RHCOS 3 : OpenShift Container Platform 3.11 atomic-openshift (RHSA-2020:2479)

The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2479 advisory. - libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions CVE-2017-18367 -...

CVE-2026-2479

The Responsive Lightbox & Gallery plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.7.1. This is due to the use of strpos for substring-based hostname validation instead of strict host comparison in the ajaxuploadimage function. This makes i...

CVE-2026-2479

creationtimestamp| type| source ---|---|--- 2026-02-25 09:47:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfoflljj432o...

EUVD-2026-2479

The vulnerability exists in BLUVOYIX due to the exposure of sensitive internal API documentation. An unauthenticated remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the APIs exposed by the documentation. Successful exploitation of this vulnerability...

Linux Distros Unpatched Vulnerability : CVE-2021-2479

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.26 and prior. Easily exploitable...

CVE-2023-2479

OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4...

CVE-2025-2479

creationtimestamp| type| source ---|---|--- 2025-03-22 10:22:23+00:00| seen| https://t.me/cvedetector/20854...

CVE-2025-2479 Easy Custom Admin Bar <= 1.0 - Reflected Cross-Site Scripting via msg Parameter

The Easy Custom Admin Bar plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘msg’ parameter in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...

CVE-2025-2479 Easy Custom Admin Bar <= 1.0 - Reflected Cross-Site Scripting via msg Parameter

The Easy Custom Admin Bar plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘msg’ parameter in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...

CVE-2024-2479

creationtimestamp| type| source ---|---|--- 2024-03-15 07:21:40+00:00| seen| https://t.me/ctinow/208458 2024-03-15 07:26:37+00:00| seen| https://t.me/ctinow/208463 2024-03-16 20:45:45+00:00| seen| https://t.me/arpsyndicate/4251 2024-03-16 22:26:47+00:00| seen| https://t.me/ctinow/209722...

CVE-2024-2479 MHA Sistemas arMHAzena Cadastro Page cross site scripting

A vulnerability classified as problematic has been found in MHA Sistemas arMHAzena 9.6.0.0. This affects an unknown part of the component Cadastro Page. The manipulation of the argument Query leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

CVE-2024-2479

CVE-2024-2479 affects MHA Sistemas arMHAzena 9.6.0.0, specifically the Cadastro Page component. The issue is a cross-site scripting vulnerability caused by manipulation of the Query argument, which can be exploited remotely and has public writeups. Remediation details are not provided in the init...

Low: openssl

Issue Overview: Processing a maliciously formatted PKCS12 file may lead OpenSSL to crash leading to a potential Denial of Service attack The package openssl098e is provided purely for binary compatibility with older Amazon Linux versions. It does not receive security updates. CVE-2024-0727 Affect...

openSUSE: Security Advisory for chromium (openSUSE-SU-2022:10073-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Rocky Linux 8 : mysql:8.0 (RLSA-2022:7119)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:7119 advisory. mysql: Server: DML multiple unspecified vulnerabilities CVE-2021-2478, CVE-2021-2479, CVE-2021-35591, CVE-2021-35607, CVE-2022-21301, CVE-2022-21413...

CVE-2023-2479

OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4...

CVE-2023-2479 OS Command Injection in appium/appium-desktop

OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4...

CVE-2023-2479

CVE-2023-2479 affects Appium Desktop (appium-desktop) prior to v1.22.3-4. The connected Nuclei template documents an OS Command Injection vulnerability in the Appium Desktop Server, exploitable via an untrusted URL parameter, allowing unauthenticated attackers to execute arbitrary commands and po...

CVE-2023-2479 OS Command Injection in appium/appium-desktop

OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4...

CVE-2023-2479 OS Command Injection in appium/appium-desktop

OS Command Injection in GitHub repository appium/appium-desktop prior to v1.22.3-4...