CVE-2026-1464 A possible integer overflow vulnerability in RawTherapee/RawTherapee

Integer Overflow or Wraparound vulnerability in MuntashirAkon AppManager app/src/main/java/org/apache/commons/compress/archivers/tar modules. This vulnerability is associated with program files TarUtils.Java. This issue affects AppManager: before 4.0.4...

CVE-2026-1464

Integer Overflow or Wraparound vulnerability in MuntashirAkon AppManager app/src/main/java/org/apache/commons/compress/archivers/tar modules. This vulnerability is associated with program files TarUtils.Java. This issue affects AppManager: before 4.0.4...

CVE-2023-1464

A vulnerability, which was classified as critical, was found in SourceCodester Medicine Tracker System 1.0. This affects an unknown part of the file Users.php?f=saveuser. The manipulation of the argument firstname/middlename/lastname/username/password leads to improper authentication. It is...

CVE-2021-1464

A vulnerability in Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization checking and gain restricted access to the configuration information of an affected system. This vulnerability exists because the affected software has insufficient input...

CVE-2025-1464

creationtimestamp| type| source ---|---|--- 2025-02-19 14:15:45+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lijxmeey662o 2025-02-19 15:00:33+00:00| published-proof-of-concept| Telegram/76DozDHfzy3VuXpR0RrwuMltOqDKxavy520xjGJSvX85-I 2025-02-19 15:39:58+00:00| seen|...

CVE-2025-1464

CVE-2025-1464 affects Baiyi Cloud Asset Management System up to version 20250204. Affected component: processing of the file /wuser/admin.house.collect.php where manipulating the project_id parameter leads to SQL injection. The issue can be exploited remotely and the exploit has been disclosed pu...

CVE-2025-1464 Baiyi Cloud Asset Management System admin.house.collect.php sql injection

A vulnerability, which was classified as critical, has been found in Baiyi Cloud Asset Management System up to 20250204. This issue affects some unknown processing of the file /wuser/admin.house.collect.php. The manipulation of the argument projectid leads to sql injection. The attack may be...

CVE-2021-1464

creationtimestamp| type| source ---|---|--- 2024-11-15 16:39:47+00:00| seen| https://infosec.exchange/users/cve/statuses/113487956337948702...

CVE-2021-1464

CVE-2021-1464 affects Cisco SD-WAN vManage Software. The issue is insufficient input validation for certain commands, allowing an authenticated, remote attacker to bypass authorization and gain restricted access to configuration data by sending crafted requests. Cisco has released software update...

SUSE: Security Advisory (SUSE-SU-2024:1464-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-1464

creationtimestamp| type| source ---|---|--- 2024-04-11 07:50:42+00:00| seen| https://t.me/arpsyndicate/4472...

CVE-2024-1464

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘style’ attribute of the Posts Slider widget in all versions up to, and including, 8.3.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

CVE-2024-1464 Elementor Addons by Livemesh <= 8.3.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Posts Slider Widget

The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘style’ attribute of the Posts Slider widget in all versions up to, and including, 8.3.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

CVE-2024-1464

Elementor Addons by Livemesh (WordPress) has CVE-2024-1464: Stored XSS via the style attribute in the Posts Slider widget, affecting all versions up to 8.3.4 due to insufficient input sanitization/output escaping. Impact: authenticated users with contributor+ privileges can inject scripts that ru...

CVE-2019-1464

creationtimestamp| type| source ---|---|--- 2024-03-09 14:46:21+00:00| seen| https://t.me/ctinow/203948...

CVE-2004-1464

creationtimestamp| type| source ---|---|--- 2023-06-14 21:10:02+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-12-03 14:06:52+00:00| seen| https://t.me/arpsyndicate/950 2024-12-24 20:34:28+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/2971820 2025-02-23 02:09:58+00:00| see...

CVE-2023-1464

creationtimestamp| type| source ---|---|--- 2023-03-17 15:42:42+00:00| seen| https://t.me/cibsecurity/60244...

CVE-2023-1464

A vulnerability, which was classified as critical, was found in SourceCodester Medicine Tracker System 1.0. This affects an unknown part of the file Users.php?f=saveuser. The manipulation of the argument firstname/middlename/lastname/username/password leads to improper authentication. It is...

CVE-2023-1464 SourceCodester Medicine Tracker System improper authentication

A vulnerability, which was classified as critical, was found in SourceCodester Medicine Tracker System 1.0. This affects an unknown part of the file Users.php?f=saveuser. The manipulation of the argument firstname/middlename/lastname/username/password leads to improper authentication. It is...

CVE-2023-1464

CVE-2023-1464 affects SourceCodester Medicine Tracker System 1.0, with an improper authentication flaw in the Users.php?f=save_user endpoint. The vulnerability arises from manipulation of firstname/middlename/lastname/username/password arguments, enabling remote authentication bypass. Multiple co...