CVE-2026-4174

A vulnerability has been found in Radare2 5.9.9. This issue affects the function walkexportstrie of the file libr/bin/format/mach0/mach0.c of the component Mach-O File Parser. Such manipulation leads to resource consumption. The attack can only be performed from a local environment. The exploit h...

AlmaLinux 10 : opentelemetry-collector (ALSA-2026:4174)

The remote AlmaLinux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:4174 advisory. golang: net/url: Memory exhaustion in query parameter parsing in net/url CVE-2025-61726 crypto/tls: Unexpected session resumption in crypto/tls...

EUVD-2026-4174

HTML injection in Project Release in Altium Enterprise Server AES 7.0.3 on all platforms allows an authenticated attacker to execute arbitrary JavaScript in the victim’s browser via crafted HTML content...

SUSE: Security Advisory (SUSE-SU-2025:4174-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EUVD-2012-5196

Malware in sbrugna...

Debian: Security Advisory (DLA-4174-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-4174

A vulnerability, which was classified as critical, has been found in PHPGurukul COVID19 Testing Management System 1.0. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument Username leads to sql injection. The attack may be launched remotely...

CVE-2025-4174

A vulnerability, which was classified as critical, has been found in PHPGurukul COVID19 Testing Management System 1.0. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument Username leads to sql injection. The attack may be launched remotely...

CVE-2025-4174

creationtimestamp| type| source ---|---|--- 2025-05-01 19:14:58+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14376 2025-05-01 22:01:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo5cptcw3e2l 2025-05-01 22:01:57+00:00| published-proof-of-concept|...

CVE-2025-4174

CVE-2025-4174 affects PHPGurukul COVID19 Testing Management System v1.0. The vulnerability is a SQL injection in the file /login.php caused by manipulating the Username parameter, with remote-exploitation potential. Public disclosures exist, and multiple sources (CNVD, RH/Red Hat, PT-Security) co...

CVE-2024-4174 Cross-Site Scripting (XSS) vulnerability in Hyperion Web Server

Cross-Site Scripting XSS vulnerability in Hyperion Web Server affecting version 2.0.15. This vulnerability could allow an attacker to execute malicious Javascript code on the client by injecting that code into the URL...

CVE-2024-4174

CVE-2024-4174 is a Cross-Site Scripting (XSS) vulnerability in Hyperion Web Server, affecting version 2.0.15. The issue allows an attacker to execute malicious JavaScript in the client by injecting code into the URL. Documented impact is client-side code execution; no exploitation vectors or in-t...

CVE-2024-4174 Cross-Site Scripting (XSS) vulnerability in Hyperion Web Server

Cross-Site Scripting XSS vulnerability in Hyperion Web Server affecting version 2.0.15. This vulnerability could allow an attacker to execute malicious Javascript code on the client by injecting that code into the URL...

GLSA-202311-11 : QtWebEngine: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202311-11 QtWebEngine: Multiple Vulnerabilities - Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-2294 -...

SUSE: Security Advisory (SUSE-SU-2023:4174-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-4174

creationtimestamp| type| source ---|---|--- 2023-08-08 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/51671 2023-08-11 08:50:26+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/4898 2023-08-17 02:51:40+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/4936...

mooSocial Social-Commerce 3.1.6 - Reflected XSS Vulnerability

Exploit Title: Social-Commerce 3.1.6 - Reflected XSS Exploit Author: CraCkEr Vendor: mooSocial Vendor Homepage: https://moosocial.com/ Software Link: https://social-commerce.moosocial.com/ Version: 3.1.6 Tested on: Windows 10 Pro Impact: Manipulate the content of the site CVE: CVE-2023-4174...

Social-Commerce 3.1.6 - Reflected XSS

Exploit Title: Social-Commerce 3.1.6 - Reflected XSS Exploit Author: CraCkEr Date: 28/07/2023 Vendor: mooSocial Vendor Homepage: https://moosocial.com/ Software Link: https://social-commerce.moosocial.com/ Version: 3.1.6 Tested on: Windows 10 Pro Impact: Manipulate the content of the site CVE:...

CVE-2023-4174

mooSocial mooStore 3.1.6 is affected by a reflected cross-site scripting vulnerability. The Nuclei template and exploit-db entry describe an XSS that can be triggered remotely via crafted input (e.g., /search/index?q=...). The issue impacts an unknown functionality; attacker-controlled input may ...

Moderate: Red Hat Security Advisory: java-1.8.0-openjdk security update

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...