MINI-929C-FM6H-4286

Bulletin has no description...

CVE-2026-4286

Mattermost versions 11.5.x = 11.5.1, 10.11.x = 10.11.13 fail to check if teamid was being changed when updating playbooks, allowing users with only Manage Playbook Configurations permission to change a playbook's team, bypassing manage members restriction via PUT api. Mattermost Advisory ID:...

MiracleLinux 4 : tomcat6-6.0.24-64.AXS4 (AXSA:2014-284:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-284:02 advisory. Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Jav...

DLA-4286-2 libcommons-lang3-java - regression update

Bulletin has no description...

CVE-2025-9517

creationtimestamp| type| source ---|---|--- 2025-09-15 13:28:31+00:00| seen| MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f 2025-09-16 03:45:00+00:00| seen| MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f...

Debian: Security Advisory (DLA-4286-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-4286

A vulnerability was found in Intelbras InControl up to 2.21.59. It has been classified as problematic. Affected is an unknown function of the component Dispositivos Edição Page. The manipulation of the argument Senha de Comunicação leads to unprotected storage of credentials. It is possible to...

CVE-2025-4286

A vulnerability was found in Intelbras InControl up to 2.21.59. It has been classified as problematic. Affected is an unknown function of the component Dispositivos Edição Page. The manipulation of the argument Senha de Comunicação leads to unprotected storage of credentials. It is possible to...

CVE-2025-4286

CVE-2025-4286 affects Intelbras InControl (versions up to 2.21.59). The vulnerability is in an unknown function of the Dispositivos Edição Page, where manipulation of the Senha de Comunicação argument results in unprotected credential storage. It can be exploited remotely, and public exploits hav...

Linux Distros Unpatched Vulnerability : CVE-2013-4286

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Tomcat before 6.0.39, 7.x before 7.0.47, and 8.x before 8.0.0-RC3, when an HTTP connector or AJP connector is used, does not properly handle certain...

CVE-2024-56116

creationtimestamp| type| source ---|---|--- 2024-12-19 01:24:56+00:00| seen| https://t.me/cvedetector/13270 2025-09-15 13:28:32+00:00| seen| MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f 2025-09-16 03:45:04+00:00| seen| MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f...

CVE-2024-4286

Mintplex-Labs' anything-llm application is vulnerable to improper neutralization of special elements used in an expression language statement, identified in the commit id 57984fa85c31988b2eff429adfc654c46e0c342a. The vulnerability arises from the application's handling of user modifications by...

CVE-2024-4286 Improper Neutralization of Special Elements in mintplex-labs/anything-llm

Mintplex-Labs' anything-llm application is vulnerable to improper neutralization of special elements used in an expression language statement, identified in the commit id 57984fa85c31988b2eff429adfc654c46e0c342a. The vulnerability arises from the application's handling of user modifications by...

Security Bulletin: Apache Tomcat vulnerabilities on IBM SAN Volume Controller and Storwize Family (CVE-2013-4286 CVE-2013-4322 CVE-2014-0075 CVE-2014-0099)

Summary Security Bulletin: Apache Tomcat vulnerabilities on IBM SAN Volume Controller and Storwize Family CVE-2013-4286 CVE-2013-4332 CVE-2014-0075 CVE-2014-0099 Vulnerability Details Security Bulletin --- Summary --- Apache Tomcat DoS and unauthorized access vulnerabilities Vulnerability Details...

Security Bulletin: The IBM FlashSystem 840 product is affected by vulnerabilities in Apache Tomcat

Summary Security vulnerabilities have been discovered in Apache Tomcat Vulnerability Details CVE-ID: CVE-2013-4286, CVE-2013-4322, & CVE-2014-0033 DESCRIPTION: FlashSystem 840 uses Apache Tomcat. FlashSystem 840 runs an Apache Tomcat web server which enables the systems’ browser-based...

B&R Systems Diagnostics Manager Cross Site Scripting

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple XSS Vulnerabilities product: B&R Systems Diagnostics Manager vulnerable version: =3.00 and =D4.93 CVE number: CVE-2022-4286 impact: medium homepage:...

CVE-2022-4286

creationtimestamp| type| source ---|---|--- 2023-02-14 18:35:42+00:00| seen| https://t.me/cibsecurity/58112...

CVE-2022-4286

A reflected cross-site scripting XSS vulnerability exists in System Diagnostics Manager of B&R Automation Runtime versions =3.00 and =C4.93 that enables a remote attacker to execute arbitrary JavaScript in the context of the users browser session...

CVE-2022-4286

A reflected cross-site scripting XSS vulnerability exists in System Diagnostics Manager of B&R Automation Runtime versions =3.00 and =C4.93 that enables a remote attacker to execute arbitrary JavaScript in the context of the users browser session...

CVE-2022-4286

Summary: CVE-2022-4286 affects B&R Automation Runtime’s System Diagnostics Manager, with vulnerable versions 3.00 through C4.93. A reflected XSS allows a remote attacker to execute arbitrary JavaScript in the victim’s browser session. The root cause is improper neutralization of input during web ...