MINI-XP74-5965-FPM5

Bulletin has no description...

CVE-2026-5965

NewSoftOA developed by NewSoft has an OS Command Injection vulnerability, allowing unauthenticated local attackers to inject arbitrary OS commands and execute them on the server...

CVE-2026-5965

creationtimestamp| type| source ---|---|--- 2026-04-20 20:23:00+00:00| seen| https://www.twcert.org.tw/en/cp-139-10857-c46f7-2.html 2026-04-21 04:30:30+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mjy5jzk6ke2l 2026-04-21 04:49:05+00:00| seen|...

CGA-82W7-5965-Q7J5

Bulletin has no description...

CVE-2025-5965

creationtimestamp| type| source ---|---|--- 2026-01-05 11:01:45+00:00| published-proof-of-concept| Telegram/bEi2Gyat6djXuIRCvYCqeze7lrAEFHYQrA4USIXVnSJ3PA 2026-01-06 05:26:59+00:00| seen| https://bsky.app/profile/malwarevangelist.com/post/3mbq7qffgwc27 2026-01-08 14:15:08+00:00| seen|...

CVE-2025-5965

In the backup parameters, a user with high privilege is able to concatenate custom instructions to the backup setup. Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Centreon Infra Monitoring Backup configuration in the administration setup...

CVE-2025-5965 RCE via the backup feature available only to user with high privilege

In the backup parameters, a user with high privilege is able to concatenate custom instructions to the backup setup. Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Centreon Infra Monitoring Backup configuration in the administration setup...

EUVD-2018-5965

Malware in sbrugna...

Debian: Security Advisory (DSA-5965-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-5965

Open redirect vulnerability in Joruri Mail 2.1.4 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...

WordPress Mosaic Theme <= 1.7.1 is vulnerable to Cross Site Scripting (XSS)

Software Mosaic Type Theme Vulnerable versions = 1.7.1 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5965 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 1e09a8bc3e16 Credits Francesco Carlucci Required privileg...

RHEL 8 : Red Hat OpenStack Platform 16.2.5 (collectd-libpod-stats, etcd) (RHSA-2023:5965)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:5965 advisory. A highly-available key value store for shared configuration Security Fixes: golang: net/http, x/net/http2: rapid stream resets can cause...

CVE-2023-5965

creationtimestamp| type| source ---|---|--- 2023-12-01 14:31:21+00:00| seen| https://t.me/arpsyndicate/857 2023-12-20 20:19:22+00:00| seen| https://t.me/ctinow/157266 2025-10-08 21:02:24+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3m2pk24tjff26...

CVE-2023-5965

EspoCRM 7.2.5 is affected: an authenticated privileged attacker could upload a specially crafted ZIP via the update form to achieve arbitrary PHP code execution. Connected sources confirm the issue and indicate a fix is needed, but no specific patched version is disclosed in the provided document...

CVE-2023-5965 Unrestricted Upload of File with Dangerous Type in EspoCRM

An authenticated privileged attacker could upload a specially crafted zip to the EspoCRM server in version 7.2.5, via the update form, which could lead to arbitrary PHP code execution...

NVIDIA GPU Display Driver - June 2020 Security Bulletin - Lenovo Support US

Lenovo Security Advisory: LEN-36925 Potential Impact: Privilege escalation, denial of service, information disclosure, code execution, tampering Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2020-5962, CVE-2020-5963, CVE-2020-5964, CVE-2020-5965, CVE-2020-5966, CVE-2020-5967,...

CVE-2020-5965

CVE-2020-5965 affects the NVIDIA Windows GPU Display Driver, specifically the DirectX 11 user mode driver component nvwgf2um/x.dll. A specially crafted shader can trigger an out-of-bounds access, leading to denial of service. The vulnerability is mapped to the NVIDIA GPU Display Driver family and...

CVE-2019-5965

The vulnerability CVE-2019-5965 is an Open Redirect in Joruri Mail ≤2.1.4 (CWE-601). A remote attacker can redirect users to arbitrary sites, enabling phishing via crafted pages. Affected product: Joruri Mail 2.1.4 and earlier. Root cause: improper handling of redirects. Impact: user phishing ris...

JVN#58052567: Multiple vulnerabilities in Joruri Mail

Joruri Mail provided by SiteBridge Inc. contains multiple vulnerabilities listed below. Open Redirect CWE-601 - CVE-2019-5965 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N| Base Score: 4.7 CVSS v2| AV:N/AC:H/Au:N/C:N/I:P/A:N| Base Score: 2.6 Session...

CVE-2018-5965

CMS Made Simple (CMSMS) 2.2.5 exposes a Cross-Site Scripting (XSS) vulnerability in admin/moduleinterface.php via the m1_errors parameter. The root cause, as stated, is unvalidated input being reflected, enabling script injection in the context of the admin interface. Public references in the con...