118 matches found
EUVD-2026-4311
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free warning in btrfsgetorcreatedelayednode Previously, btrfsgetorcreatedelayednode set the delayednode's refcount before acquiring the root-delayednodes lock. Commit e8513c012de7 "btrfs: implement reftracker...
CVE-2018-4311
The issue was addressed by removing origin information. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7...
CVE-2022-4311
An insertion of sensitive information into log file vulnerability exists in PcVue versions 15 through 15.2.2. This could allow a user with access to the log files to discover connection strings of data sources configured for the DbConnect, which could include credentials. Successful exploitation ...
CVE-2025-4311
A vulnerability classified as critical was found in itsourcecode Content Management System 1.0. This vulnerability affects unknown code of the file /admin/updatemaintopicimg.php?topicid=529. The manipulation of the argument stopicid leads to sql injection. The attack can be initiated remotely. Th...
CVE-2025-4311
A vulnerability classified as critical was found in itsourcecode Content Management System 1.0. This vulnerability affects unknown code of the file /admin/updatemaintopicimg.php?topicid=529. The manipulation of the argument stopicid leads to sql injection. The attack can be initiated remotely. Th...
CVE-2025-4311 itsourcecode Content Management System update_main_topic_img.php sql injection
A vulnerability classified as critical was found in itsourcecode Content Management System 1.0. This vulnerability affects unknown code of the file /admin/updatemaintopicimg.php?topicid=529. The manipulation of the argument stopicid leads to sql injection. The attack can be initiated remotely. Th...
CVE-2025-4311 itsourcecode Content Management System update_main_topic_img.php sql injection
A vulnerability classified as critical was found in itsourcecode Content Management System 1.0. This vulnerability affects unknown code of the file /admin/updatemaintopicimg.php?topicid=529. The manipulation of the argument stopicid leads to sql injection. The attack can be initiated remotely. Th...
Linux Distros Unpatched Vulnerability : CVE-2008-4311
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default configuration of system.conf in D-Bus aka DBus before 1.2.6 omits the sendtype attribute in certain rules, which allows local users to bypass intend...
ZenML < 0.57.0 Password Reset Brute Force (CVE-2024-4311)
The version of ZenML installed on the remote host is prior to 0.57.0. It is, therefore, affected by an account takeover exposure due to the lack of rate-limiting in the password change function. An attacker can brute-force the current password in the 'Update Password' function, allowing them to...
CVE-2024-4311 Lack of login attempt rate-limiting in zenml-io/zenml
zenml-io/zenml version 0.56.4 is vulnerable to an account takeover due to the lack of rate-limiting in the password change function. An attacker can brute-force the current password in the 'Update Password' function, allowing them to take over the user's account. This vulnerability is due to the...
RHEL 4 : dbus (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - dbus: incorrect use of send|receiverequestedreply policy rule attribute in system.conf CVE-2008-4311 Note that Ness...
CVE-2019-4311
creationtimestamp| type| source ---|---|--- 2024-01-29 13:11:27+00:00| seen| https://t.me/ctinow/175213...
CVE-2023-4311
creationtimestamp| type| source ---|---|--- 2023-12-21 23:16:40+00:00| seen| https://t.me/ctinow/158031 2024-01-12 11:36:30+00:00| seen| https://t.me/ctinow/167201...
CVE-2023-4311
CVE-2023-4311 affects the Vrm 360 3D Model Viewer WordPress plugin (versions up to 1.2.1). The vulnerability is an arbitrary file upload due to insufficient checks in a plugin shortcode, enabling potential remote code execution. Public sources in the connected records describe PoCs and demonstrat...
CVE-2023-4311 Vrm 360 3D Model Viewer <= 1.2.1 - Contributor+ Arbitrary File Upload Leading to RCE
The Vrm 360 3D Model Viewer WordPress plugin through 1.2.1 is vulnerable to arbitrary file upload due to insufficient checks in a plugin shortcode...
CVE-2021-4311
creationtimestamp| type| source ---|---|--- 2023-01-09 14:27:29+00:00| seen| https://t.me/cibsecurity/56145 2025-04-09 19:48:29+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11153...
CVE-2021-4311 Talend Open Studio for MDM XML xml external entity reference
A vulnerability classified as problematic was found in Talend Open Studio for MDM. This vulnerability affects unknown code of the component XML Handler. The manipulation leads to xml external entity reference. The patch is identified as 31d442b9fb1d518128fd18f6e4d54e06c3d67793. It is recommended ...
CVE-2021-4311
CVE-2021-4311 affects Talend Open Studio for MDM, due to a vulnerability in an unknown XML Handler component that permits an XML External Entity (XXE) reference. The public descriptions cite a patch identified as 31d442b9fb1d518128fd18f6e4d54e06c3d67793 and recommend applying it to fix the issue....
ARC Informatique PcVue
1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION: Low attack complexity Vendor: ARC Informatique Equipment: PcVue Vulnerabilities: Cleartext Storage of Sensitive Information, Insertion of Sensitive Information into Log File 2. UPDATE OR REPOSTED INFORMATION This updated advisory is a follow-up to the...
CVE-2022-4311
creationtimestamp| type| source ---|---|--- 2022-12-12 20:21:06+00:00| seen| https://t.me/cibsecurity/54342...