CVE-2026-1848

creationtimestamp| type| source ---|---|--- 2026-02-11 09:01:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mel4jl4ajw2g...

CVE-2026-1848

Connections received from the proxy port may not count towards total accepted connections, resulting in server crashes if the total number of connections exceeds available resources. This only applies to connections accepted from the proxy port, pending the proxy protocol header...

CVE-2021-1848

The issue was addressed with improved UI handling. This issue is fixed in iOS 14.5 and iPadOS 14.5. A local user may be able to view sensitive information in the app switcher...

CVE-2025-1848

A vulnerability classified as critical has been found in zj1983 zz up to 2024-8. Affected is an unknown function of the file /importdatacheck. The manipulation of the argument url leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to...

CVE-2025-1848

CVE-2025-1848 affects zj1983 zz up to 2024-8, with a vulnerability in an unknown function under the file /import_data_check that allows manipulation of the url parameter to trigger server-side request forgery (SSRF). Exploitation can be performed remotely; public disclosures and vendor non-respon...

CVE-2025-1848 zj1983 zz import_data_check server-side request forgery

A vulnerability classified as critical has been found in zj1983 zz up to 2024-8. Affected is an unknown function of the file /importdatacheck. The manipulation of the argument url leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to...

CVE-2025-1848 zj1983 zz import_data_check server-side request forgery

A vulnerability classified as critical has been found in zj1983 zz up to 2024-8. Affected is an unknown function of the file /importdatacheck. The manipulation of the argument url leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to...

CVE-2024-1848

Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack-based Buffer Overflow, Type Confusion, Uninitialized Variable, Use-After-Free vulnerabilities exist in the file reading procedure in SOLIDWORKS Desktop on Release SOLIDWORKS 2024. These vulnerabilities...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1848)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-1848

creationtimestamp| type| source ---|---|--- 2023-04-05 12:28:04+00:00| seen| https://t.me/cibsecurity/61446...

CVE-2023-1848

CVE-2023-1848 affects SourceCodester Online Payroll System 1.0. Affected is an unknown function in the file /admin/attendance_row.php; manipulating the id argument leads to SQL injection . The vulnerability can be triggered remotely and is described as critical in multiple sources. Several connec...

Amazon Linux 2 : libxml2 (ALAS-2022-1848)

The version of libxml2 installed on the remote host is prior to 2.9.1-6. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2022-1848 advisory. A flaw was found in the libxml2 library in functions used to manipulate the xmlBuf and the xmlBuffer types. A substantial input...

Security Bulletin: Cross-Site Scripting vulnerability in IBM Business Automation Workflow (CVE-2018-1848)

Summary A Cross-Site Scripting vulnerability has been found in Performance Admin Console of IBM Business Automation Workflow. Vulnerability Details CVEID:CVE-2018-1848 DESCRIPTION: IBM Business Automation Workflow is vulnerable to cross-site scripting. This vulnerability allows users to embed...

com.erudika:para-cache-hazelcast (>=1.26.0 <=1.40.1), com.erudika:para-client (>=1.13 <=1.45.10) +9 more potentially affected by CVE-2022-1848 via com.erudika:para-core (>=1.13 <=1.45.9)

com.erudika:para-core MAVEN version =1.13, =1.26.0, =1.13, =1.20.0, =1.18.0, =1.28.1, =1.30.0, =1.25.0, =1.29.0, =1.28.0, =1.13, =1.24.4, =1.45.10 Source cves: CVE-2022-1848 Source advisory: OSV:GHSA-4793-8WWH-JXXR...

CVE-2022-1848

creationtimestamp| type| source ---|---|--- 2022-05-24 16:50:52+00:00| seen| https://t.me/cibsecurity/43243...

CVE-2022-1848

Business Logic Errors in GitHub repository erudika/para prior to 1.45.11...

CVE-2022-1848

CVE-2022-1848 affects the Erudika Para project prior to version 1.45.11. Multiple connected sources describe a business logic error, including a race condition in com.erudika:para-core (validateObject) that can allow a user to abuse account/app-related logic. This is documented across sources (Gi...

CVE-2021-1848

The issue was addressed with improved UI handling. This issue is fixed in iOS 14.5 and iPadOS 14.5. A local user may be able to view sensitive information in the app switcher...

CVE-2021-1848

The issue was addressed with improved UI handling. This issue is fixed in iOS 14.5 and iPadOS 14.5. A local user may be able to view sensitive information in the app switcher...

CVE-2021-1848

CVE-2021-1848 affects Apple iOS and iPadOS; a local user could view sensitive information in the app switcher due to UI handling issues. The issue is addressed in iOS 14.5 and iPadOS 14.5 with fixes described as improved UI handling. Public references (NVD, Red Hat advisory) confirm the local-acc...