MiracleLinux 4 : java-1.6.0-openjdk-1.6.0.0-6.1.13.4.AXS4 (AXSA:2014-460:03)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-460:03 advisory. Description : The OpenJDK runtime environment. Security issues fixed with this release: CVE-2014-2490 Unspecified vulnerability in the Java SE...

CVE-2023-4216

The Orders Tracking for WooCommerce WordPress plugin before 1.2.6 doesn't validate the fileurl parameter when importing a CSV file, allowing high privilege users with the managewoocommerce capability to access any file on the web server via a Traversal attack. The content retrieved is however...

Linux Distros Unpatched Vulnerability : CVE-2016-4216

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XMPCore in Adobe XMP Toolkit for Java before 5.1.3 allows remote attackers to read arbitrary files via XML data containing an external entity declaration in...

DLA-4216-1 cjson - security update

Bulletin has no description...

CVE-2025-4216

creationtimestamp| type| source ---|---|--- 2025-06-14 08:34:18+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18370...

CVE-2025-4216

CVE-2025-4216 : DIOT SCADA with MQTT plugin for WordPress has a Stored Cross-Site Scripting (XSS) in the plugin shortcodes. The vulnerability arises from insufficient input sanitization and output escaping on user-supplied attributes in the diot shortcode. It affects all versions up to and includ...

CVE-2025-4216 DIOT SCADA with MQTT <= 1.0.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The DIOT SCADA with MQTT plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'diot' shortcode in all versions up to, and including, 1.0.5.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticat...

WordPress DIOT SCADA with MQTT plugin <= 1.0.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Gilang in WordPress Plugin DIOT SCADA with MQTT versions = 1.0.5.1...

Linux Distros Unpatched Vulnerability : CVE-2021-4216

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Floating point exception division-by-zero flaw was found in Mupdf for zero width pages in muraster.c. It is fixed in Mupdf-1.20.0-rc1 upstream. CVE-2021-4216...

Security update for pgadmin4

This update for pgadmin4 fixes the following issues: CVE-2024-4216: Fixed XSS in /settings/store endpoint bsc1223868 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...

GLSA-202408-29 : MuPDF: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202408-29 MuPDF: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in MuPDF. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block directly from...

Fedora 39 : pgadmin4 (2024-9820d9491f)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-9820d9491f advisory. Backport security fixes for CVE-2024-4216, CVE-2024-4068, CVE-2024-4067. Tenable has extracted the preceding description block directly from the...

openSUSE Security Advisory (SUSE-SU-2024:2260-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : pgadmin4 (SUSE-SU-2024:2260-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2260-1 advisory. - CVE-2024-4216: Fixed XSS in /settings/store endpoint bsc1223868. - CVE-2024-4215: Fixed...

Fedora 40 : pgadmin4 / python-libgravatar (2024-4d4ceb61f7)

The remote Fedora 40 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-4d4ceb61f7 advisory. Update to pgadmin4-8.6 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

CVE-2024-4216

creationtimestamp| type| source ---|---|--- 2024-05-06 13:34:11+00:00| seen| https://t.me/HackingInsights/89 2025-02-13 19:10:37+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/4300...

CVE-2024-4216

pgAdmin = 8.5 is affected by XSS vulnerability in /settings/store API response json payload. This vulnerability allows attackers to execute malicious script at the client end...

CVE-2024-4216 XSS vulnerability in /settings/store API response json payload in pgAdmin 4

pgAdmin = 8.5 is affected by XSS vulnerability in /settings/store API response json payload. This vulnerability allows attackers to execute malicious script at the client end...

CVE-2024-4216 XSS vulnerability in /settings/store API response json payload in pgAdmin 4

pgAdmin = 8.5 is affected by XSS vulnerability in /settings/store API response json payload. This vulnerability allows attackers to execute malicious script at the client end...

CVE-2024-3721

A vulnerability was found in TBK DVR-4104 and DVR-4216 up to 20240412 and classified as critical. This issue affects some unknown processing of the file /device.rsp?opt=sys&cmd=SOSTREAMAX. The manipulation of the argument mdb/mdc leads to os command injection. The attack may be initiated remotely...