MINI-4275-H5QQ-H2RX

Bulletin has no description...

CVE-2018-4275

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1...

CVE-2025-4275 SecureFlashDxe: Incorrect UEFI variable attributes check allows usage of invalid certificate

A vulnerability in the digital signature verification process does not properly validate variable attributes which allows an attacker to bypass signature verification by creating a non-authenticated NVRAM variable. An attacker may to execute arbitrary signed UEFI code and bypass Secure Boot...

CVE-2025-4275 SecureFlashDxe: Incorrect UEFI variable attributes check allows usage of invalid certificate

A vulnerability in the digital signature verification process does not properly validate variable attributes which allows an attacker to bypass signature verification by creating a non-authenticated NVRAM variable. An attacker may to execute arbitrary signed UEFI code and bypass Secure Boot...

CVE-2025-4275

CVE-2025-4275 affects InsydeH2O UEFI firmware/applications. Root cause: unsafe handling of an NVRAM variable used to store signing certificates, enabling a attacker to inject their own certificate and bypass Secure Boot. Impact: execution of unsigned or malicious UEFI code before OS load, potenti...

CVE-2024-4275

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Interactive Circle widget in all versions up to, and including, 5.9.19 due to insufficient input sanitization and...

CVE-2024-4275 Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.9.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'Interactive Circles'

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Interactive Circle widget in all versions up to, and including, 5.9.19 due to insufficient input sanitization and...

CVE-2024-4275

CVE-2024-4275 affects the WordPress plugin Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders. The Stored XSS vulnerability is in the Interactive Circle widget due to insufficient input sanitization and output escaping on user-supplied attributes, allo...

CVE-2013-4275

creationtimestamp| type| source ---|---|--- 2024-02-13 13:02:04+00:00| seen| https://t.me/ctinow/183782...

CVE-2021-4275

creationtimestamp| type| source ---|---|--- 2022-12-22 00:13:16+00:00| seen| https://t.me/cibsecurity/55096 2025-04-14 17:54:43+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11675...

CVE-2021-4275

CVE-2021-4275 concerns katlings pyambic-pentameter, with a cross-site request forgery flaw affecting an unknown function. It can be triggered remotely; a patch is identified as 974f21aa1b2527ef39c8afe1a5060548217deca8. Public details in the provided documents do not specify affected versions or e...

CVE-2021-4275 katlings pyambic-pentameter cross-site request forgery

A vulnerability, which was classified as problematic, was found in katlings pyambic-pentameter. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The name of the patch is 974f21aa1b2527ef39c8afe1a5060548217deca8. I...

CVE-2022-4275

CVE-2022-4275 affects House Rental System. The vulnerability is in the POST Request Handler, specifically the unknown functionality in the file search-property.php where manipulation of the search_property argument leads to a SQL injection. It can be exploited remotely, and public disclosures exi...

CVE-2022-4275 House Rental System POST Request search-property.php sql injection

A vulnerability has been found in House Rental System and classified as critical. Affected by this vulnerability is an unknown functionality of the file search-property.php of the component POST Request Handler. The manipulation of the argument searchproperty leads to sql injection. The attack ca...

SUSE: Security Advisory (SUSE-SU-2022:4275-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-4275

CVE-2020-4275: Cross-site scripting in the Carbon Black Response add-on for IBM QRadar SIEM. Affects Carbon Black Response versions 1.0.1–1.3.0. The vulnerability allows injecting arbitrary JavaScript into the Web UI, potentially leaking credentials within a trusted session. Root cause: improper ...

Security Bulletin: Carbon Black Response application add on to IBM QRadar SIEM is vulnerable to cross site scripting (CVE-2020-4275)

Summary Carbon Black Response application add on to IBM QRadar SIEM is vulnerable to cross site scripting. Vulnerability Details CVEID: CVE-2020-4275 DESCRIPTION: IBM QRadar SIEM s vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI...

Ubuntu 16.04 LTS / 18.04 LTS : Qt vulnerabilities (USN-4275-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4275-1 advisory. It was discovered that Qt incorrectly handled certain PPM images. If a user or automated system were tricked into opening a specially crafted...

Ubuntu: Security Advisory (USN-4275-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2013-4275

The Drupal Zen theme vulnerability CVE-2013-4275 affects Zen 6.x-1.x; 7.x-3.x before 7.x-3.2; and 7.x-5.x before 7.x-5.4. The root cause is a missing escape in zen_breadcrumb (template.php) for the breadcrumb separator field, allowing remote authenticated users with the administer themes permissi...