MINI-2349-V654-9P99

Bulletin has no description...

CVE-2026-2349

Improper Neutralization of Input During Web Page Generation "Cross-site Scripting" vulnerability in Drupal UI Icons allows Cross-Site Scripting XSS.This issue affects UI Icons: from 0.0.0 before 1.0.1, from 1.1.0 before 1.1.1...

ECHO-CE43-2349-5ED1

Bulletin has no description...

EUVD-2026-2349

The E-xact | Hosted Payment | WordPress plugin through 2.0 is vulnerable to arbitrary file deletion due to insufficient file path validation. This makes it possible for unauthenticated attackers to delete arbitrary files on the server...

CVE-2024-2349

The Fancy Elementor Flipbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Fancy Elementor Flipbox widget in all versions up to, and including, 2.5.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

CVE-2014-2349

creationtimestamp| type| source ---|---|--- 2025-10-03 17:02:27+00:00| seen| Telegram/6HbRx7DEdb712ZCL7os-LHy1WFvtYZhn4iqCTSFf26oLFIE...

CVE-2021-2349

Vulnerability in the Hyperion Essbase Administration Services product of Oracle Essbase component: EAS Console. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Essbase...

CVE-2010-2349

H264WebCam 3.7 allows remote attackers to cause a denial of service crash via a long URI in a GET request, which triggers a NULL pointer dereference. NOTE: some of these details are obtained from third party information...

CVE-2005-2349

Zoo 2.10 has Directory traversal...

CVE-2025-2349

A vulnerability was found in IROAD Dash Cam FX2 up to 20250308. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /etc/passwd of the component Password Hash Handler. The manipulation leads to password hash with insufficient computational...

CVE-2025-2349

A vulnerability was found in IROAD Dash Cam FX2 up to 20250308. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /etc/passwd of the component Password Hash Handler. The manipulation leads to password hash with insufficient computational...

CVE-2025-2349

creationtimestamp| type| source ---|---|--- 2025-03-16 21:46:14+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7722 2025-03-17 00:44:20+00:00| seen| https://t.me/cvedetector/20419 2025-03-17 01:35:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkjzbm5qg...

CVE-2025-2349

The CVE describes a vulnerability in IROAD Dash Cam FX2 (up to 20250308) affecting an unknown function in the Password Hash Handler that processes /etc/passwd. The issue leads to a password hash with insufficient computational effort. Attack requires local network access and is characterized as h...

CVE-2025-2349 IROAD Dash Cam FX2 Password Hash passwd weak password hash

A vulnerability was found in IROAD Dash Cam FX2 up to 20250308. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /etc/passwd of the component Password Hash Handler. The manipulation leads to password hash with insufficient computational...

CVE-2025-2349 IROAD Dash Cam FX2 Password Hash passwd weak password hash

A vulnerability was found in IROAD Dash Cam FX2 up to 20250308. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /etc/passwd of the component Password Hash Handler. The manipulation leads to password hash with insufficient computational...

WordPress Fancy Elementor Flipbox Plugin <= 2.5.1 is vulnerable to Cross Site Scripting (XSS)

Software Fancy Elementor Flipbox Type Plugin Vulnerable versions = 2.5.1 Fixed in 2.5.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2349 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID dd388fab11b8 Credits Francesco Carluc...

openSUSE: Security Advisory for ignition (SUSE-SU-2022:2349-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux 2 : python-pip (ALAS-2023-2349)

It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2349 advisory. When installing a package from a Mercurial VCS URL ie pip installhg+... with pip prior to v23.3, the specified Mercurial revision couldbe used to inject arbitrary configuration options to the hg clonecall...

CVE-2023-2349

CVE-2023-2349 affects SourceCodester Service Provider Management System 1.0. The vulnerability is a cross-site scripting issue in an unknown function of /admin/index.php, triggered by manipulating the page parameter. It can be exploited remotely and has been publicly disclosed per multiple source...

CVE-2022-2349

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...