CVE-2026-4309

creationtimestamp| type| source ---|---|--- 2026-03-27 15:58:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mi2idksjyy2n 2026-04-02 20:00:00+00:00| seen| https://jvn.jp/en/jp/JVN89339669/ 2026-04-04 00:05:06+00:00| seen|...

MiracleLinux 3 : net-snmp-5.3.1-24.2 (AXSA:2008-494:03)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2008-494:03 advisory. SNMP Simple Network Management Protocol is a protocol used for network management. The NET-SNMP project includes various SNMP tools: an extensible agent, an...

CVE-2007-4309

IBM Lotus Notes 5.x through 7.0.2 allows user-assisted remote authenticated administrators to obtain a cleartext notes.id password by setting the notes.ini 1 KFMShowEntropy and 2 DebugOutfile debug variables, a different vulnerability than CVE-2005-2696...

EUVD-2009-1882

Malware in sbrugna...

DLA-4309-1 libxslt - security update

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2018-4309

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12,...

CVE-2014-4309

Multiple cross-site scripting XSS vulnerabilities in Openfiler 2.99 allow remote attackers to inject arbitrary web script or HTML via the 1 TinkerAjax parameter to uptime.html, or remote authenticated users to inject arbitrary web script or HTML via the 2 MaxInstances, 3 PassivePorts, 4 Port, 5...

CVE-2025-4309

A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-art-type.php. The manipulation of the argument arttype leads to sql injection. The attack may be launched remotely...

CVE-2025-4309

creationtimestamp| type| source ---|---|--- 2025-05-06 03:19:57+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15032 2025-05-06 06:01:10+00:00| seen| Telegram/Ykbq960pecV0mb-2EL97VzQgr1OOWI0T1z8DduUtCnMiCk 2025-05-06 06:21:14+00:00| seen|...

CVE-2025-4309

CVE-2025-4309 affects PHPGurukul Art Gallery Management System 1.1. The vulnerability is in /admin/add-art-type.php where the arttype parameter is manipulated, triggering a SQL injection. It is exploitable remotely and has been publicly disclosed. Several sources classify the impact as high/criti...

CVE-2025-4309 PHPGurukul Art Gallery Management System add-art-type.php sql injection

A vulnerability was found in PHPGurukul Art Gallery Management System 1.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-art-type.php. The manipulation of the argument arttype leads to sql injection. The attack may be launched remotely...

CVE-2021-4309

creationtimestamp| type| source ---|---|--- 2025-04-09 14:48:16+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11067...

CVE-2022-4309

creationtimestamp| type| source ---|---|--- 2025-04-07 17:45:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10748...

CVE-2024-4309

creationtimestamp| type| source ---|---|--- 2024-11-06 11:35:10+00:00| exploited| https://t.me/xakepru/16652 2026-05-28 09:00:04+00:00| seen| Telegram/OS002dw6m1PPRnz6IRCgKzakOZaHgvXDyO1kIUDG8FnuVXM...

CVE-2024-4309

HubBank CVE-2024-4309 is a SQL injection in HubBank v1.0.2 affecting parameterized id values on endpoints /user/transaction.php?id=1, /user/credit-debit_transaction.php?id=1, /user/view_transaction.php?id=1, and /user/viewloantrans.php?id=1. Root cause: improper handling of user input leading to ...

CVE-2019-4309

creationtimestamp| type| source ---|---|--- 2024-01-29 12:41:36+00:00| seen| https://t.me/ctinow/175197...

SUSE: Security Advisory (SUSE-SU-2023:4309-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-4309

CVE-2023-4309 affects Election Services Co. (ESC) Internet Election Service. Multiple pages/parameters are vulnerable to SQL injection, allowing an unauthenticated, remote attacker to read or modify data for any elections sharing the same backend database. The public documentation consistently no...

PT-2023-18769 · Manageengine · Zoho Manageengine Access Manager Plus +2

Name of the Vulnerable Software and Affected Versions: ManageEngine Access Manager Plus AMP build 4309 ManageEngine Password Manager Pro affected versions not specified ManageEngine PAM360 affected versions not specified Description: Static credentials exist in the PostgreSQL data used in the...

CVE-2022-4309

Vulnerability summary (CVE-2022-4309) : The Subscribe2 WordPress plugin (versions before 10.38) is affected by a CSRF weakness in user-deletion functionality. The underlying issue is the absence of a CSRF check when deleting users, which could allow a logged-in admin to delete arbitrary users by ...