119 matches found
MINI-2869-4QVQ-C2PX
Bulletin has no description...
MINI-W8V2-2869-7VFW
Bulletin has no description...
CGA-6WH6-2869-M8XX
Bulletin has no description...
EUVD-2026-2869
Missing about:blank indicator in custom-sized new windows in Dia before 1.9.0 on macOS could allow an attacker to spoof a trusted domain in the window title and mislead users about the current site...
CVE-2019-2869
Vulnerability in the Data Store component of Oracle Berkeley DB. Supported versions that are affected are 12.1.6.1.23, 12.1.6.1.26, 12.1.6.1.29, 12.1.6.1.36, 12.1.6.2.23 and 12.1.6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data...
TencentOS Server 3: libtiff (TSSA-2023:0009)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0009 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
Advisory ROSA-SA-2025-2869
Software: libxslt 1.1.28 OS: rosa-server79 packageevrstring: libxslt-1.1.28-6.0.1.1.res7 CVE-ID: CVE-2024-55549 BDU-ID: 2025-03641 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the xsltGetInheritedNsList function of the libxslt library is related to memory usage after it has been freed...
CVE-2023-2869
The WP-Members Membership plugin for WordPress is vulnerable to unauthorized plugin settings update due to a missing capability check on the dofieldreorder function in versions up to, and including, 3.4.7.3. This makes it possible for authenticated attackers with subscriber-level access to reorde...
CVE-2014-2869
PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 allows remote attackers to obtain sensitive information via requests to unspecified URIs, as demonstrated by pathname, SQL server, e-mail address, and IP address information...
WordPress Easy Property Listings plugin <= 3.5.3 - Admin+ Stored XSS vulnerability
Admin+ Stored XSS vulnerability discovered by cyc707 in WordPress Plugin Easy Property Listings versions = 3.5.3...
CVE-2024-2869
creationtimestamp| type| source ---|---|--- 2025-05-15 20:33:49+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16564...
CVE-2024-2869
The Easy Property Listings WordPress plugin before 3.5.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-2869 Easy Property Listings <= 3.5.3 - Admin+ Stored XSS
The Easy Property Listings WordPress plugin before 3.5.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-2869
creationtimestamp| type| source ---|---|--- 2025-04-04 12:03:52+00:00| seen| https://bsky.app/profile/thewhynet.bsky.social/post/3llyer2dsli2p...
CVE-2025-2869
Reflected Cross-Site Scripting XSS vulnerability in version 1.0 of the Clinic Queuing System. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by sending a malicious URL through the id parameter in /manageuser.php...
CVE-2025-2869
creationtimestamp| type| source ---|---|--- 2025-03-28 11:28:32+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9316 2025-03-28 13:33:48+00:00| seen| https://t.me/cvedetector/21393 2025-08-10 18:27:45+00:00| seen| MISP/f2f93f16-9318-44b1-9be3-2d3346ca540c 2025-09-10 07:47:59+00:00| seen|...
CVE-2025-2869
Reflected Cross-Site Scripting XSS vulnerability in version 1.0 of the Clinic Queuing System. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by sending a malicious URL through the id parameter in /manageuser.php...
CVE-2025-2869 Reflected Cross-Site Scripting (XSS) vulnerability in Clinic Queuing System
Reflected Cross-Site Scripting XSS vulnerability in version 1.0 of the Clinic Queuing System. This vulnerability could allow an attacker to execute JavaScript code in the victim's browser by sending a malicious URL through the id parameter in /manageuser.php...
CVE-2025-2869
CVE-2025-2869 is a reflected XSS vulnerability in Clinic Queuing System version 1.0. The issue arises from the id parameter in /manage_user.php, allowing an attacker to inject JavaScript that executes in a victim’s browser when the URL is viewed. Connected sources corroborate a reflective XSS pat...
Linux Distros Unpatched Vulnerability : CVE-2022-2869
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libtiff's tiffcrop tool has a uint32t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a...