CVE-2025-5799

creationtimestamp| type| source ---|---|--- 2025-06-06 19:42:58+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114638125652421315 2025-06-06 21:33:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqxrwxrno525...

CVE-2012-5799

The Canada Post aka CanadaPost module in PrestaShop does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate,...

Debian: Security Advisory (DSA-5799-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-5799

creationtimestamp| type| source ---|---|--- 2024-09-12 08:56:03+00:00| seen| https://t.me/cvedetector/5452...

CVE-2024-5799

CVE-2024-5799 : The WordPress plugin CM Pop-Up Banners prior to version 1.7.3 is affected by a stored XSS vulnerability due to insufficient sanitisation/escaping of certain popup fields. This could allow high-privilege users (e.g., Contributors) to perform XSS. Affected product: CM Pop-Up Banners...

CVE-2024-5799 CM Pop-Up Banners for WordPress < 1.7.3 - Contributor+ Stored XSS

The CM Pop-Up Banners for WordPress plugin before 1.7.3 does not sanitise and escape some of its popup fields, which could allow high privilege users such as Contributors to perform Cross-Site Scripting attacks...

CVE-2024-5799 CM Pop-Up Banners for WordPress < 1.7.3 - Contributor+ Stored XSS

The CM Pop-Up Banners for WordPress plugin before 1.7.3 does not sanitise and escape some of its popup fields, which could allow high privilege users such as Contributors to perform Cross-Site Scripting attacks...

CVE-2023-5799 WP Hotel Booking < 2.0.9 - Contributor+ Arbitrary Post Deletion

The WP Hotel Booking WordPress plugin before 2.0.8 does not have proper authorisation when deleting a package, allowing Contributor and above roles to delete posts that do no belong to them...

CVE-2023-5799

WP Hotel Booking WordPress plugin prior to 2.0.8 is affected by an authorization flaw in package deletion, allowing Contributor and above roles to delete posts that do not belong to them. The issue originates from insufficient access checks on the deletion operation and is documented across multi...

TEM Opera Plus FM Family Transmitter 35.45 Remote Code Execution Vulnerability

TEM Opera Plus FM Family Transmitter 35.45 Remote Code Execution Vendor: Telecomunicazioni Elettro Milano TEM S.r.l. Product web page: https://www.tem-italy.it Affected version: Software version: 35.45 Webserver version: 1.7 Summary: This new line of Opera plus FM Transmitters combines very high...

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerability (USN-5799-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-5799-1 advisory. Kyle Zeng discovered that the sysctl implementation in the Linux kernel contained a stack-based buffer overflow. A local attacker could use this to cause a denial...

Ubuntu: Security Advisory (USN-5799-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 9 : go-toolset / and / golang (ELSA-2022-5799)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-5799 advisory. golang 1.17.12-1 - Update Go to version 1.17.12 - Resolves: rhbz2109183 1.17.7-2 - Clean up dist-git patches - Resolves: rhbz2109174 go-toolset 1.17.12...

RHEL 9 : go-toolset and golang (RHSA-2022:5799)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5799 advisory. Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. The golang packages provide the Go...

CVE-2020-5799

creationtimestamp| type| source ---|---|--- 2020-12-07 16:30:00+00:00| seen| https://t.me/cibsecurity/17182...

CVE-2020-5799

The CVE-2020-5799 entry concerns the Eat Spray Love mobile app for iOS and Android, where a backdoor account could be modified to grant privileged access to restricted functionality and to other users’ data. The issue is described consistently across sources as a backdoor account weakness, not a ...

CVE-2019-5799

creationtimestamp| type| source ---|---|--- 2019-05-23 20:48:32+00:00| seen| https://t.me/cvemitreorg/274...

CVE-2019-5799

Incorrect inheritance of a new document's policy in Content Security Policy in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to bypass content security policy via a crafted HTML page...

CVE-2019-5799

CVE-2019-5799 is a CSP bypass in Chromium/Google Chrome via blob URLs, affecting versions before 73.0.3683.75. Root cause: content security policy bypass in CSP handling for blob URLs. Impact: remote attacker could bypass CSP and access restricted content. Remediation: upgrade to Chromium/Chrome ...

Important: Red Hat Security Advisory: chromium-browser security update

An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...