SUSE: Security Advisory (SUSE-SU-2026:0484-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SAP NetWeaver AS ABAP and S/4HANA Missing Authorization Check (3672622)

The version of SAP NetWeaver Application Server ABAP and SAP S/4HANA detected on the remote host is affected by a missing authorization check vulnerability as disclosed in the SAP Security Patch Day February 2026: - SAP NetWeaver Application Server ABAP and SAP S/4HANA is affected by a missing...

CVE-2021-0484

In readVector of IMediaPlayer.cpp, there is a possible read of uninitialized heap data due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9...

EUVD-2026-0484

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

Linux Distros Unpatched Vulnerability : CVE-2017-0484

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated ...

CVE-2020-0484

In destroyResources of ComposerClient.h, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-1557694...

Linux Distros Unpatched Vulnerability : CVE-2012-0484

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x allows remote authenticated users to affect confidentiality via...

CVE-2025-0484

A vulnerability was found in Fanli2012 native-php-cms 1.0 and classified as critical. This issue affects some unknown processing of the file /fladmin/sysconfigdoedit.php of the component Backend. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit h...

CVE-2025-0484

creationtimestamp| type| source ---|---|--- 2025-01-15 20:16:16+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfslgssef22c 2025-01-15 20:54:51+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1855 2025-01-15 21:49:32+00:00| seen|...

CVE-2025-0484

A vulnerability was found in Fanli2012 native-php-cms 1.0 and classified as critical. This issue affects some unknown processing of the file /fladmin/sysconfigdoedit.php of the component Backend. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit h...

CVE-2025-0484

Fanli2012 native-php-cms 1.0 Backend module vulnerability in the file /fladmin/sysconfig_doedit.php allows improper authorization. A remote attacker could exploit this, with public disclosure of the exploit noted in the CVE description. The issue is described across multiple sources (NVD, RHAC, C...

CVE-2025-0484 Fanli2012 native-php-cms Backend sysconfig_doedit.php improper authorization

A vulnerability was found in Fanli2012 native-php-cms 1.0 and classified as critical. This issue affects some unknown processing of the file /fladmin/sysconfigdoedit.php of the component Backend. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit h...

CVE-2025-0484 Fanli2012 native-php-cms Backend sysconfig_doedit.php improper authorization

A vulnerability was found in Fanli2012 native-php-cms 1.0 and classified as critical. This issue affects some unknown processing of the file /fladmin/sysconfigdoedit.php of the component Backend. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit h...

CVE-2024-0484

creationtimestamp| type| source ---|---|--- 2024-01-13 12:26:58+00:00| seen| https://t.me/ctinow/167813 2024-02-02 13:41:15+00:00| seen| https://t.me/ctinow/178068...

CVE-2024-0484 code-projects Fighting Cock Information System update_mother.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Fighting Cock Information System 1.0. This issue affects some unknown processing of the file admin/action/updatemother.php. The manipulation of the argument agemother leads to sql injection. The attack may be...

CVE-2024-0484 code-projects Fighting Cock Information System update_mother.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Fighting Cock Information System 1.0. This issue affects some unknown processing of the file admin/action/updatemother.php. The manipulation of the argument agemother leads to sql injection. The attack may be...

CVE-2024-0484

Fighting Cock Information System 1.0 is affected by CVE-2024-0484 in admin/action/update_mother.php, where the age_mother parameter enables SQL injection. The vulnerability can be triggered remotely; exploit has been disclosed publicly. Affected component is the update_mother.php processing logic...

Moderate Photon OS Security Update - PHSA-2023-4.0-0484

Updates of 'go' packages of Photon OS have been released...

WordPress HT Conctact Form 7 Plugin < 1.1.6 is vulnerable to Cross Site Request Forgery (CSRF)

Software HT Conctact Form 7 Type Plugin Vulnerable versions 1.1.6 Fixed in 1.1.6 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-0484 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID fbf0e64729ba Credits Lana Codes Required...

CVE-2023-0484

The Contact Form 7 Widget For Elementor Page Builder & Gutenberg Blocks WordPress plugin before 1.1.6 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack...