55 matches found
JetBackup <= 2.0.9.7 - Sensitive Information Exposure via Directory Listing
JetBackup WordPress plugin = 2.0.9.9 does not use index files to prevent directory listing in certain configurations, letting malicious actors leak backup files, exploit requires access to the web server. id: CVE-2023-7165 info: name: JetBackup = 2.0.9.7 - Sensitive Information Exposure via...
Linux Distros Unpatched Vulnerability : CVE-2017-7165
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTun...
MAL-2025-7165 Malicious code in @crabas0npm/aliquid-aliquam-doloremque-aut (npm)
The package @crabas0npm/aliquid-aliquam-doloremque-aut was found to contain malicious code...
CVE-2025-7165
A vulnerability was found in PHPGurukul/Campcodes Cyber Cafe Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely...
CVE-2025-7165
A vulnerability was found in PHPGurukul/Campcodes Cyber Cafe Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely...
CVE-2025-7165
Vulnerability overview: CVE-2025-7165 affects PHPGurukul/Campcodes Cyber Cafe Management System 1.0. The flaw is a SQL injection in the /forgot-password.php endpoint triggered by manipulating the email parameter. This vulnerability is exploitable remotely (network vector) with no authentication, ...
AlmaLinux 9 : xorg-x11-server-Xwayland (ALSA-2025:7165)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:7165 advisory. xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability CVE-2024-9632 X.Org: Xwayland: Use-after-free of the root cursor...
CVE-2020-7165
A iccselectcommand expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center iMC versions: Prior to iMC PLAT 7.3 E0705P07...
Oracle Linux 9 : xorg-x11-server-Xwayland (ELSA-2025-7165)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7165 advisory. - CVE fix for: CVE-2025-26594 RHEL-80204, CVE-2025-26595 RHEL-80187, CVE-2025-26596 RHEL-80190, CVE-2025-26597 RHEL-80193, CVE-2025-26598 RHEL-80195,...
CVE-2024-7165
creationtimestamp| type| source ---|---|--- 2024-07-28 21:03:28+00:00| seen| https://t.me/cvedetector/1781...
CVE-2024-7165 SourceCodester School Fees Payment System view_payment.php sql injection
A vulnerability was found in SourceCodester School Fees Payment System 1.0 and classified as critical. This issue affects some unknown processing of the file /viewpayment.php. The manipulation of the argument efid leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2024-7165 SourceCodester School Fees Payment System view_payment.php sql injection
A vulnerability was found in SourceCodester School Fees Payment System 1.0 and classified as critical. This issue affects some unknown processing of the file /viewpayment.php. The manipulation of the argument efid leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2023-7165
creationtimestamp| type| source ---|---|--- 2024-02-27 10:26:10+00:00| seen| https://t.me/ctinow/194184 2024-02-27 10:26:29+00:00| seen| https://t.me/ctinow/194198 2026-04-09 03:37:19+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2023/CVE-2023-7165.yam...
CVE-2023-7165
The JetBackup WordPress plugin before 2.0.9.9 doesn't use index files to prevent public directory listing of sensitive directories in certain configurations, which allows malicious actors to leak backup files...
CVE-2023-7165 JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
The JetBackup WordPress plugin before 2.0.9.9 doesn't use index files to prevent public directory listing of sensitive directories in certain configurations, which allows malicious actors to leak backup files...
CVE-2023-7165
CVE-2023-7165 affects JetBackup WordPress plugin prior to 2.0.9.9. The vulnerability stems from not using index files to block public directory listings, enabling leakage of backup files from /wp-content/uploads/jetbackup in certain configurations. Patch to 2.0.9.9+ or apply server-side controls ...
Oracle Linux 8 : cups (ELSA-2023-7165)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-7165 advisory. - CVE-2023-32360 cups: Information leak through Cups-Get-Document operation - CVE-2023-34241 cups: use-after-free in cupsdAcceptClient in...
Ubuntu: Security Advisory (USN-5356-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2019-0205)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:3387-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...