62 matches found
CVE-2026-5977
creationtimestamp| type| source ---|---|--- 2026-04-09 23:29:26+00:00| published-proof-of-concept| Telegram/RnbO6h7rE-8F1e1uXIlS73R4kRuAIo63byQ11pUP09Fz6LA 2026-04-10 07:59:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mj4u4gsjkx2w...
MiracleLinux 8 : container-tools:rhel8 (AXSA:2023-5977:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5977:01 advisory. golang: net/http: improper sanitization of Transfer-Encoding header CVE-2022-1705 golang: go/parser: stack exhaustion in all Parse functions...
Debian: Security Advisory (DSA-5977-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2025-5977
creationtimestamp| type| source ---|---|--- 2025-06-10 20:31:45+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17987...
CVE-2025-5977
A vulnerability was found in code-projects School Fees Payment System 1.0 and classified as critical. This issue affects some unknown processing of the file /datatable.php. The manipulation of the argument sSortDir0 leads to sql injection. The attack may be initiated remotely. The exploit has bee...
CVE-2025-5977
CVE-2025-5977 affects code-projects School Fees Payment System 1.0. The vulnerability is a SQL injection in the file /datatable.php caused by unsafely handling the sSortDir_0 parameter. It can be exploited remotely and may lead to unauthorized data access or modification; multiple sources describ...
CVE-2025-5977 code-projects School Fees Payment System datatable.php sql injection
A vulnerability was found in code-projects School Fees Payment System 1.0 and classified as critical. This issue affects some unknown processing of the file /datatable.php. The manipulation of the argument sSortDir0 leads to sql injection. The attack may be initiated remotely. The exploit has bee...
Linux Distros Unpatched Vulnerability : CVE-2017-5977
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The zzipmementryextrablock function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service invalid memory read and crash via a...
CVE-2024-5977
creationtimestamp| type| source ---|---|--- 2024-07-19 13:42:10+00:00| seen| https://t.me/cvedetector/1212...
CVE-2024-5977 GiveWP – Donation Plugin and Fundraising Platform <= 3.13.0 - Insecure Direct Object Reference to Authenticated (GiveWP Worker+) Arbitrary Post Actions
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 3.13.0 via the 'handleRequest' function due to missing validation on a user controlled key. This makes it possible for authenticated...
CVE-2024-5977 GiveWP – Donation Plugin and Fundraising Platform <= 3.13.0 - Insecure Direct Object Reference to Authenticated (GiveWP Worker+) Arbitrary Post Actions
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 3.13.0 via the 'handleRequest' function due to missing validation on a user controlled key. This makes it possible for authenticated...
WordPress GiveWP Plugin <= 3.13.0 is vulnerable to Insecure Direct Object References (IDOR)
Software GiveWP Type Plugin Vulnerable versions = 3.13.0 Fixed in 3.14.0 OWASP Top 10 A1: Broken Access Control Classification Insecure Direct Object References IDOR CVE CVE-2024-5977 Patch priority Low CVSS severity Low 5.4 Developer Liquid Web / StellarWP PSID 3e3c50f20b4c Credits Thanh Nam Tra...
CVE-2023-5977
Rejected reason: Accidental Request...
Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-5977-1)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5977-1 advisory. It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker...
Mageia: Security Advisory (MGASA-2017-0163)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for zziplib (EulerOS-SA-2021-1240)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
NVIDIA GeForce Experience - October 2020 - Lenovo Support US
No description provided...
CVE-2020-5977
CVE-2020-5977 details (NVIDIA GeForce Experience Windows) : A vulnerability in the NVIDIA Web Helper NodeJS Web Server exists in GeForce Experience all versions before 3.20.5.70. The issue stems from an uncontrolled search path used to load a Node.js module, enabling a local attacker to potential...
Nvidia Warns Gamers of Severe GeForce Experience Flaws
Nvidia, which makes gaming-friendly graphics processing units GPUs, has issued fixes for two high-severity flaws in the Windows version of its GeForce Experience software. GeForce Experience is a supplemental application to the GeForce GTX graphics card — it keeps users’ drivers up-to-date,...
Security Bulletin: NVIDIA GeForce Experience - October 2020
NVIDIA has released a software security update for NVIDIA® GeForce Experience™ software. This update addresses issues that may lead to denial of service, escalation of privileges, code execution, or information disclosure. To protect your system, download and install this software update from the...