CVE-2026-4180

creationtimestamp| type| source ---|---|--- 2026-03-20 03:20:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhhkos5gem2w...

CVE-2017-4180

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2017. Notes: none...

MiracleLinux 7 : cups-1.6.3-43.el7 (AXSA:2020-4559:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4559:02 advisory. cups: Local privilege escalation to root due to insecure environment variable handling CVE-2018-4180 cups: Manipulation of cupsd.conf by a local...

Debian: Security Advisory (DLA-4180-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-4180

creationtimestamp| type| source ---|---|--- 2025-03-18 19:02:41+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7952 2025-10-31 01:37:48+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-4180.yaml 2025-10-31 21:02:47+00:00| seen|...

Linux Distros Unpatched Vulnerability : CVE-2018-4180

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions. CVE-2018-4180 Note that Nessus relies...

Linux Distros Unpatched Vulnerability : CVE-2010-4180

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when SSLOPNETSCAPEREUSECIPHERCHANGEBUG is enabled, does not properly prevent modification of the ciphersuite in...

IBM DB2 Db2rcmd.exe Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'IBM DB2 db2rcmd.exe Command Execution Vulnerability', 'Description' = %q This module exploits a vulnerability in the Remote Command Server...

Photon OS 4.0: Cups PHSA-2023-4.0-0425

An update of the cups package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0425. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

OpenSSL 0.9.8 < 0.9.8q Vulnerability

The version of OpenSSL installed on the remote host is prior to 0.9.8q. It is, therefore, affected by a vulnerability as referenced in the 0.9.8q advisory. - OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when SSLOPNETSCAPEREUSECIPHERCHANGEBUG is enabled, does not properly prevent modification o...

CVE-2024-4180 The Events Calendar < 6.4.0.1 - Reflected XSS

The Events Calendar WordPress plugin before 6.4.0.1 does not properly sanitize user-submitted content when rendering some views via AJAX...

CVE-2024-4180

CVE-2024-4180 affects The Events Calendar WordPress plugin (versions before 6.4.0.1). The issue is an improper sanitization of user-submitted content when rendering certain AJAX views, which enables cross-site scripting (XSS) in the context of the affected site. Affected product and root cause ar...

WordPress The Events Calendar Plugin < 6.4.0.1 is vulnerable to Cross Site Scripting (XSS)

Software The Events Calendar Type Plugin Vulnerable versions 6.4.0.1 Fixed in 6.4.0.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4180 Patch priority Medium CVSS severity Medium 7.1 Developer Liquid Web / StellarWP PSID 9ded0dc115b9 Credits Marc...

GLSA-202311-11 : QtWebEngine: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202311-11 QtWebEngine: Multiple Vulnerabilities - Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-2294 -...

Oracle Linux 7 : cups (ELSA-2020-1050)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1050 advisory. - 1651575 - CVE-2018-4700 cups - 1608764 - CVE-2018-4180 cups Tenable has extracted the preceding description block directly from the Oracle Linux...

CVE-2023-4180

creationtimestamp| type| source ---|---|--- 2023-08-16 16:17:54+00:00| seen| https://t.me/cibsecurity/67827...

CVE-2023-4180

CVE-2023-4180 : A critical SQL injection vulnerability affecting the SourceCodester Free Hospital Management System for Small Practices 1.0, in the unknown-functionality of the file /vm/login.php. The issue occurs when manipulating the parameters useremail and userpassword , and can be exploited ...

CVE-2023-4180 SourceCodester Free Hospital Management System for Small Practices login.php sql injection

A vulnerability classified as critical was found in SourceCodester Free Hospital Management System for Small Practices 1.0. Affected by this vulnerability is an unknown functionality of the file /vm/login.php. The manipulation of the argument useremail/userpassword leads to sql injection. The...

Security fix for the ALT Linux 10 package yandex-browser-stable version 23.1.2.1033-alt1

23.1.2.1033-alt1 built April 4, 2023 Yandex Browser Team in task 317282 March 20, 2023 Yandex Browser Team - browser updated to 23.1.2 + High CVE-2022-4436: Use after free in Blink Media. + High CVE-2022-4437: Use after free in Mojo IPC. + High CVE-2022-4438: Use after free in Blink Frames. + Hig...

Debian: Security Advisory (DSA-2141-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...