CVE-2026-9508

creationtimestamp| type| source ---|---|--- 2026-05-29 15:41:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmyurbtqhx2r...

CVE-2025-9508

creationtimestamp| type| source ---|---|--- 2025-08-27 06:34:14+00:00| seen| https://gist.github.com/Darkcrai86/5a4a8816207c485a6a7fad5e4ccb4623...

CVE-2025-9508

A vulnerability was detected in itsourcecode Apartment Management System 1.0. The impacted element is an unknown function of the file /report/rentedinfo.php. The manipulation of the argument rsid results in sql injection. The attack may be launched remotely. The exploit is now public and may be...

CVE-2025-9508 itsourcecode Apartment Management System rented_info.php sql injection

A vulnerability was detected in itsourcecode Apartment Management System 1.0. The impacted element is an unknown function of the file /report/rentedinfo.php. The manipulation of the argument rsid results in sql injection. The attack may be launched remotely. The exploit is now public and may be...

CVE-2015-9508

The Easy Digital Downloads EDD Commissions extension for WordPress, as used with EDD 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7, has XSS because addqueryarg is misused...

CVE-2024-9508

Horner Automation Cscape contains a memory corruption vulnerability, which could allow an attacker to disclose information and execute arbitrary code...

CVE-2024-9508 Horner Automation Cscape Out-of-bounds Read

Horner Automation Cscape contains a memory corruption vulnerability, which could allow an attacker to disclose information and execute arbitrary code...

CVE-2024-9508

CVE-2024-9508 affects Horner Automation Cscape. The vulnerability is a memory corruption issue in CSP file parsing that could allow an attacker to disclose information and execute arbitrary code. According to the sources, exploitation is local with low attack complexity and user interaction requi...

CVE-2024-9508 Horner Automation Cscape Out-of-bounds Read

Horner Automation Cscape contains a memory corruption vulnerability, which could allow an attacker to disclose information and execute arbitrary code...

CVE-2024-9508

creationtimestamp| type| source ---|---|--- 2024-12-10 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-345-05 2024-12-13 00:53:07+00:00| seen| https://infosec.exchange/users/cve/statuses/113642778608388164 2024-12-13 03:13:20+00:00| seen| https://t.me/cvedetector/128...

Oracle Linux 8 : microcode_ctl (ELSA-2022-9508)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-9508 advisory. 4:20220207-1.0.4 - ensure UEK also rebuilds initramfs Orabug: 34280058 Tenable has extracted the preceding description block directly from the Oracle...

CVE-2019-9508

creationtimestamp| type| source ---|---|--- 2020-03-31 03:17:20+00:00| seen| https://t.me/cibsecurity/10856...

CVE-2019-9508

The CVE-2019-9508 vulnerability affects the Vertiv Avocent UMG-4000 web interface (version 4.2.1.19). It is a stored cross-site scripting (XSS) flaw arising because the web interface does not sanitize input, enabling an authenticated administrator to store a maliciously named file that executes w...

Vertiv Avocent UMG-4000 vulnerable to command injection and cross-site scripting vulnerabilities

Overview The Vertiv Avocent Universal Management Gateway Model UMG-4000 is a data center management appliance. The web interface of the UMG-4000 is vulnerable to command injection, stored cross-site scripting XSS, and reflected XSS, which may allow an authenticated attacker with administrative...

CVE-2015-9508

creationtimestamp| type| source ---|---|--- 2019-10-23 20:27:47+00:00| seen| https://t.me/cibsecurity/7602 2024-01-17 16:07:32+00:00| seen| https://t.me/ctinow/169321...

CVE-2015-9508

CVE-2015-9508 concerns the Easy Digital Downloads (EDD) Commissions extension for WordPress. The issue is an XSS vulnerability caused by misuse of the add_query_arg function in multiple versions of the extension: 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2....

CVE-2018-9508

In smpprocesskeypressnotification of smpact.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Androi...

CVE-2018-9508

CVE-2018-9508 describes an out-of-bounds read in Bluetooth handling (smp_process_keypress_notification in smp_act.cc) that could lead to remote information disclosure without user interaction. Affected platforms include Android 7.0–8.1. The NVD notes a CVSSv3 base score of 6.5 (Attack vector: Adj...

CVE-2017-9508

Various resources in Atlassian Fisheye and Crucible before version 4.4.1 allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability through the name of a repository or review file...

Various XSS through a repository or review filename - CVE-2017-9508

Various resources in Atlassian FishEye and Crucible before version 4.4.1 allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability through the name of a repository or review file...