174 matches found
RHEL 8 / 9 : OpenShift Container Platform 4.16.55 (RHSA-2026:0418)
The remote Redhat Enterprise Linux 8 / 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:0418 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...
CVE-2021-0418
In memory management driver, there is a possible system crash due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05336706...
EUVD-2013-0404
Malware in sbrugna...
CVE-2023-0418
The Video Central for WordPress plugin through 1.3.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...
CVE-2025-0418
creationtimestamp| type| source ---|---|--- 2025-04-01 04:32:01+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9833 2025-04-01 07:45:58+00:00| seen| https://t.me/cvedetector/21703 2025-04-01 13:22:42+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114262917862981908 2025-04-01...
CVE-2025-0418
Valmet DNA CVE-2025-0418 involves storing user passwords in plain text, as described across multiple sources. The vulnerability affects Valmet DNA where local project data can expose passwords if accessed, implying insufficient protection of credentials in storage. The primary concrete detail ava...
CVE-2023-0418
creationtimestamp| type| source ---|---|--- 2025-02-06 02:42:28+00:00| seen| Telegram/BNff236smqNkhJPM7s5dIIEFjQNAWaPJnVQJgJoDjeLFAIr...
Photon OS 3.0: Vim PHSA-2022-3.0-0418
An update of the vim package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-3.0-0418. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid20388...
BrewStillery (>=1.0.0 <=6.2.0), Druid_task1 (=0.1.0) +397 more potentially affected by unknown CVE via gdk-sys (>=0.10.0 <=0.9.1)
gdk-sys CARGO version =0.10.0, =1.0.0, =0.13.2, =1.0.0, =0.2.0, =0.1.0, =0.0.1, =0.1.2, =0.1.0, =0.21.0, =0.30.1 - avr-vm =0.1.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2024-0418...
RHEL 8 : avahi (RHSA-2024:0418)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0418 advisory. Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates...
RHSA-2024:0418
creationtimestamp| type| source ---|---|--- 2024-01-24 18:16:29+00:00| seen| https://t.me/ctinow/172966...
CVE-2023-0418 Video Central for WordPress <= 1.3.0 - Contributor+ Stored XSS
The Video Central for WordPress plugin through 1.3.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...
CVE-2023-0418 Video Central for WordPress <= 1.3.0 - Contributor+ Stored XSS
The Video Central for WordPress plugin through 1.3.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...
CVE-2023-0418
CVE-2023-0418 affects the Video Central for WordPress plugin up to version 1.3.0. The vulnerability is a Stored XSS due to insufficient validation and escaping of certain shortcode attributes when output in pages/posts that embed the shortcode. Impact is limited to users with contributor role and...
WordPress Video Central Plugin <= 1.3.0 is vulnerable to Cross Site Scripting (XSS)
Software Video Central Type Plugin Vulnerable versions = 1.3.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0418 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 6114cbd9fcb5 Credits Lana Codes Required...
Debian: Security Advisory (DLA-268-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2008-0418
Directory traversal vulnerability in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8, when using "flat" addons, allows remote attackers to read arbitrary Javascript, image, and stylesheet files via the chrome: URI scheme, as demonstrated by stealing sessio...
Important Photon OS Security Update - PHSA-2022-3.0-0418
Updates of 'ImageMagick', 'vim' packages of Photon OS have been released...
CVE-2022-0418
creationtimestamp| type| source ---|---|--- 2022-05-02 20:28:06+00:00| seen| https://t.me/cibsecurity/41739...
CVE-2022-0418 Event List < 0.8.8 - Admin+ Stored Cross-Site Scripting
The Event List WordPress plugin before 0.8.8 does not sanitise and escape some of its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks against other admin even when the unfilteredhtml is disallowed...