CVE-2026-34619

creationtimestamp| type| source ---|---|--- 2026-04-14 23:22:03+00:00| seen| Telegram/7o25spvsi10qoVsYDQCR4BvQZf2Pb0MXjY1dtOy-qDOy7tc 2026-04-15 12:00:10+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mjjtuloymz2w 2026-04-15 13:55:20+00:00| seen|...

CVE-2026-34619 ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)

ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to access unauthorized files or directories...

CVE-2026-34619

ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to access unauthorized files or directories...

MAL-2025-34619 Malicious code in teak-conifer-veea (npm)

The package teak-conifer-veea was found to contain malicious code...

CVE-2024-34619

Improper input validation in librtp.so prior to SMR Aug-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulnerability...

CVE-2024-34619

creationtimestamp| type| source ---|---|--- 2024-08-07 05:16:02+00:00| seen| https://t.me/cvedetector/2665...

CVE-2022-34619

creationtimestamp| type| source ---|---|--- 2022-08-03 02:18:06+00:00| seen| https://t.me/cibsecurity/47448...

CVE-2022-34619

A stored cross-site scripting XSS vulnerability in Mealie v0.5.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Shopping Lists item names text field...

CVE-2022-34619

Mealie v0.5.5 is affected by CVE-2022-34619: a stored XSS vulnerability allows attackers to execute arbitrary scripts/HTML via crafted payloads in the Shopping Lists item names field. Root cause: stored XSS in user-provided text. Impact: potential client-side script execution. Remediation: not sp...

CVE-2022-34619

A stored cross-site scripting XSS vulnerability in Mealie v0.5.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Shopping Lists item names text field...

Splash Header < 1.20.8 - Authenticated Stored Cross-Site Scripting (XSS)

The plugin doesn't sanitise and escape some of its settings while outputting them in the admin dashboard, leading to an authenticated Stored Cross-Site Scripting issue. Put the following payload in the "Note title" and "Note message" settings of the plugin: "alert/XSS-Title/ and alert/XSS-Msg/ Th...

CVE-2021-34619

creationtimestamp| type| source ---|---|--- 2021-07-21 18:48:15+00:00| seen| Telegram/jpAEeqFSstHr-TU2P4p6vHVlsjJ3VGcKHw7MpPgYjNB7B-4...

CVE-2021-34619

The CVE-2021-34619 issue affects the WordPress WooCommerce Stock Manager plugin up to version 2.5.7, where the import-export.php path lacks nonce handling and file validation, enabling Cross-Site Request Forgery that can lead to Arbitrary File Upload. Impact is high (potential code upload and exe...

CVE-2025-34619

This CVE ID is rejected/not used and does not represent an active vulnerability entry.

CVE-2025-34619

...