BELL-CVE-2026-31472 CVE-2026-31472 does not affect BellSoft software

Bulletin has no description...

DEBIAN-CVE-2026-31472

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: validate inner IPv4 header length in IPTFS payload Add validation of the inner IPv4 packet totlen and ihl fields parsed from decrypted IPTFS payloads in inputprocesspayload. A crafted ESP packet containing an inner...

UBUNTU-CVE-2026-31472

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: validate inner IPv4 header length in IPTFS payload Add validation of the inner IPv4 packet totlen and ihl fields parsed from decrypted IPTFS payloads in inputprocesspayload. A crafted ESP packet containing an inner...

CVE-2025-31472

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Michele Marri Flatty flatty-flat-admin-theme allows Stored XSS.This issue affects Flatty: from n/a through = 2.0.0...

CVE-2025-31472

creationtimestamp| type| source ---|---|--- 2025-03-28 15:28:32+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9364 2025-03-28 16:04:48+00:00| seen| https://t.me/cvedetector/21424...

CVE-2025-31472

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Michele Marri Flatty flatty-flat-admin-theme allows Stored XSS.This issue affects Flatty: from n/a through = 2.0.0...

CVE-2025-31472 WordPress Flatty plugin <= 2.0.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Michele Marri Flatty flatty-flat-admin-theme allows Stored XSS.This issue affects Flatty: from n/a through = 2.0.0...

CVE-2025-31472

CVE-2025-31472 — Stored XSS in Flatty has confirmed technical details in connected docs: The vulnerability is caused by improper input neutralization during web page generation in the Flatty admin theme. Affected software: Flatty (Flat Admin Theme)

CVE-2024-31472

There are command injection vulnerabilities in the underlying Soft AP Daemon service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of these...

CVE-2023-33624

DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-31472. Reason: This record is a reservation duplicate of CVE-2023-31472. Notes: All CVE users should reference CVE-2023-31472 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage...

PT-2023-24411 · Undefined · Undefined

‼ CVE-2023-33624 ‼ REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-31472. Reason: This record is a reservation duplicate of CVE-2023-31472. Notes: All CVE users should reference CVE-2023-31472 instead of this record. All references and descriptions in this record have been removed to...

CVE-2023-31472

creationtimestamp| type| source ---|---|--- 2023-05-09 22:44:49+00:00| seen| https://t.me/cibsecurity/63674...

CVE-2023-31472

An issue was discovered on GL.iNet devices before 3.216. There is an arbitrary file write in which an empty file can be created anywhere on the filesystem. This is caused by a command injection vulnerability with a filter applied...

CVE-2023-31472

GL.iNet devices prior to 3.216 are affected by a command-injection–driven arbitrary file-write vulnerability that allows creating empty files anywhere on the filesystem. Root cause: an input filter failure enables unintended file writes via a crafted command. Impact: potential unauthorized file c...

CVE-2023-31472

An issue was discovered on GL.iNet devices before 3.216. There is an arbitrary file write in which an empty file can be created anywhere on the filesystem. This is caused by a command injection vulnerability with a filter applied...

CVE-2022-31472

CVE-2022-31472 affects Cybozu Garoon, specifically the Cabinet module. A browse restriction bypass allows a remote authenticated user to obtain Cabinet data in Garoon versions 4.0.0–5.5.1. Exploitation details are not provided in the documents. Remediation per the sources is to update to the late...

CVE-2021-31472

CVE-2021-31472 affects Foxit Reader 10.1.1.37576. The root cause is improper validation in the handling of U3D objects within PDF files, causing a write past the end of an allocated data structure. This enables remote code execution with the attacker able to run code in the context of the current...

CVE-2023-33624

CVE-33624 is a reservation/duplicate of CVE-2023-31472. The connected records provide concrete vulnerability details for GL.iNet devices prior to 3.216: an arbitrary file write via a command-injection vulnerability with a filter. Impact is creation of an empty file anywhere on the filesystem. Rem...