EUVD-2026-4324

A flaw was found in Moodle. An attacker with access to the restore interface could trigger server-side execution of arbitrary code. This is due to insufficient validation of restore input, which leads to unintended interpretation by core restore routines. Successful exploitation could result in a...

MiracleLinux 7 : httpd-2.4.6-90.0.1.el7.AXS7 (AXSA:2019-4324:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4324:03 advisory. httpd: modauthdigest: access control bypass due to race condition CVE-2019-0217 httpd: URL normalization inconsistency CVE-2019-0220 Tenable has...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : gimp (SUSE-SU-2025:4324-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:4324-1 advisory. - CVE-2025-10922: Fixed GIMP DCM file parsing heap-based buffer overflow remote code execution...

Debian: Security Advisory (DLA-4324-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-4324

"HCL AppScan Enterprise is susceptible to Cross-Site Scripting while importing a specially crafted test policy."...

CVE-2025-4324

creationtimestamp| type| source ---|---|--- 2025-05-06 06:20:27+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15063 2025-05-06 10:17:53+00:00| seen| https://t.me/cvedetector/24566...

CVE-2025-4324

The CVE concerns MRCMS 3.1.2 and the External Link Management Page (file path: /admin/link/edit.do). The issue is a cross-site scripting (XSS) vulnerability that can be exploited remotely; the exploit has been publicly disclosed. The connected documents provide no confirmed patch version or offic...

CVE-2025-4324 MRCMS External Link Management Page edit.do cross site scripting

A vulnerability, which was classified as problematic, was found in MRCMS 3.1.2. This affects an unknown part of the file /admin/link/edit.do of the component External Link Management Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit...

CVE-2025-4324 MRCMS External Link Management Page edit.do cross site scripting

A vulnerability, which was classified as problematic, was found in MRCMS 3.1.2. This affects an unknown part of the file /admin/link/edit.do of the component External Link Management Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit...

Linux Distros Unpatched Vulnerability : CVE-2011-4324

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The encodeshareaccess function in fs/nfs/nfs4xdr.c in the Linux kernel before 2.6.29 allows local users to cause a denial of service BUG and system crash by usi...

CVE-2024-4324 WP Video Lightbox <= 1.9.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter

The WP Video Lightbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘width’ parameter in all versions up to, and including, 1.9.10 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level...

CVE-2023-4324

creationtimestamp| type| source ---|---|--- 2023-08-15 22:30:58+00:00| seen| https://t.me/cibsecurity/68579...

CVE-2023-4324

Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security-Policy headers...

CVE-2023-4324

Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security-Policy headers...

CVE-2023-4324 Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security-Policy headers

Broadcom RAID Controller web interface is vulnerable due to insecure defaults of lacking HTTP Content-Security-Policy headers...

CVE-2023-4324

The CVE-2023-4324 entry describes a vulnerability in the Broadcom RAID Controller web interface due to insecure defaults lacking HTTP Content-Security-Policy headers. Affected component: Broadcom RAID Controller Web Interface. Root cause: missing CSP headers in the web UI. Reported impact in sour...

Important: Red Hat Security Advisory: ghostscript security update

An update for ghostscript is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

RHEL 9 : ghostscript (RHSA-2023:4324)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:4324 advisory. The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats ...

CVE-2021-4324

CVE-2021-4324 affects Google Chrome (Chromium-based) prior to version 90.0.4430.93. Root cause: insufficient policy enforcement in Google Update. Impact: remote attacker could read arbitrary files via a malicious file. Affected versions are before 90.0.4430.93; remediation is to update to 90.0.44...

CVE-2021-4324

Insufficient policy enforcement in Google Update in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to read arbitrary files via a malicious file. Chromium security severity: Medium...