CVE-2026-9582

CVE-2026-9582 affects SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. The vulnerability is described as a cross-site request forgery in an unknown function, exploitable remotely. Public PoCs/exploits have been released. The available documents do not specify the exac...

CVE-2025-9582

creationtimestamp| type| source ---|---|--- 2025-08-28 20:05:34+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115108186282315522...

MAL-2025-9582 Malicious code in @tuan149/api-wind (npm)

The package @tuan149/api-wind was found to contain malicious code...

CVE-2020-9582

Magento versions 2.3.4 and earlier, 2.2.11 and earlier see note, 1.14.4.4 and earlier, and 1.9.4.4 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...

CVE-2019-9582

eQ-3 Homematic CCU2 outdated base software packages allows Denial of Service. CCU2 affected versions: 2.35.16, 2.41.5, 2.41.8, 2.41.9, 2.45.6, 2.45.7, 2.47.10, 2.47.12, 2.47.15...

CVE-2024-9582

creationtimestamp| type| source ---|---|--- 2024-10-16 10:30:04+00:00| seen| https://t.me/cvedetector/8003...

WordPress Accordion Slider Plugin <= 1.9.11 is vulnerable to Cross Site Scripting (XSS)

Software Accordion Slider Type Plugin Vulnerable versions = 1.9.11 Fixed in 1.9.12 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9582 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 14d97d769a8a Credits Muhammad Adel ItsFadi...

CGA-9582-FC99-95PQ

Bulletin has no description...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2022-9582)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2022-9582 advisory. - floppy: use a statically allocated error counter Willy Tarreau CVE-2022-1652 Tenable has extracted the preceding description block directly from the Oracle...

Critical Magento Flaws Allow Code Execution

Critical flaws in Adobe’s Magento e-commerce platform – which is commonly targeted by attackers like the Magecart cybergang – could enable arbitrary code execution on affected systems. Magento is a popular, Adobe-owned open-source e-commerce platform that powers many online shops. Adobe on Tuesda...

CVE-2020-9582

CVE-2020-9582 concerns Magento command injection. Affected versions: Magento 2.3.4 and earlier, 2.2.11 and earlier (see note), 1.14.4.4 and earlier, and 1.9.4.4 and earlier. Description: these versions have a command-injection vulnerability that could lead to arbitrary code execution if exploited...

CVE-2019-9582

eQ-3 Homematic CCU2 outdated base software packages allows Denial of Service. CCU2 affected versions: 2.35.16, 2.41.5, 2.41.8, 2.41.9, 2.45.6, 2.45.7, 2.47.10, 2.47.12, 2.47.15...

CVE-2019-9582

eQ-3 Homematic CCU2 outdated base software packages allows Denial of Service. CCU2 affected versions: 2.35.16, 2.41.5, 2.41.8, 2.41.9, 2.45.6, 2.45.7, 2.47.10, 2.47.12, 2.47.15...

CVE-2019-9582

CVE-2019-9582 affects eQ-3 Homematic CCU2 via outdated base software packages, enabling Denial of Service. Affected CCU2 versions: 2.35.16, 2.41.5, 2.41.8, 2.41.9, 2.45.6, 2.45.7, 2.47.10, 2.47.12, 2.47.15. The provided connected documents state the vulnerability vector as a DoS condition due to ...

CVE-2018-9582

CVE-2018-9582 affects Android 8.0–9 package installer, enabling local elevation of privilege via bypassing the unknown-source warning in a confused deputy scenario. Exploitation requires no user interaction; attacker gains partial to high impact on confidentiality, integrity, and availability. Th...

CVE-2017-9582

The "BNB Mobile Banking" by Brady National Bank app 3.0.0 -- aka bnb-mobile-banking/id674215747 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2017-9582

The CVE-2017-9582 entry concerns the iOS app “BNB Mobile Banking” ( Brady National Bank ) version 3.0.0, which does not verify X.509 certificates when connecting to SSL servers. This vulnerable behavior enables man-in-the-middle attackers to spoof servers and obtain sensitive information via a cr...

CVE-2016-9582

CVE-2016-9582 is rejected and does not represent an active vulnerability entry.

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-9445, CVE-2014-9581, CVE-2014-9582. Reason: This candidate is not authorized for use because it is part of the 2014 CVE-ID ID-Syntax protection block, which protects against accidental truncation of CVE IDs with sequence...

CVE-2014-9582

Cross-site scripting XSS vulnerability in components/filemanager/dialog.php in Codiad 2.4.3 allows remote attackers to inject arbitrary web script or HTML via the shortname parameter in a rename action. NOTE: this issue was originally incorrectly mapped to CVE-2014-1137; see CVE-2014-1137 for mor...