Simple User Registration <= 6.3 - Unauthenticated Privilege Escalation

The Simple User Registration plugin ≤ 6.3 is vulnerable to privilege escalation. It lacks proper restrictions on user meta values during registration. Unauthenticated attackers can exploit this to register as administrators. id: CVE-2025-4334 info: name: Simple User Registration = 6.3 -...

CVE-2026-4334

creationtimestamp| type| source ---|---|--- 2026-05-28 11:25:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmvvylybx22p 2026-05-29 06:55:28+00:00| seen| https://bsky.app/profile/donwebmedia.bsky.social/post/3mmxxeallph25...

CVE-2009-4334

The Self Tuning Memory Manager STMM component in IBM DB2 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 uses 0666 permissions for the STMM log file, which allows local users to cause a denial of service or have unspecified other impact by writing to this file...

Exploit for Improper Privilege Management in Najeebmedia Simple_User_Registration

CVE-2025-4334 Vulnerability Exploitation Tool Overview This...

Exploit for Improper Privilege Management in Najeebmedia Simple_User_Registration

🔓 Simple User Registration = 6.3 - Unauthenticated Privilege...

Linux Distros Unpatched Vulnerability : CVE-2010-4334

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IO::Socket::SSL module 1.35 for Perl, when verifymode is not VERIFYNONE, fails open to VERIFYNONE instead of throwing an error when a cafile/capath cannot b...

CGA-4334-6PPP-9WRJ

Bulletin has no description...

RHEL 6 : perl-io-socket-ssl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - perl-IO-Socket-SSL: ignores user request for peer verification CVE-2010-4334 Note that Nessus has not tested for th...

WordPress Supreme Modules Lite Plugin <= 2.5.3 is vulnerable to Cross Site Scripting (XSS)

Software Supreme Modules Lite Type Plugin Vulnerable versions = 2.5.3 Fixed in 2.5.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4334 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID db7cdff0f72f Credits Webbernaut Required...

CVE-2019-4334

creationtimestamp| type| source ---|---|--- 2024-02-11 09:02:02+00:00| seen| https://t.me/ctinow/182719...

CVE-2021-4334

The Fancy Product Designer plugin for WordPress is vulnerable to unauthorized modification of site options due to a missing capability check on the fpdupdateoptions function in versions up to, and including, 4.6.9. This makes it possible for authenticated attackers with subscriber-level permissio...

CVE-2021-4334

CVE-2021-4334 affects the Fancy Product Designer WordPress plugin. A missing capability check in fpd_update_options (

CVE-2021-4334 Fancy Product Designer <= 4.6.9 - Insufficient Authorization to Arbitrary Options Update via fpd_update_options

The Fancy Product Designer plugin for WordPress is vulnerable to unauthorized modification of site options due to a missing capability check on the fpdupdateoptions function in versions up to, and including, 4.6.9. This makes it possible for authenticated attackers with subscriber-level permissio...

CVE-2023-4334

Broadcom RAID Controller Web server nginx is serving private files without any authentication...

CVE-2023-4334 Broadcom RAID Controller Web server (nginx) is serving private files without any authentication

Broadcom RAID Controller Web server nginx is serving private files without any authentication...

CVE-2023-4334

The CVE-2023-4334 issue affects Broadcom RAID Controller Web server (nginx); the vulnerability arises because the web server serves private files without requiring authentication, enabling exposure of private data over the network. Public sources in the connected documents corroborate that unauth...

WordPress Fancy Product Designer Plugin <= 4.6.9 is vulnerable to Broken Access Control

Software Fancy Product Designer Type Plugin Vulnerable versions = 4.6.9 Fixed in 4.7.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2021-4334 Patch priority High CVSS severity High 8.8 Developer Claim ownership PSID 81f6208d4f4f Credits Ramuel Gall Required...

Debian: Security Advisory (DSA-1181-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2010-4501

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-4334. Reason: This candidate is a duplicate of CVE-2010-4334. Notes: All CVE users should reference CVE-2010-4334 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage...

SUSE: Security Advisory (SUSE-SU-2022:4334-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...