121 matches found
MINI-2944-8X2M-H363
Bulletin has no description...
MINI-24F6-2944-5H56
Bulletin has no description...
PT-2026-28129
Name of the Vulnerable Software and Affected Versions Sonarr versions prior to 4.0.16.2942 Description Sonarr is a PVR for Usenet and BitTorrent users. A flaw exists where authentication could be bypassed in versions with authentication disabled for local addresses Authentication Required set to:...
CVE-2026-2944
creationtimestamp| type| source ---|---|--- 2026-02-26 22:00:14+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfs6zgasgy2i...
CVE-2026-2944 Tosei Online Store Management System ネット店舗管理システム HTTP POST Request monitor.php system os command injection
A security flaw has been discovered in Tosei Online Store Management System ネット店舗管理システム 1.01. Affected is the function system of the file /cgi-bin/monitor.php of the component HTTP POST Request Handler. Performing a manipulation of the argument DevId results in os command injection. The attack ma...
EUVD-2026-2944
TheLibrarians webfetch tool can be used to retrieve the Adminer interface content, which can then be used to log into the internal TheLibrarian backend system. The vendor has fixed the vulnerability in all affected versions...
CVE-2023-2944
Improper Access Control in GitHub repository openemr/openemr prior to 7.0.1...
CVE-2019-2944
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.34 and prior to 6.0.14. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...
CVE-2005-2944
The performfilesave function in GNOME Workstation Command Center gwcc 0.9.6 and earlier allows local users to create and overwrite arbitrary files via a symlink attack on the gwccout.txt temporary file...
CVE-2025-2944
The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Video Button and Countdown Widgets in all versions up to, and including, 2.6.12 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible f...
CVE-2025-2944
creationtimestamp| type| source ---|---|--- 2025-05-10 06:26:41+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15885 2025-05-10 06:31:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3loscyi2kh32e 2025-05-10 06:58:57+00:00| seen|...
CVE-2025-2944
The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Video Button and Countdown Widgets in all versions up to, and including, 2.6.12 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible f...
CVE-2025-2944
CVE-2025-2944 affects Jeg Elementor Kit (WordPress) up to v2.6.12. Vulnerability: Stored Cross-Site Scripting via Video Button and Countdown Widgets caused by insufficient input sanitization and output escaping on user-supplied attributes. Exploitation requires authenticated access at contributor...
CVE-2025-2944 Jeg Elementor Kit <= 2.6.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Video Button and Countdown Widgets
The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Video Button and Countdown Widgets in all versions up to, and including, 2.6.12 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible f...
CVE-2025-2944 Jeg Elementor Kit <= 2.6.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Video Button and Countdown Widgets
The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Video Button and Countdown Widgets in all versions up to, and including, 2.6.12 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible f...
WordPress Jeg Elementor Kit plugin <= 2.6.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Video Button and Countdown Widgets vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Video Button and Countdown Widgets vulnerability discovered by zer0gh0st in WordPress Plugin Jeg Elementor Kit versions = 2.6.12...
CVE-2024-2944
creationtimestamp| type| source ---|---|--- 2025-02-21 22:10:26+00:00| seen| Telegram/NHPdeg8GJ2Afzy5dkErEGMyoKROiyWLXi-oi3I24bHqeA0C...
SUSE SLES15 Security Update : kernel-firmware (SUSE-SU-2024:2944-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2944-1 advisory. - CVE-2023-31315: Fixed validation in a model specific register MSR that lead to modification of SMM configuration by malicious program with...
CVE-2024-2944 Campcodes Online Examination System deleteCourseExe.php sql injection
A vulnerability was found in Campcodes Online Examination System 1.0 and classified as critical. This issue affects some unknown processing of the file /adminpanel/admin/query/deleteCourseExe.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. Th...
CVE-2019-2944
creationtimestamp| type| source ---|---|--- 2024-01-15 15:11:47+00:00| seen| https://t.me/ctinow/168394...