cy-ai-trainer (>=0.0.1 <=0.0.2), llama-index-packs-vanna (>=0.0.1 <=0.3.0) +1 more potentially affected by CVE-2026-4229 via vanna (>=0.0.30 <=2.0.2)

vanna PYPI version =0.0.30, =0.0.1, =0.0.1, =1.0.0, =2.0.0 Source cves: CVE-2026-4229 Source advisory: OSV:GHSA-6MJ8-JMP2-G8Q7...

cy-ai-trainer (>=0.0.1 <=0.0.2), llama-index-packs-vanna (>=0.0.1 <=0.3.0) +1 more potentially affected by CVE-2026-4229 via vanna (>=0.0.30 <=2.0.2)

vanna PYPI version =0.0.30, =0.0.1, =0.0.1, =1.0.0, =2.0.0 Source cves: CVE-2026-4229 Source advisory: SNYK:PYTHON-VANNA-15674521...

CVE-2026-4229

CVE-2026-4229 affects vanna-ai vanna up to version 2.0.2, specifically the function remove_training_data in src/vanna/legacy/google/bigquery_vector.py. The underlying issue is a manipulation of the argument ID that enables SQL injection, permitting a remote attacker to exploit the vulnerability. ...

EUVD-2026-4229

Missing Authorization vulnerability in themebeez Universal Google Adsense and Ads manager universal-google-adsense-and-ads-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Universal Google Adsense and Ads manager: from n/a through = 1.1.8...

CVE-2025-4229 PAN-OS: Traffic Information Disclosure Vulnerability

An information disclosure vulnerability in the SD-WAN feature of Palo Alto Networks PAN-OS® software enables an unauthorized user to view unencrypted data sent from the firewall through the SD-WAN interface. This requires the user to be able to intercept packets sent from the firewall. Cloud NGFW...

CVE-2025-4229

creationtimestamp| type| source ---|---|--- 2025-06-11 14:00:00+00:00| seen| https://security.paloaltonetworks.com/CVE-2025-4229 2025-06-11 19:03:21+00:00| seen| https://bsky.app/profile/ripjyr.bsky.social/post/3lre3vqyyqc2g 2025-06-13 09:08:40+00:00| seen|...

CVE-2022-4229

A vulnerability classified as critical was found in SourceCodester Book Store Management System 1.0. This vulnerability affects unknown code of the file /bsmsci/index.php. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to t...

CVE-2024-4229

Incorrect Default Permissions vulnerability in Edgecross Basic Software for Windows versions 1.00 and later and Edgecross Basic Software for Developers versions 1.00 and later allows a malicious local attacker to execute an arbitrary malicious code, resulting in information disclosure, tampering...

CVE-2024-4229

creationtimestamp| type| source ---|---|--- 2024-12-19 07:22:27+00:00| seen| https://infosec.exchange/users/cve/statuses/113678283391715506 2024-12-19 09:48:06+00:00| seen| https://t.me/cvedetector/13312...

CVE-2024-4229

Incorrect Default Permissions vulnerability in Edgecross Basic Software for Windows versions 1.00 and later and Edgecross Basic Software for Developers versions 1.00 and later allows a malicious local attacker to execute an arbitrary malicious code, resulting in information disclosure, tampering...

CVE-2024-4229

The CVE-2024-4229 entry concerns Edgecross Basic Software for Windows (1.00 and later) with an Incorrect Default Permissions flaw. A local attacker can execute arbitrary code and cause information disclosure, tampering, deletion, or DoS if the product is installed in a folder accessible to non-ad...

CVE-2024-4229

Incorrect Default Permissions vulnerability in Edgecross Basic Software for Windows versions 1.00 and later and Edgecross Basic Software for Developers versions 1.00 and later allows a malicious local attacker to execute an arbitrary malicious code, resulting in information disclosure, tampering...

Ubuntu 18.04 ESM : NTP vulnerability (USN-4229-2)

The remote Ubuntu 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4229-2 advisory. USN-4229-1 fixed a vulnerability in NTP. This update provides the corresponding update for Ubuntu 18.04 ESM. Tenable has extracted the preceding description block...

CVE-2023-4229

A vulnerability has been identified in ioLogik 4000 Series ioLogik E4200 firmware versions v1.6 and prior, potentially exposing users to security risks. This vulnerability may allow attackers to trick users into interacting with malicious content, leading to unintended actions or unauthorized dat...

CVE-2023-4229

CVE-2023-4229 affects the MOXA ioLogik 4000 Series, specifically the ioLogik E4200 with firmware versions v1.6 and earlier. The available documents describe an issue described as “Improper Restriction of UI” and “Session Headers Not Implemented,” with the core risk that attackers could coerce use...

CVE-2023-4229 ioLogik 4000 Series: Session Headers Not Implemented

A vulnerability has been identified in ioLogik 4000 Series ioLogik E4200 firmware versions v1.6 and prior, potentially exposing users to security risks. This vulnerability may allow attackers to trick users into interacting with malicious content, leading to unintended actions or unauthorized dat...

SUSE CVE-2016-4229

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174,...

CVE-2022-4229

creationtimestamp| type| source ---|---|--- 2022-11-30 14:29:35+00:00| seen| https://t.me/cibsecurity/53706...

CVE-2022-4229

A vulnerability classified as critical was found in SourceCodester Book Store Management System 1.0. This vulnerability affects unknown code of the file /bsmsci/index.php. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to t...

CVE-2022-4229

The CVE-2022-4229 entry concerns SourceCodester Book Store Management System 1.0. A vulnerability exists in the unknown code path of /bsms_ci/index.php that leads to improper access controls. It is described as remotely initiatable with public disclosure of the exploit, and is rated high/critical...