CVE-2026-43969

Improper Neutralization of CRLF Sequences 'CRLF Injection' vulnerability in ninenines cowlib allows HTTP request splitting and cookie smuggling via unvalidated cookie name and value fields. cowcookie:cookie/1 in cowlib builds a client-side Cookie: request header from a list of name-value pairs...

EEF-CVE-2026-43969 Cookie Request Header Injection via Unvalidated Encoder in cow_cookie:cookie/1

Summary Improper Neutralization of CRLF Sequences 'CRLF Injection' vulnerability in ninenines cowlib allows HTTP request splitting and cookie smuggling via unvalidated cookie name and value fields. cowcookie:cookie/1 in cowlib builds a client-side Cookie: request header from a list of name-value...

EUVD-2025-43969

Malicious code in hadi-gembus62-miaww npm...

CVE-2024-43969

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Spiffy Plugins Spiffy Calendar allows SQL Injection.This issue affects Spiffy Calendar: from n/a through 4.9.12...

CVE-2024-43969

creationtimestamp| type| source ---|---|--- 2024-09-18 01:39:29+00:00| seen| https://t.me/cvedetector/5876...

CVE-2024-43969

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Spiffy Plugins Spiffy Calendar allows SQL Injection.This issue affects Spiffy Calendar: from n/a through 4.9.12...

CVE-2024-43969

The CVE-2024-43969 entry applies to the WordPress Spiffy Calendar plugin up to version 4.9.12. The vulnerability is an SQL Injection caused by improper neutralization of special elements in the plugin’s SQL commands. Impact is information disclosure/alteration risks typical of SQLi, with CVSS 3.1...

CVE-2024-43969 WordPress Spiffy Calendar plugin <= 4.9.12 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Spiffy Plugins Spiffy Calendar allows SQL Injection.This issue affects Spiffy Calendar: from n/a through 4.9.12...

RICOH Multiple Products Threat of Folder User Password Breach (CVE-2022-43969)

Ricoh is aware of the reported 'Threat of folder user password breach' CVE-2022-43969 that affects certain products and services that Ricoh develops, manufactures, and offers. The user password for the folder, that is saved to a device with data transmission functionality, may be breached via a...

CVE-2022-43969

creationtimestamp| type| source ---|---|--- 2023-02-16 16:12:16+00:00| seen| https://t.me/cibsecurity/58310 2025-03-19 15:17:58+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8071...

CVE-2022-43969

The Tenable OT plugin for CVE-2022-43969 states Ricoh mp_c4504ex devices with firmware 1.06 are affected by a credentials handling vulnerability described as a threat of folder user password breach. Specifically, the user password saved to a device with data transmission functionality may be brea...

CVE-2022-43969

Ricoh mpc4504ex devices with firmware 1.06 mishandle credentials...

CVE-2021-43969

creationtimestamp| type| source ---|---|--- 2022-03-10 20:19:01+00:00| seen| https://t.me/cibsecurity/38676...

CVE-2021-43969

The CVE-2021-43969 entry concerns Quicklert for Digium 10.0.0 (1043). The vulnerability is a SQL injection in login.jsp (uname parameter) that enables Blind SQL Injection with Out-of-Band Interaction (DNS) and Blind Time-Based SQL Injections. Impact described in sources is disclosure of all data ...