument emp3ctc leads to sql injection. The attack can be initiated remotely. The exploit has bee...

6.5CVSS0.00325EPSS
Exploits1References5
CVE
CVE
added 2025/06/06 4:0 p.m.58 views

CVE-2025-5784

The CVE-2025-5784 entry corresponds to a SQL injection in PHPGurukul Employee Record Management System 1.3, exploiting the /myexp.php file via the emp3ctc parameter. Connected sources (CNVD, NVD, CVE dedicated records) confirm an remote-able vulnerability with improper validation of external SQL ...

8.8CVSS7.6AI score0.00325EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/06 4:0 p.m.4 views

CVE-2025-5784 PHPGurukul Employee Record Management System myexp.php sql injection

A vulnerability has been found in PHPGurukul Employee Record Management System 1.3 and classified as critical. This vulnerability affects unknown code of the file /myexp.php. The manipulation of the argument emp3ctc leads to sql injection. The attack can be initiated remotely. The exploit has bee...

6.5CVSS7.8AI score0.00325EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 3:39 p.m.8 views

CVE-2020-5784

Server-Side Request Forgery in Teltonika firmware TRB2R00.02.04.3 allows a low privileged user to cause the application to perform HTTP GET requests to arbitrary URLs...

6.5CVSS7.1AI score0.00682EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2018-5784

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In LibTIFF 4.0.9, there is an uncontrolled resource consumption in the TIFFSetDirectory function of tifdir.c. Remote attackers could leverage this vulnerability...

6.5CVSS6.3AI score0.0296EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/10/07 12:0 a.m.9 views

Debian: Security Advisory (DSA-5784-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.5AI score0.00342EPSS
Exploits0References2
Circl
Circl
added 2024/08/30 7:17 a.m.6 views

CVE-2024-5784

creationtimestamp| type| source ---|---|--- 2024-08-30 07:17:28+00:00| seen| https://t.me/cvedetector/4495...

7.1CVSS4.8AI score0.00355EPSS
Exploits0References1
OSV
OSV
added 2024/08/30 4:15 a.m.6 views

CVE-2024-5784

The Tutor LMS Pro plugin for WordPress is vulnerable to unauthorized administrative actions execution due to a missing capability checks on multiple functions like treportquizatttemptdelete and tutorgcclassaction in all versions up to, and including, 2.7.2. This makes it possible for authenticate...

7.1CVSS5.9AI score0.00355EPSS
Exploits0References2
CVE
CVE
added 2024/08/30 3:24 a.m.58 views

CVE-2024-5784

CVE-2024-5784 (Tutor LMS Pro, WordPress) shows a vulnerability where missing capability checks in multiple functions (treport_quiz_atttempt_delete, tutor_gc_class_action) allow an authenticated user with subscriber-level access or higher to perform unauthorized administrative actions (e.g., delet...

7.1CVSS6.4AI score0.00355EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/08/30 3:24 a.m.37 views

CVE-2024-5784 Tutor LMS Pro <= 2.7.2 - Missing Authorization to Authenticated (Subscriber+) Insecure Direct Object Reference

The Tutor LMS Pro plugin for WordPress is vulnerable to unauthorized administrative actions execution due to a missing capability checks on multiple functions like treportquizatttemptdelete and tutorgcclassaction in all versions up to, and including, 2.7.2. This makes it possible for authenticate...

7.1CVSS0.00355EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/30 3:24 a.m.19 views

CVE-2024-5784 Tutor LMS Pro <= 2.7.2 - Missing Authorization to Authenticated (Subscriber+) Insecure Direct Object Reference

The Tutor LMS Pro plugin for WordPress is vulnerable to unauthorized administrative actions execution due to a missing capability checks on multiple functions like treportquizatttemptdelete and tutorgcclassaction in all versions up to, and including, 2.7.2. This makes it possible for authenticate...

7.1CVSS6.7AI score0.00355EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/08/30 12:0 a.m.16 views

WordPress Tutor LMS Pro Plugin <= 2.7.2 is vulnerable to Broken Access Control

Software Tutor LMS Pro Type Plugin Vulnerable versions = 2.7.2 Fixed in 2.7.3 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-5784 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 53b4f2fddbc0 Credits Thanh Nam Tran Required...

7.1CVSS6.5AI score0.00355EPSS
Exploits0References2Affected Software1
Circl
Circl
added 2023/10/26 6:15 p.m.7 views

CVE-2023-5784

creationtimestamp| type| source ---|---|--- 2023-10-26 18:15:58+00:00| seen| https://t.me/cibsecurity/72966...

9.8CVSS6.2AI score0.00671EPSS
Exploits1References1
CVE
CVE
added 2023/10/26 2:31 p.m.64 views

CVE-2023-5784

CVE-2023-5784 affects Netentsec NS-ASG Application Security Gateway 6.3. The vulnerability is in an unknown functionality of the file /protocol/firewall/uploadfirewall.php where manipulating the messagecontent parameter leads to SQL injection. Public exploit information exists and public disclosu...

9.8CVSS6.8AI score0.00671EPSS
Exploits1References3Affected Software1
0day.today
0day.today
added 2023/08/21 12:0 a.m.293 views

EuroTel ETL3100 - Transmitter Unauthenticated Config/Log Download Vulnerability

Exploit Title: EuroTel ETL3100 - Transmitter Unauthenticated Config/Log Download Exploit Author: LiquidWorm Vendor: EuroTel S.p.A. | SIEL, Sistemi Elettronici S.R.L Product web page: https://www.eurotel.it | https://www.siel.fm Affected version: v01c01 Microprocessor: socs0t10/ats01s01, Model:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2023/08/21 12:0 a.m.280 views

EuroTel ETL3100 - Transmitter Unauthenticated Config/Log Download

Exploit Title: EuroTel ETL3100 - Transmitter Unauthenticated Config/Log Download Exploit Author: LiquidWorm Vendor: EuroTel S.p.A. | SIEL, Sistemi Elettronici S.R.L Product web page: https://www.eurotel.it | https://www.siel.fm Affected version: v01c01 Microprocessor: socs0t10/ats01s01, Model:...

7.4AI score
Exploits0
Rows per page
Query Builder