137 matches found
CVE-2026-4344
CVE-2026-4344 describes a Stored XSS vulnerability in the Autodesk Fusion desktop application. A malicious HTML payload in the component name, when shown in a delete confirmation dialog and clicked by a user, can execute script in the user’s context. The CVE notes potential to read local files or...
EUVD-2026-4344
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jagdish1o1 Delay Redirects delay-redirects allows DOM-Based XSS.This issue affects Delay Redirects: from n/a through = 1.0.0...
MiracleLinux 4 : qemu-kvm-0.12.1.2-2.415.AXS4.4 (AXSA:2014-016:01)
The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2014-016:01 advisory. KVM for Kernel-based Virtual Machine is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines running...
CVE-2018-4344
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5...
CVE-2025-4344
creationtimestamp| type| source ---|---|--- 2025-05-06 10:21:02+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15082 2025-05-06 10:36:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3loiorxphbp2j 2025-05-06 12:31:16+00:00| published-proof-of-concept|...
CVE-2025-4344 D-Link DIR-600L formLogin buffer overflow
A vulnerability, which was classified as critical, was found in D-Link DIR-600L up to 2.07B01. This affects the function formLogin. The manipulation of the argument host leads to buffer overflow. It is possible to initiate the attack remotely. This vulnerability only affects products that are no...
WordPress Shield Security Plugin <= 19.1.10 is vulnerable to Cross Site Request Forgery (CSRF)
Software Shield Security Type Plugin Vulnerable versions = 19.1.10 Fixed in 19.1.11 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-4344 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID cbf7668e1a87 Credits Christian Angel...
CVE-2024-4344
The Shield Security – Smart Bot Blocking & Intrusion Prevention Security plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 19.1.13. This is due to missing or incorrect nonce validation on the exec function. This makes it possible for...
CVE-2024-4344
CVE-2024-4344 concerns the Shield Security – Smart Bot Blocking & Intrusion Prevention Security WordPress plugin. It is vulnerable to Cross-Site Request Forgery in all versions up to and including 19.1.13. The root cause is missing or incorrect nonce validation on the exec function, enabling unau...
CVE-2024-4344 Shield Security – Smart Bot Blocking & Intrusion Prevention Security <= 19.1.13 - Cross-Site Request Forgery
The Shield Security – Smart Bot Blocking & Intrusion Prevention Security plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 19.1.13. This is due to missing or incorrect nonce validation on the exec function. This makes it possible for...
Advisory ROSA-SA-2023-2257
Software: wireshark 4.0.5 OS: ROSA-CHROME packageevrstring: wireshark-4.0.5-1.src.rpm CVE-ID: CVE-2022-4344 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A memory shortage in the Kafka protocol dissector in Wireshark versions 4.0.0.0-4.0.1 and 3.6.0-3.6.9 allows denial of service via packet injection ...
CVE-2022-4344 affecting package wireshark for versions less than 4.0.8-1
CVE-2022-4344 affecting package wireshark for versions less than 4.0.8-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-4344
Broadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper use of ssl.rnd to setup CIM connection...
CVE-2023-4344
Summary: CVE-2023-4344 affects the Broadcom RAID Controller web interface, where the vulnerability stems from insufficient randomness due to improper use of ssl.rnd to set up CIM connections. Affected product/where it’s exposed: Broadcom RAID Controller web interface (Broadcom RAID Controller fam...
CVE-2021-4344
The Frontend File Manager plugin for WordPress is vulnerable to Privilege Escalation in versions up to, and including, 18.2. This is due to lacking mishandling the use of user IDs that is accessible by the visitor. This makes it possible for unauthenticated or authenticated attackers to access th...
CVE-2021-4344
Summary (CVE-2021-4344): The WordPress plugin Frontend File Manager up to version 18.2 is vulnerable to a privilege escalation due to improper handling of user IDs accessible by visitors. This can allow unauthenticated or authenticated attackers to access information and privileges of other users...
CVE-2021-4344 Frontend File Manager <= 18.2 - Privilege Escalation
The Frontend File Manager plugin for WordPress is vulnerable to Privilege Escalation in versions up to, and including, 18.2. This is due to lacking mishandling the use of user IDs that is accessible by the visitor. This makes it possible for unauthenticated or authenticated attackers to access th...
Medium: wireshark
Issue Overview: RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file CVE-2023-1992 LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or...
K15561: Kerberos vulnerability CVE-2014-4344
Security Advisory Description The accctxcont function in the SPNEGO acceptor in lib/gssapi/spnego/spnegomech.c in MIT Kerberos 5 aka krb5 1.5.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via an empty continuatio...
SUSE CVE-2016-4344
Integer overflow in the xmlutf8encode function in ext/xml/xml.c in PHP before 7.0.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a long argument to the utf8encode function, leading to a heap-based buffer overflow...