15 matches found
CVE-2025-10476
creationtimestamp| type| source ---|---|--- 2025-11-27 12:41:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6mffcqojv2n...
EUVD-2016-10476
Malware in sbrugna...
CVE-2019-10476
Jenkins Zulip Plugin 1.1.0 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system...
CVE-2024-10476
Default credentials are used in the above listed BD Diagnostic Solutions products. If exploited, threat actors may be able to access, modify or delete data, including sensitive information such as protected health information PHI and personally identifiable information PII. Exploitation of this...
CVE-2024-10476
Default credentials are used in the above listed BD Diagnostic Solutions products. If exploited, threat actors may be able to access, modify or delete data, including sensitive information such as protected health information PHI and personally identifiable information PII. Exploitation of this...
CVE-2024-10476
CVE-2024-10476 concerns default credentials in BD Diagnostic Solutions products. The BD advisories and cross-ref entries state that attackers could access, modify, or delete data (including PHI/PII) and potentially disrupt availability. The scope notes that BD Synapsys Informatics Solution is in ...
CVE-2020-10476
Reflected XSS in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...
CVE-2020-10476
Reflected XSS in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...
CVE-2020-10476
Reflected XSS in admin/manage-glossary.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject arbitrary web script or HTML via the GET parameter sort...
CVE-2020-10476
CVE-2020-10476 is a reflected cross-site scripting vulnerability in Chadha PHPKB Standard Multi-Language 9. The flaw resides in admin/manage-glossary.php, where an unsanitized GET parameter sort can inject arbitrary web script or HTML. Red Hat and CNVD entries corroborate the same issue. Impact i...
CVE-2019-10476
Jenkins Zulip Plugin 1.1.0 and earlier stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system...
CVE-2019-10476
Jenkins Zulip Plugin versions 1.1.0 and earlier are affected by a vulnerability where credentials are stored unencrypted in the plugin’s global configuration file on the Jenkins master, allowing users with access to the master filesystem to view them. Root cause: plaintext storage of credentials ...
WordPress SQL Injection Vulnerability (CNVD-2018-10476)
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. WordPress suffers from an information disclosure vulnerability. By exploiting this vulnerability, an attacker can perform SQL...
CVE-2018-10476
Foxit Reader 9.0.0.29935 is affected by an information-disclosure vulnerability in the U3D Model Node parsing. The issue stems from improper validation of user-supplied data, causing a read past the end of an allocated structure (out-of-bounds read). An attacker can leverage this by convincing a ...
CVE-2016-10476
CVE-2016-10476 affects Android on Qualcomm Snapdragon/mobile platforms (e.g., MSM/SD family). The issue is missing array index checks on the app index in function qcril_uim_clear_encrypted_pin, causing out-of-bounds reads when the app index is too large. Documented in multiple sources as a vulner...