CVE-2018-4321

A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12...

CVE-4321-4321 vulnerabilities

Vulnerabilities for packages: curl...

EUVD-2017-3120

Malware in sbrugna...

CVE-2022-4321

The PDF Generator for WordPress plugin before 1.1.2 includes a vendored dompdf example file which is susceptible to Reflected Cross-Site Scripting and could be used against high privilege users such as admin...

CVE-2023-4321 Cross-site Scripting (XSS) - Stored in cockpit-hq/cockpit

Cross-site Scripting XSS - Stored in GitHub repository cockpit-hq/cockpit prior to 2.4.3...

CVE-2023-4321

CVE-2023-4321 is a stored XSS in Cockpit (cockpit-hq/cockpit) prior to version 2.4.3. The vulnerability affects Cockpit’s web interface by storing and reflecting malicious input. CVSS v3.1 base score is 6.1 (MEDIUM) with Network access, no privileges required, UI interaction required, and confide...

CVE-2023-4321 Cross-site Scripting (XSS) - Stored in cockpit-hq/cockpit

Cross-site Scripting XSS - Stored in GitHub repository cockpit-hq/cockpit prior to 2.4.3...

CVE-2021-4321

creationtimestamp| type| source ---|---|--- 2023-07-29 07:30:02+00:00| seen| https://t.me/cibsecurity/67403...

CVE-2021-4321

Policy bypass in Blink in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

CVE-2021-4321

Policy bypass in Blink in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

CVE-2021-4321

CVE-2021-4321 affects Google Chrome (Blink/Chromium) with CSP bypass in Blink prior to Chrome 91.0.4472.77 via a crafted HTML page. Root cause: CSP enforcement bypass in Blink. Impact: potential to bypass content security policy; no exploitation details provided in the documents beyond the CSP by...

CVE-2021-4321

Policy bypass in Blink in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

CVE-2021-4321

Policy bypass in Blink in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

CVE-2022-4321

The CVE-2022-4321 entry concerns the WordPress plugin PDF Generator for WordPress (pre-1.1.2) which ships a vendored dompdf example file. The underlying issue is a Reflected Cross-Site Scripting (XSS) vulnerability in that embedded dompdf example, enabling an attacker to target high-privilege use...

WordPress PDF Generator for WordPress – Create & Customize PDF for Post, Pages and WooCommerce Products Plugin < 1.1.2 is vulnerable to Cross Site Scripting (XSS)

Software PDF Generator for WordPress – Create & Customize PDF for Post, Pages and WooCommerce Products Type Plugin Vulnerable versions 1.1.2 Fixed in 1.1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-4321 Patch priority Low CVSS severity Low 7.1...

CVE-2016-4321

CVE-2016-4321 corresponds to an XSS vulnerability in Atlassian Bitbucket Server 4.5.x prior to 4.5.3. The issue is triggered when moving user repositories and requires user interaction. Affected product/version: Bitbucket Server 4.5.x

Rocky Linux 8 : linuxptp (RLSA-2021:4321)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:4321 advisory. - A flaw was found in the ptp4l program of the linuxptp package. When ptp4l is operating on a little-endian architecture as a PTP transparent clock, a remote...

RHEL 8 : linuxptp (RHSA-2021:4321)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2021:4321 advisory. The linuxptp packages provide Precision Time Protocol PTP implementation for Linux according to IEEE standard 1588 for Linux. The dual design goals a...

CVE-2014-4321

creationtimestamp| type| source ---|---|--- 2020-10-09 17:11:58+00:00| seen| MISP/88f2f2cb-6827-40e8-85d4-52763d07e2b5...

Ubuntu 18.04 LTS : HAProxy vulnerability (USN-4321-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4321-1 advisory. Felix Wilhelm discovered that HAProxy incorrectly handled certain HTTP/2 requests. An attacker could possibly use this to execute arbitrary code. Tenable has...