36 matches found
MINI-5955-JR6V-G492
Bulletin has no description...
MINI-5955-2QQF-66FM
Bulletin has no description...
CVE-2025-5955
creationtimestamp| type| source ---|---|--- 2025-09-19 08:01:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lz6fkytigd2g 2026-04-26 01:33:05+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mkefxgfrwx2h...
WordPress Service Finder SMS System plugin <= 2.0.0 - Authentication Bypass vulnerability
Authentication Bypass vulnerability discovered by Foxyyy in WordPress Plugin Service Finder SMS System versions = 2.0.0...
CVE-2020-5955
An issue was discovered in Int15MicrocodeSmm in Insyde InsydeH2O before 2021-10-14 on Intel client chipsets. A caller may be able to escalate privileges...
CVE-2019-5955
CREATE SD official App for Android version 1.0.2 and earlier allows remote attackers to bypass access restriction to lead a user to access an arbitrary website via vulnerable application and conduct phishing attacks...
CVE-2024-5955
Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...
CVE-2024-5955
creationtimestamp| type| source ---|---|--- 2024-12-20 05:56:17+00:00| seen| https://infosec.exchange/users/cve/statuses/113683606875514578 2024-12-20 06:15:46+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldpqdw7r2u2s 2024-12-20 08:23:00+00:00| seen|...
CVE-2024-5955
Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...
CVE-2024-5955
Summary: CVE-2024-5955 is a cross-site scripting vulnerability in Trellix ePolicy Orchestrator (ePO) prior to 5.10 Service Pack 1 Update 3. The issue allows a remote authenticated attacker to craft requests that inject arbitrary content into the response when accessing ePolicy Orchestrator. Affec...
GitStack Unauthenticated REST API Requests
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GitStack Unauthenticated REST API Requests', 'Description' = %q This modules exploits unauthenticated REST API requests in GitStack through...
CVE-2023-5955
creationtimestamp| type| source ---|---|--- 2024-01-01 14:31:24+00:00| seen| https://t.me/ctinow/161312...
CVE-2023-5955
The Contact Form Email WordPress plugin before 1.3.44 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-5955 Contact Form Email < 1.3.44 - Editor+ Stored Cross-Site Scripting
The Contact Form Email WordPress plugin before 1.3.44 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-5955
CVE-2023-5955 affects the WordPress plugin Contact Form Email up to version 1.3.44 . The issue arises because the plugin does not adequately sanitize and escape certain settings, enabling stored XSS via an exploited admin/editor action, including scenarios where the unfiltered_html capability is ...
Ubuntu: Security Advisory (USN-5955-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-5955
creationtimestamp| type| source ---|---|--- 2021-11-03 06:23:17+00:00| seen| https://t.me/cibsecurity/31687...
CVE-2020-5955
CVE-2020-5955 is a privilege-escalation vulnerability in the InsydeH2O BIOS/firmware stack, specifically in the Int15MicrocodeSmm component of InsydeInsydeH2O on Intel client chipsets. The issue arises from uncontrolled input to the SMI handler in the Int15MicrosoftSmm driver, enabling a caller t...
GitStack Authentication Bypass (CVE-2018-5955)
A vulnerability exists in smart-mobile-software GitStack. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
CVE-2019-5955
creationtimestamp| type| source ---|---|--- 2019-05-17 16:51:36+00:00| seen| https://t.me/cvemitreorg/45...