CVE-2026-9523

creationtimestamp| type| source ---|---|--- 2026-05-26 08:59:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmqmulzza42c...

CVE-2026-9523 Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform getCalcmeterDetailDayListTree sql injection

A vulnerability was detected in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2. Affected by this vulnerability is an unknown functionality of the file /SubstationWEBV2/app/..;/calc/getCalcmeterDetailDayListTree. Performing a manipulation of the argument...

ECHO-A96B-9523-5C06

Bulletin has no description...

CVE-2025-9523

creationtimestamp| type| source ---|---|--- 2025-08-27 13:15:39+00:00| seen| https://gist.github.com/win3zz/da5f1fb6e872c8ba50fcc5ed2dc0a82f...

MAL-2025-9523 Malicious code in @teamteanpm2024/harum-eligendi-aut (npm)

The package @teamteanpm2024/harum-eligendi-aut was found to contain malicious code...

LibRaw security update

0.19.5-4 - Backport fix for CVE-2021-32142 from upstream Resolves: RHEL-9523...

CVE-2015-9523

creationtimestamp| type| source ---|---|--- 2024-01-17 18:11:51+00:00| seen| https://t.me/ctinow/169380...

CVE-2020-9523

Insufficiently protected credentials vulnerability on Micro Focus enterprise developer and enterprise server, affecting all version prior to 4.0 Patch Update 16, and version 5.0 Patch Update 6. The vulnerability could allow an attacker to transmit hashed credentials for the user account running t...

CVE-2020-9523

The CVE-2020-9523 issue affects Micro Focus Enterprise Server and Micro Focus Enterprise Developer (MFDS context) where credentials are insufficiently protected. Affected: all versions prior to 4.0 Patch Update 16 and 5.0 Patch Update 6. Root cause: failure to adequately protect hashed credential...

CVE-2015-9523

CVE-2015-9523 affects the Easy Digital Downloads (EDD) Recommended Products extension for WordPress. The vulnerability is an XSS due to misuse of add_query_arg in EDD versions: 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2...

CVE-2018-9523

CVE-2018-9523 affects Android 7.0–9 in Parcel.java’s Parcel.writeMapInternal, where a parcel serialization/deserialization mismatch arises from improper input validation. This creates local privilege escalation with no user interaction required; the issue is exploitable locally within affected An...

CVE-2017-9523

The Sophos Web Appliance before 4.3.2 has XSS in the FTP redirect page, aka NSWA-1342...

CVE-2017-9523

The vulnerability CVE-2017-9523 affects Sophos Web Appliance prior to 4.3.2. It is a reflected cross-site scripting (XSS) issue in the FTP redirect page (ftp_redirect.php) caused by improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this via crafted reques...

CVE-2016-9523

CVE-2016-9523 is rejected/not used per the Initial Description; it does not represent an active vulnerability entry.

CVE-2014-9523

Multiple cross-site request forgery CSRF vulnerabilities in the Our Team Showcase our-team-enhanced plugin before 1.3 for WordPress allow remote attackers to hijack the authentication of administrators for requests that 1 change plugin settings via unspecified vectors or 2 conduct cross-site...

CVE-2014-9523

The CVE-2014-9523 entries describe CSRF and XSS vulnerabilities affecting the WordPress plugin Our Team Showcase (our-team-enhanced) in versions before 1.3. An attacker can hijack administrator sessions to change plugin settings via unspecified vectors and trigger XSS through the sc_our_team_memb...