CVE-2026-4306

creationtimestamp| type| source ---|---|--- 2026-03-23 23:18:05+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhr6zmqyb72f 2026-03-23 23:18:13+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhr6zusy542n 2026-03-24 00:54:26+00:00| seen|...

Debian: Security Advisory (DLA-4306-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DLA-4306-1 pam - security update

Bulletin has no description...

CVE-2025-4306

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /edit-phlebotomist.php. The manipulation of the argument mobilenumber leads to sql injection. The attack may be initiated remotely...

CVE-2025-4306

creationtimestamp| type| source ---|---|--- 2025-05-06 02:21:53+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15024 2025-05-06 05:01:38+00:00| seen| Telegram/tHzf-fgCcphtMP3Ckpi6I5Wko1MCt9Yc10AhwA8AFarD-C8 2025-05-06 06:06:35+00:00| exploited|...

CVE-2025-4306 PHPGurukul Nipah Virus Testing Management System edit-phlebotomist.php sql injection

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /edit-phlebotomist.php. The manipulation of the argument mobilenumber leads to sql injection. The attack may be initiated remotely...

CVE-2024-4306

Critical unrestricted file upload vulnerability in HubBank affecting version 1.0.2. This vulnerability allows a registered user to upload malicious PHP files via upload document fields, resulting in webshell execution...

CVE-2024-4306 Unrestricted Upload of File with Dangerous Type vulnerability in HubBank

Critical unrestricted file upload vulnerability in HubBank affecting version 1.0.2. This vulnerability allows a registered user to upload malicious PHP files via upload document fields, resulting in webshell execution...

CVE-2024-4306

CVE-2024-4306 affects HubBank version 1.0.2 and is a critical unrestricted file upload vulnerability. A registered user can upload malicious PHP files through upload document fields, enabling webshell execution on the server. The connected PT-2024-30276 advisory corroborates a high-severity, clie...

CVE-2024-4306 Unrestricted Upload of File with Dangerous Type vulnerability in HubBank

Critical unrestricted file upload vulnerability in HubBank affecting version 1.0.2. This vulnerability allows a registered user to upload malicious PHP files via upload document fields, resulting in webshell execution...

openSUSE: Security Advisory for xwayland (SUSE-SU-2023:4306-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-4306

creationtimestamp| type| source ---|---|--- 2024-01-29 12:16:39+00:00| seen| https://t.me/ctinow/175191...

Malicious code in wlwz-2312-4306 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f616862a4f842594a79f7791b413b845baef73c3abbc198bfbd53edefe8d612e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

SUSE CVE-2018-4306

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7...

CVE-2022-4306

The Panda Pods Repeater Field WordPress plugin before 1.5.4 does not sanitize and escapes a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against a user having at least Contributor permission...

CVE-2022-4306 Panda Pods Repeater Field < 1.5.4 - Reflected XSS

The Panda Pods Repeater Field WordPress plugin before 1.5.4 does not sanitize and escapes a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against a user having at least Contributor permission...

CVE-2022-4306

The CVE-2022-4306 vulnerability affects the WordPress plugin Panda Pods Repeater Field (versions before 1.5.4). The issue is a reflected XSS caused by not sanitizing/escaping a parameter before echoing it on the page, exploitable by users with at least Contributor permission. The Nuclei template ...

8mb (>=1.0.1 <=1.1.4), @0x4447/broccoli (>=1.0.0 <=1.0.16) +607 more potentially affected by CVE-2021-4306 via terminal-kit (>=0.10.9 <=2.1.0)

terminal-kit NPM version =0.10.9, =1.0.1, =1.0.0, =2.0.0, =1.0.0, =1.18.0, =0.0.1, =0.1.0, =0.0.5, =1.3.0, =1.4.1 and more Source cves: CVE-2021-4306 Source advisory: OSV:GHSA-WXGH-8GMR-3QH3...

CVE-2021-4306

A vulnerability classified as problematic has been found in cronvel terminal-kit up to 2.1.7. Affected is an unknown function. The manipulation leads to inefficient regular expression complexity. Upgrading to version 2.1.8 is able to address this issue. The name of the patch is...

CVE-2021-4306

The CVE-2021-4306 issue affects cronvel terminal-kit up to 2.1.7, with vulnerability to inefficient regular expression complexity (ReDoS) due to an unknown function. Impact is described as HIGH for availability (per CVSS) with network attack vector and no user interaction required. A fix is avail...