66 matches found
MINI-W7R4-4295-Q5M7
Bulletin has no description...
MINI-4295-JQQH-2C59
Bulletin has no description...
CVE-2026-4295
creationtimestamp| type| source ---|---|--- 2026-03-17 19:16:14+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-4295 2026-03-17 20:48:35+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhbtuq4djs2c 2026-04-30 12:30:32+00:00| seen|...
DLA-4295-1 libhtp - security update
Bulletin has no description...
CVE-2025-4295
creationtimestamp| type| source ---|---|--- 2025-07-22 14:32:39+00:00| seen| Telegram/2kjdkZRe0bZSuwZTCsucAdvzAZ4Q1VV-DazPva0lmiXIbB4...
CVE-2025-4295
Improper Validation of Certificate with Host Mismatch vulnerability in HotelRunner B2B allows HTTP Response Splitting. This issue affects B2B: before 04.06.2025...
SUSE: Security Advisory (SUSE-SU-2024:4295-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-4295
The Show All Comments WordPress plugin before 7.0.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against a logged in high privilege users such as admin...
CVE-2013-4295
The gadget renderer in Apache Shindig 2.5.0 for PHP allows remote attackers to obtain sensitive information via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue...
CVE-2009-4295
Sun Ray Server Software 4.0 and 4.1 does not generate a unique DSA private key for the firmware on each Sun Ray 1, 1g, 100, and 150 DTU device, which makes it easier for remote attackers to obtain sensitive information by predicting a key and then using it to decrypt sniffed network traffic...
CVE-2024-4295
creationtimestamp| type| source ---|---|--- 2024-06-05 10:32:04+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/7530 2024-06-06 17:36:36+00:00| published-proof-of-concept| https://t.me/HackingInsights/1803 2024-08-30 06:52:02+00:00| published-proof-of-concept|...
CVE-2024-4295
CVE-2024-4295 affects the WordPress plugin Email Subscribers by Icegram Express . It is an unauthenticated SQL injection via the hash parameter in all versions up to 5.7.20 caused by insufficient escaping and poor SQL query preparation. Exploitation could enable attackers to append additional SQL...
CVE-2024-4295 Email Subscribers by Icegram Express <= 5.7.20 - Unauthenticated SQL Injection via hash
The Email Subscribers by Icegram Express plugin for WordPress is vulnerable to SQL Injection via the ‘hash’ parameter in all versions up to, and including, 5.7.20 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes i...
WordPress Email Subscribers & Newsletters Plugin <= 5.7.20 is vulnerable to SQL Injection
Software Email Subscribers & Newsletters Type Plugin Vulnerable versions = 5.7.20 Fixed in 5.7.21 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-4295 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 50be2b9566fd Credits 1337Wannabe Required privilege...
CVE-2024-4579
Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-4295. Reason: This candidate is a reservation duplicate of CVE-2024-4295. Notes: All CVE users should reference CVE-2024-4295 instead of this candidate. All references and descriptions in this candidate have been remov...
CVE-2023-4295
A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory...
CVE-2023-4295 Mali GPU Kernel Driver allows improper GPU memory processing operations
A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory...
CVE-2023-4295 Mali GPU Kernel Driver allows improper GPU memory processing operations
A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory...
CVE-2023-4295
CVE-2023-4295 is a Mali GPU driver vulnerability (Arm Mali GPU kernel driver Valhall and Mali GPU driver) that allows a local, non-privileged user to trigger improper GPU memory processing, gaining access to memory that has already been freed. The issue is described as a resource management error...
SUSE: Security Advisory (SUSE-SU-2023:4295-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...