CVE-2026-4315

creationtimestamp| type| source ---|---|--- 2026-03-30 15:22:38+00:00| seen| Telegram/rgowYjXIbIqHAY83QR77NdcMiEs7Q8IlbaGHk6-omsHWj8 2026-03-30 16:25:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mic37ups7t2i...

EUVD-2026-4315

In the Linux kernel, the following vulnerability has been resolved: gpiolib: fix race condition for gdev-srcu If two drivers were calling gpiochipadddatawithkey, one may be traversing the srcu-protected list in gpionametodesc, meanwhile other has just added its gdev in gpiodevaddtolistunlocked...

CVE-2023-4315

The Woo Custom Emails for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'wcemailsedit' parameter in versions up to, and including, 2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scrip...

DLA-4315-1 tiff - security update

Bulletin has no description...

CVE-2025-4315

Summary: CVE-2025-4315 affects the CubeWP – All-in-One Dynamic Content Framework plugin for WordPress. The vulnerability is an authenticated privilege-escalation flaw exploitable by users with Subscriber+ privileges to elevate to Administrator via improper handling of update_user_meta(), affectin...

WordPress CubeWP Framework plugin <= 1.1.23 - Authenticated (Subscriber+) Privilege Escalation vulnerability

Authenticated Subscriber+ Privilege Escalation vulnerability discovered by Foxyyy in WordPress Plugin CubeWP versions = 1.1.23...

CVE-2018-4315

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7...

Rocky Linux 8 : spamassassin (RLSA-2021:4315)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:4315 advisory. - In Apache SpamAssassin before 3.4.5, malicious rule configuration .cf files can be configured to run system commands without any output or errors. With this,...

CVE-2023-4315

creationtimestamp| type| source ---|---|--- 2023-08-31 12:12:51+00:00| seen| https://t.me/cibsecurity/69516...

CVE-2023-4315

CVE-2023-4315 affects the WordPress plugin “Woo Custom Emails”. The vulnerability is a reflected XSS in the wcemails_edit parameter for versions up to and including 2.2, caused by insufficient input sanitization and output escaping. Exploitation requires user interaction (tricking the user into c...

CVE-2023-4315 Woo Custom Emails <= 2.2 - Reflected Cross-Site Scripting via wcemails_edit

The Woo Custom Emails for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'wcemailsedit' parameter in versions up to, and including, 2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scrip...

CVE-2022-4315

creationtimestamp| type| source ---|---|--- 2023-03-09 02:23:35+00:00| seen| https://t.me/cibsecurity/59713...

CVE-2022-4315

GitLab DAST analyzer (versions 2.0 up to, but not including, 3.0.55) is affected by CVE-2022-4315. The issue arises from the analyzer sending custom request headers with every request on the authentication page. This has been characterized with a CVSS baseline of 6.5 (MEDIUM) by NVD, with Network...

SUSE CVE-2010-4315

unknown...

CVE-2021-4315

creationtimestamp| type| source ---|---|--- 2023-01-29 13:02:17+00:00| seen| https://t.me/cibsecurity/57132...

CVE-2021-4315

The CVE-2021-4315 issue affects NYUCCL psiTurk up to 3.2.0, with the flaw located in psiturk/experiment.py. The vulnerability arises from improper neutralization of special elements used in a template engine when the mode argument is manipulated. Public disclosure of the exploit is noted, and upg...

Ubuntu: Security Advisory (USN-4315-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AlmaLinux 8 : spamassassin (ALSA-2021:4315)

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2021:4315 advisory. - In Apache SpamAssassin before 3.4.5, malicious rule configuration .cf files can be configured to run system commands without any output or errors. With this,...

Oracle Linux 8 : spamassassin (ELSA-2021-4315)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2021-4315 advisory. 3.4.4-4.el4 - Fix header parsing Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has no...

CentOS 8 : spamassassin (CESA-2021:4315)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2021:4315 advisory. - spamassassin: Malicious rule configuration files can be configured to run system commands CVE-2020-1946 Note that Nessus has not tested for this issue but has...