CVE-2025-9505

creationtimestamp| type| source ---|---|--- 2025-08-27 06:35:29+00:00| seen| https://gist.github.com/Darkcrai86/d0598bb99bb282e6e6ff9d466cd4f315...

CVE-2019-9505

The PrinterLogic Print Management software, versions up to and including 18.3.1.96, does not sanitize special characters allowing for remote unauthorized changes to configuration files. An unauthenticated attacker may be able to remotely execute arbitrary code with SYSTEM privileges...

CVE-2024-9505

creationtimestamp| type| source ---|---|--- 2024-10-29 16:27:07+00:00| seen| https://t.me/cvedetector/9332...

WordPress Beaver Builder Plugin <= 2.8.4.2 is vulnerable to Cross Site Scripting (XSS)

Software Beaver Builder Type Plugin Vulnerable versions = 2.8.4.2 Fixed in 2.8.4.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9505 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID eb8c4e41b867 Credits zer0gh0st Required...

CVE-2015-9505

The CVE-2015-9505 entry concerns Easy Digital Downloads (EDD) core for WordPress, with an XSS vulnerability caused by misuse of add_query_arg across multiple versions. Affected versions include 1.8.x up to 1.8.6, 1.9.x up to 1.9.9, 2.0.x up to 2.0.4, 2.1.x up to 2.1.10, 2.2.x up to 2.2.8, and 2.3...

CVE-2019-9505

PrinterLogic Print Management Software (up to version 18.3.1.96) is affected by CVE-2019-9505 due to inadequate sanitization of special characters, enabling remote, unauthenticated execution of arbitrary code with SYSTEM privileges and remote changes to configuration files. Root cause: input hand...

CVE-2019-9505 PrinterLogic Print Management Software does not sanitize special characters

The PrinterLogic Print Management software, versions up to and including 18.3.1.96, does not sanitize special characters allowing for remote unauthorized changes to configuration files. An unauthenticated attacker may be able to remotely execute arbitrary code with SYSTEM privileges...

CVE-2018-9505

CVE-2018-9505 affects Android Bluetooth code (mca_ccb_hdl_req in mca_cact.cc) causing an out-of-bounds read due to a missing bounds check. The Android bulletin lists this as CVE-2018-9505 (Framework, ID) with High severity and notes affected patch levels, including 2018-10-01 and 2018-10-05 updat...

Atlassian Confluence CVE-2017-9505 Security Bypass Vulnerability

Atlassian Confluence is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2017-9505

Atlassian Confluence starting with 4.3.0 before 6.2.1 did not check if a user had permission to view a page when creating a workbox notification about new comments. An attacker who can login to Confluence could receive workbox notifications, which contain the content of comments, for comments add...

CVE-2017-9505

Atlassian Confluence, versions 4.3.0 up to 6.2.1, are vulnerable to an access-control bypass when creating a workbox notification for new comments. The root cause is failure to verify a viewer’s permission for the page, allowing an authenticated attacker who can log in to receive workbox notifica...

Access Restriction Bypass using watch notifications (CVE-2017-9505)

Confluence did not check if a user had permission to view a page when creating a workbox notification about new comments. An attacker who can login to Confluence could receive workbox notifications, which contain the content of comments, for comments added to a page after they started watching it...

CVE-2016-9505

CVE-2016-9505 is rejected/not used; this candidate does not represent an active vulnerability entry.

CVE-2016-9505

...

CVE-2014-9505

CVE-2014-9505 is a Cross-Site Scripting (XSS) vulnerability in the Drupal School Administration module (7.x-1.x) before 7.x-1.8. The issue arises because node titles are not properly sanitized, allowing remote authenticated users with permission to create or edit a class node to inject arbitrary ...

SA-CONTRIB-2014-127 - School Administration - Cross Site Scripting (XSS)

School Administration module enables you to keep records of all students and staff. With inner modules, it aims to be a complete school administration system. The module failed to sanitize some node titles in messages, leading to a Cross Site Scripting XSS vulnerability. This vulnerability is...

Fedora Core 11 FEDORA-2009-9505 (epiphany-extensions)

The remote host is missing an update to epiphany-extensions announced via advisory FEDORA-2009-9505. OpenVAS Vulnerability Test $Id: fcore20099505.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-9505 epiphany-extensions Authors: Thomas Reinke...