EUVD-2026-4341

Authorization Bypass Through User-Controlled Key vulnerability in Rustaurius Ultimate Reviews ultimate-reviews allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ultimate Reviews: from n/a through = 3.2.16...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004341)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004341 advisory. kernel/sched/fair.c in the Linux kernel before 5.3.9, when cpu.cfsquotaus is used e.g., with Kubernetes, allows attackers to cause a denial of service against...

MiracleLinux 4 : sssd-1.5.1-34.AXS4.3 (AXSA:2011-634:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-634:01 advisory. Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a...

DLA-4341-1 gegl - security update

Bulletin has no description...

EUVD-2018-4341

Malware in sbrugna...

CVE-2022-4341

A vulnerability has been found in csliuwy coder-chaingdut and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /back/index.php/user/User/?1. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been...

CVE-2012-4341

Multiple stack-based buffer overflows in msgserver.exe in SAP NetWeaver ABAP 7.x allow remote attackers to cause a denial of service crash and execute arbitrary code via a 1 long parameter value, 2 crafted string size field, or 3 long Parameter Name string in a package with opcode 0x43 and sub...

D-Link DIR-880L Multiple Vulnerabilities (2020 - 2025)

D-Link DIR-880L devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2025-4341

creationtimestamp| type| source ---|---|--- 2025-05-06 10:21:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3loinx5vugn2t 2025-05-06 12:48:23+00:00| exploited| https://t.me/cvedetector/24573...

CVE-2024-4341

Authorization Bypass Through User-Controlled Key, Missing Authorization vulnerability in ExtremePacs Extreme XDS allows Collect Data as Provided by Users. This issue affects Extreme XDS: before 3928...

CVE-2024-4341

creationtimestamp| type| source ---|---|--- 2024-07-08 16:35:03+00:00| seen| https://t.me/cvedetector/180...

CVE-2024-4341

Authorization Bypass Through User-Controlled Key, Missing Authorization vulnerability in ExtremePacs Extreme XDS allows Collect Data as Provided by Users. This issue affects Extreme XDS: before 3928...

CVE-2024-4341 IDOR in ExtremePacs's Extreme XDS

Authorization Bypass Through User-Controlled Key, Missing Authorization vulnerability in ExtremePacs Extreme XDS allows Collect Data as Provided by Users. This issue affects Extreme XDS: before 3928...

CVE-2024-4341 IDOR in ExtremePacs's Extreme XDS

Authorization Bypass Through User-Controlled Key, Missing Authorization vulnerability in ExtremePacs Extreme XDS allows Collect Data as Provided by Users. This issue affects Extreme XDS: before 3928...

Oracle Linux 5 : sssd (ELSA-2011-0975)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-0975 advisory. 1.5.1-37 - Reverts: rhbz680443 - Dynamic DNS update fails if multiple servers are - given in ipaserver config option 1.5.1-36 - Resolves: rhbz709333 - sssd...

CVE-2023-4341

creationtimestamp| type| source ---|---|--- 2023-08-15 22:31:04+00:00| seen| https://t.me/cibsecurity/68584...

CVE-2023-4341

CVE-2023-4341 affects the Broadcom RAID Controller. The vulnerability allows privilege escalation to root by exploiting insecure folder creation via the Web GUI. The NVD entry notes a high-severity impact (CVSSv3.1: 9.8, HIGH for confidentiality, integrity, and availability; network attack vector...

CVE-2021-4341

The uListing plugin for WordPress is vulnerable to authorization bypass via Ajax due to missing capability checks, missing input validation, and a missing security nonce in the stmupdateemaildata AJAX action in versions up to, and including, 1.6.6. This makes it possible for unauthenticated...

CVE-2021-4341

Product: WordPress uListing plugin. Vulnerability: Authorization bypass via Ajax in the stm_update_email_data action due to missing capability checks, missing input validation, and a missing security nonce. Affects versions up to and including 1.6.6. Impact: Unauthenticated attackers can change a...

CVE-2022-4341

creationtimestamp| type| source ---|---|--- 2022-12-08 00:12:00+00:00| seen| https://t.me/cibsecurity/54145...