21 matches found
BELL-CVE-2026-43951
Bulletin has no description...
CVE-2026-43951
creationtimestamp| type| source ---|---|--- 2026-06-09 11:12:57+00:00| seen| https://bsky.app/profile/omo.bsky.social/post/3mnu2uq6ygc2l 2026-06-09 12:35:09+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mnu7hq6yhy25 2026-06-09 18:00:00+00:00| seen|...
DEBIAN-CVE-2026-43951
Out-of-bounds Read vulnerability in Apache HTTP Server with modheaders and modmime and multiple response languages. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67...
CVE-2023-43951
SSCMS 7.2.2 was discovered to contain a cross-site scripting XSS vulnerability via the Column Management component...
EUVD-2025-43951
Malicious code in hadi-papeda5-riris npm...
CVE-2024-43951
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in CryoutCreations Tempera allows Stored XSS.This issue affects Tempera: from n/a through 1.8.2...
CVE-2025-43951
LabVantage before LV 8.8.0.13 HF6 allows local file inclusion. Authenticated users can retrieve arbitrary files from the environment via the objectname request parameter...
CVE-2025-43951
creationtimestamp| type| source ---|---|--- 2025-04-22 21:09:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lngln37srm2j 2025-04-22 22:35:28+00:00| seen| https://t.me/cvedetector/23549 2025-04-23 15:48:36+00:00| seen|...
CVE-2025-43951
LabVantage before LV 8.8.0.13 HF6 allows local file inclusion. Authenticated users can retrieve arbitrary files from the environment via the objectname request parameter...
CVE-2025-43951
LabVantage before LV 8.8.0.13 HF6 allows local file inclusion. Authenticated users can retrieve arbitrary files from the environment via the objectname request parameter...
CVE-2025-43951
LabVantage before LV 8.8.0.13 HF6 allows local file inclusion. Authenticated users can retrieve arbitrary files from the environment via the objectname request parameter...
CVE-2025-43951
LabVantage LIMS (LV) versions before 8.8.0.13 HF6 are affected by a local file inclusion vulnerability. The issue involves the objectname parameter, allowing authenticated users to retrieve arbitrary files from the environment. Root cause: LFI due to unsafeguarded objectname handling. Impact: hig...
CVE-2024-43951
creationtimestamp| type| source ---|---|--- 2024-08-29 21:14:53+00:00| seen| https://t.me/cvedetector/4447...
WordPress Tempera Theme <= 1.8.2 is vulnerable to Cross Site Scripting (XSS)
Software Tempera Type Theme Vulnerable versions = 1.8.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43951 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 699efcd6c9d2 Credits stealthcopter Required privilege Contributor...
CVE-2023-43951
creationtimestamp| type| source ---|---|--- 2023-10-04 00:24:39+00:00| seen| https://t.me/cibsecurity/71535...
CVE-2023-43951
CVE-2023-43951 affects SSCMS version 7.2.2, with a cross-site scripting (XSS) vulnerability in the Column Management component. The Redhat/EUVD/CNNVD and third-party sources corroborate an XSS flaw in SSCMS 7.2.2 via Column Management. Exploitation details are not provided in the documents; no in...
CVE-2022-43951
creationtimestamp| type| source ---|---|--- 2023-04-11 20:23:33+00:00| seen| https://t.me/cibsecurity/61892...
CVE-2022-43951
An exposure of sensitive information to an unauthorized actor vulnerability CWE-200 in FortiNAC 9.4.1 and below, 9.2.6 and below, 9.1.8 and below, 8.8.11 and below, 8.7.6 and below may allow an unauthenticated attacker to access sensitive information via crafted HTTP requests...
CVE-2022-43951
FortiNAC information disclosure vulnerability (CVE-2022-43951) affects FortiNAC versions 9.4.1 and below, 9.2.6 and below, 9.1.8 and below, 8.8.11 and below, and 8.7.6 and below. An unauthenticated attacker can access sensitive information via crafted HTTP requests due to insufficient protection ...
CVE-2021-43951
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view object import configuration details via an Information Disclosure vulnerability in the Create Object type mapping feature. The affected versions are before version 4.21.0...