EUVD-2026-4312

In the Linux kernel, the following vulnerability has been resolved: wifi: avoid kernel-infoleak from struct iwpoint struct iwpoint has a 32bit hole on 64bit arches. struct iwpoint void user pointer; / Pointer to the data in user space / u16 length; / number of fields or size in bytes / u16 flags;...

EUVD-2016-3626

Malware in sbrugna...

Debian: Security Advisory (DLA-4312-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-4312

The Soccer Engine – Soccer Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.12. This is due to missing or incorrect nonce validation when saving match and team settings. This makes it possible for unauthenticated attacke...

CVE-2022-4312

A cleartext storage of sensitive information vulnerability exists in PcVue versions 8.10 through 15.2.3. This could allow an unauthorized user with access the email and short messaging service SMS accounts configuration files to discover the associated simple mail transfer protocol SMTP account...

CVE-2025-4312

A vulnerability, which was classified as critical, has been found in SourceCodester Advanced Web Store 1.0. This issue affects some unknown processing of the file /productdetail.php. The manipulation of the argument prodid leads to sql injection. The attack may be initiated remotely. The exploit...

CVE-2025-4312 SourceCodester Advanced Web Store productdetail.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Advanced Web Store 1.0. This issue affects some unknown processing of the file /productdetail.php. The manipulation of the argument prodid leads to sql injection. The attack may be initiated remotely. The exploit...

RHSA-2024:4312

creationtimestamp| type| source ---|---|--- 2025-04-24 19:06:47+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13317...

Linux Distros Unpatched Vulnerability : CVE-2013-4312

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Linux kernel before 4.4.1 allows local users to bypass file-descriptor limits and cause a denial of service memory consumption by sending each descriptor ov...

Linux Distros Unpatched Vulnerability : CVE-2010-4312

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default configuration of Apache Tomcat 6.x does not include the HTTPOnly flag in a Set-Cookie header, which makes it easier for remote attackers to hijack a...

AlmaLinux 9 : openssh (ALSA-2024:4312)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:4312 advisory. openssh: Possible remote code execution due to a race condition in signal handling CVE-2024-6387 Tenable has extracted the preceding description block directly fro...

Oracle Linux 9 : openssh (ELSA-2024-4312)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-4312 advisory. 8.7p1-38.0.2.1 - Update upstream references Orabug: 36564626 8.7p1-38.1 - Possible remote code execution due to a race condition CVE-2024-6387 Resolves:...

CVE-2024-4312

The Soccer Engine – Soccer Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.12. This is due to missing or incorrect nonce validation when saving match and team settings. This makes it possible for unauthenticated attacke...

CVE-2024-4312

CVE-2024-4312 concerns the Soccer Engine – Soccer Plugin for WordPress, vulnerable to Cross-Site Request Forgery in versions up to 1.12 due to missing or incorrect nonce validation when saving match and team settings. The vulnerability could allow unauthenticated attackers to change plugin settin...

CVE-2024-4312 Soccer Engine – Soccer Plugin for WordPress <= 1.12 - Cross-Site Request Forgery

The Soccer Engine – Soccer Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.12. This is due to missing or incorrect nonce validation when saving match and team settings. This makes it possible for unauthenticated attacke...

CVE-2024-4312 Soccer Engine – Soccer Plugin for WordPress <= 1.12 - Cross-Site Request Forgery

The Soccer Engine – Soccer Plugin for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.12. This is due to missing or incorrect nonce validation when saving match and team settings. This makes it possible for unauthenticated attacke...

WordPress Soccer Engine Plugin <= 1.12 is vulnerable to Cross Site Request Forgery (CSRF)

Software Soccer Engine Type Plugin Vulnerable versions = 1.12 Fixed in 1.13 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-4312 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID bea2020faba5 Credits Benedictus Jovan aillesi...

RHCOS 4 : OpenShift Container Platform 4.11.46 (RHSA-2023:4312)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:4312 advisory. - kube-apiserver: PrivEsc CVE-2023-1260 Note that Nessus has not tested for this issue but has instead relied only on the application's...

PT-2023-28704 · Undefined · Undefined

Wireless Router Security: CVE-2023-43130 and CVE-2023-4312 on D-LINK DIR-806 1200M11AC cyberhat.online cyberhatonline CVE-2023-43130 CVE-2023-4312 dlink https://t.co/y5gtNK56RT...

Oracle Linux 7 : qemu (ELSA-2018-4312)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-4312 advisory. - usb-mtp: outlaw slashes in filenames Gerd Hoffmann Orabug: 29037012 CVE-2018-16867 - lsi53c895a: check message length value is valid Prasad J Pandit Orabug:...