121 matches found
CVE-2026-4070
creationtimestamp| type| source ---|---|--- 2026-05-22 06:48:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmgdopiv5b2r...
@mas.io/mas-chart (=0.0.2) potentially affected by unknown CVE via @antv/my-f2 (=2.1.7)
@antv/my-f2 NPM version =2.1.7 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/my-f2 and may be impacted: - @mas.io/mas-chart =0.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2026-4070...
EUVD-2026-4070
Missing Authorization vulnerability in peachpayments Peach Payments Gateway wc-peach-payments-gateway allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Peach Payments Gateway: from n/a through = 3.3.6...
CVE-2021-4070
Off-by-one Error in GitHub repository v2fly/v2ray-core prior to 4.44.0...
CVE-2020-4070
In CSS Validator less than or equal to commit 54d68a1, there is a cross-site scripting vulnerability in handling URIs. A user would have to click on a specifically crafted validator link to trigger it. This has been patched in commit e5c09a9...
CVE-2010-4070
Integer overflow in librpc.dll in portmap.exe aka the ISM Portmapper service in ISM before 2.20.TC1.117 in IBM Informix Dynamic Server IDS 7.x before 7.31.xD11, 9.x before 9.40.xC10, 10.00 before 10.00.xC8, and 11.10 before 11.10.xC2 allows remote attackers to execute arbitrary code or cause a...
CVE-2025-4070
creationtimestamp| type| source ---|---|--- 2025-04-29 16:12:43+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13851 2025-04-29 19:02:24+00:00| published-proof-of-concept| Telegram/obajfcGkagyaYelipu27ZjZPzm4H6vLGDNzjCH6Suk5ZZs 2025-04-29 19:20:29+00:00| seen|...
CVE-2025-4070 PHPGurukul Rail Pass Management System changeimage.php sql injection
A vulnerability, which was classified as critical, was found in PHPGurukul Rail Pass Management System 1.0. This affects an unknown part of the file /admin/changeimage.php. The manipulation of the argument editid leads to sql injection. It is possible to initiate the attack remotely. The exploit...
Linux Distros Unpatched Vulnerability : CVE-2021-4070
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Off-by-one Error in GitHub repository v2fly/v2ray-core prior to 4.44.0. CVE-2021-4070 Note that Nessus relies on the presence of the package as reported by the...
Debian: Security Advisory (DLA-4070-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-4070
A vulnerability has been found in Kashipara Online Furniture Shopping Ecommerce Website 1.0 and classified as critical. This vulnerability affects unknown code of the file prodList.php. The manipulation of the argument prodType leads to sql injection. The attack can be initiated remotely. The...
CVE-2024-4070 Kashipara Online Furniture Shopping Ecommerce Website prodList.php sql injection
A vulnerability has been found in Kashipara Online Furniture Shopping Ecommerce Website 1.0 and classified as critical. This vulnerability affects unknown code of the file prodList.php. The manipulation of the argument prodType leads to sql injection. The attack can be initiated remotely. The...
CVE-2024-4070 Kashipara Online Furniture Shopping Ecommerce Website prodList.php sql injection
A vulnerability has been found in Kashipara Online Furniture Shopping Ecommerce Website 1.0 and classified as critical. This vulnerability affects unknown code of the file prodList.php. The manipulation of the argument prodType leads to sql injection. The attack can be initiated remotely. The...
CVE-2024-4070
CVE-2024-4070 affects Kashipara Online Furniture Shopping Ecommerce Website 1.0. The vulnerability is in the prodList.php file, where manipulation of the prodType parameter enables SQL injection. It is a remotely exploitable issue and has been disclosed publicly. Exploitation details are cited ac...
SUSE: Security Advisory (SUSE-SU-2023:4070-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : opera (openSUSE-SU-2023:0251-1)
The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0251-1 advisory. - Use after free in Offline in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process...
electron25 -- multiple vulnerabilities
Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2023-4071. Security: backported fix for CVE-2023-4070. Security: backported fix for CVE-2023-4075. Security: backported fix for CVE-2023-4076. Security: backported fix for CVE-2023-4074...
KLA61309 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in V8 can be exploited to cause denial of...
Chromium: CVE-2023-4070 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
KLA51709 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in V8 can be exploited to caus...