Exploit for CVE-2025-4396

CVE-2025-4396 Exploit: Relevanssi SQL Injection Time-Based...

CVE-2026-4396

Improper certificate validation in Devolutions Hub Reporting Service 2025.3.1.1 and earlier allows a network attacker to perform a man-in-the-middle attack via disabled TLS certificate verification...

CVE-2026-4396

creationtimestamp| type| source ---|---|--- 2026-03-18 21:36:16+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhegywz4zl2c...

CVE-2026-4396

Improper certificate validation in Devolutions Hub Reporting Service 2025.3.1.1 and earlier allows a network attacker to perform a man-in-the-middle attack via disabled TLS certificate verification...

EUVD-2026-4396

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Steve Truman Email Inquiry & Cart Options for WooCommerce woocommerce-email-inquiry-cart-options allows DOM-Based XSS.This issue affects Email Inquiry & Cart Options for WooCommerce: from n/a throu...

MiracleLinux 3 : xorg-x11-server-1.1.1-48.101.1.0.1.AXS3 (AXSA:2013-665:02)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-665:02 advisory. X.Org X11 X server Security issues fixed with this release: CVE-2013-4396 Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the...

CVE-2018-4396

A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14...

SUSE: Security Advisory (SUSE-SU-2025:4396-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-4396

A vulnerability was found in RDFlib pyrdfa3 and classified as problematic. This issue affects the function getoption of the file pyRdfa/init.py. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of the patch is ffd1d62dd50d5f4190013b39cedcdfbd81f3ce3e...

CVE-2025-4396

The Relevanssi – A Better Search plugin for WordPress is vulnerable to time-based SQL Injection via the cats and tags query parameters in all versions up to, and including, 4.24.4 Free and = 2.27.5 Premium due to insufficient escaping on the user supplied parameter and lack of sufficient...

CVE-2025-4396

creationtimestamp| type| source ---|---|--- 2025-05-13 06:47:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lozvazfzyj2o 2025-05-13 07:10:50+00:00| seen| https://t.me/cvedetector/25165 2025-05-13 14:16:26+00:00| confirmed|...

WordPress Relevanssi Premium plugin <= 2.27.4 - Unauthenticated SQL Injection

Unauthenticated SQL Injection vulnerability discovered by Jack Taylor in WordPress Plugin Relevanssi Premium versions = 2.27.4...

WordPress Relevanssi plugin <= 4.24.4 - Unauthenticated SQL Injection

Unauthenticated SQL Injection vulnerability discovered by Jack Taylor in WordPress Plugin Relevanssi versions = 4.24.4...

CGA-4V7W-4396-QWVG

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2022-4396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in RDFlib pyrdfa3 and classified as problematic. This issue affects the function getoption of the file pyRdfa/init.py. The manipulatio...

CVE-2019-4396

creationtimestamp| type| source ---|---|--- 2024-01-29 08:41:14+00:00| seen| https://t.me/ctinow/175104...

CVE-2021-4396

The CVE refers to the Rucy WordPress plugin with a CSRF vulnerability up to version 0.4.4. The root cause is missing or incorrect nonce validation in the save_rc_post_meta() function, allowing unauthenticated attackers to save post meta by convincing a site admin to perform an action (e.g., click...

CVE-2022-4396

creationtimestamp| type| source ---|---|--- 2022-12-10 14:14:08+00:00| seen| https://t.me/cibsecurity/54255...

CVE-2022-4396

CVE-2022-4396 affects RDFlib pyrdfa3. The vulnerability is in the function _get_option of pyRdfa/__init__.py and enables cross-site scripting, potentially exploitable remotely. A patch identified by the commit/patch hash ffd1d62dd50d5f4190013b39cedcdfbd81f3ce3e exists and should be applied to fix...

CVE-2022-4396 RDFlib pyrdfa3 __init__.py _get_option cross site scripting

A vulnerability was found in RDFlib pyrdfa3 and classified as problematic. This issue affects the function getoption of the file pyRdfa/init.py. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of the patch is ffd1d62dd50d5f4190013b39cedcdfbd81f3ce3e...