CVE-2025-43972 vulnerabilities

Vulnerabilities for packages: cilium...

EUVD-2025-43972

Malicious code in hadi-botok28-breki npm...

Linux Distros Unpatched Vulnerability : CVE-2025-43972

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a...

Ubuntu: Security Advisory (USN-7661-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-43972

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Pagelayer Team PageLayer allows Stored XSS.This issue affects PageLayer: from n/a through 1.8.7...

CVE-2021-43972

An unrestricted file copy vulnerability in /UserSelfServiceSettings.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to copy arbitrary files on the server filesystem to the web root with an arbitrary filename via the tempFile and fileName parameters in the HTTP POST body...

CVE-2025-43972 vulnerabilities

Vulnerabilities for packages: cilium-fips, cilium...

CVE-2025-43972

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context...

CVE-2025-43972

An issue was discovered in GoBGP before 3.35.0. An attacker can cause a crash in the pkg/packet/bgp/bgp.go flowspec parser by sending fewer than 20 bytes in a certain context...

CVE-2024-43972

creationtimestamp| type| source ---|---|--- 2024-09-18 03:20:02+00:00| seen| https://t.me/cvedetector/5895...

CVE-2024-43972

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Pagelayer Team PageLayer allows Stored XSS.This issue affects PageLayer: from n/a through 1.8.7...

CVE-2024-43972

CVE-2024-43972 is a Stored XSS in the WordPress PageLayer (Pagelayer – Drag and Drop website builder) framework. The vulnerability affects PageLayer versions n/a through 1.8.7. Public exploitation status is not indicated in the provided documents. The connected records confirm the issue as a cros...

CVE-2024-43972 WordPress Page Builder: Pagelayer – Drag and Drop website builder plugin <= 1.8.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Pagelayer Team PageLayer allows Stored XSS.This issue affects PageLayer: from n/a through 1.8.7...

WordPress PageLayer Plugin <= 1.8.7 is vulnerable to Cross Site Scripting (XSS)

Software PageLayer Type Plugin Vulnerable versions = 1.8.7 Fixed in 1.8.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43972 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID e5ff899f830a Credits Sharanabasappa Required privilege...

CVE-2022-43972

creationtimestamp| type| source ---|---|--- 2023-01-10 00:27:59+00:00| seen| https://t.me/cibsecurity/56184...

CVE-2022-43972

Consolidated details for CVE-2022-43972 show a null pointer dereference in the upnp soap_action binary of Linksys WRT54GL Wireless-G Router (firmware

CVE-2022-43972 Null pointer dereference in Linksys WRT54GL

A null pointer dereference vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware = 4.30.18.006. A null pointer dereference in the soapaction function within the upnp binary can be triggered by an unauthenticated attacker via a malicious POST request invoking the...

CVE-2021-43972

creationtimestamp| type| source ---|---|--- 2022-01-11 22:16:21+00:00| seen| https://t.me/cibsecurity/35270 2022-01-22 08:45:24+00:00| published-proof-of-concept| https://t.me/BlueRedTeam/1646 2022-01-22 22:20:00+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/5254...

CVE-2021-43972

CVE-2021-43972 concerns SysAid ITIL 20.4.74 b10. The vulnerability is an unrestricted file copy in /UserSelfServiceSettings.jsp, exploitable by a remote authenticated attacker who can copy arbitrary server files to the web root via tempFile and fileName in the HTTP POST body. The root cause is in...

Threat Outbreak Alert RuleID21595: Email Messages Distributing Malicious Software on March 9, 2016

Medium Alert ID: 43972 First Published: 2016 March 9 16:40 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID21595 may contain the following files: Name | Siz...