Lucene search
+L

82 matches found

osv
osv
added 2026/04/12 2:32 a.m.3 views

MINI-MCX3-4423-WXG2

Bulletin has no description...

7.5CVSS5.7AI score0.00615EPSS
Exploits0
osv
osv
added 2026/03/04 5:22 a.m.0 views

MINI-4423-MVMM-GPQ8

Bulletin has no description...

8.6CVSS5.9AI score0.00472EPSS
Exploits0
osv
osv
added 2026/01/28 1:3 a.m.1 views

ECHO-C0A9-4423-AA59

Bulletin has no description...

7.5CVSS5.8AI score0.00707EPSS
Exploits1References1
euvd
euvd
added 2026/01/23 8:37 a.m.7 views

EUVD-2026-4423

IAQS and I6 developed by JNC has a Client-Side Enforcement of Server-Side Security vulnerability, allowing unauthenticated remote attackers to gain administrator privileges by manipulating the web front-end...

9.8CVSS5.5AI score0.00538EPSS
Exploits0References3
nessus
nessus
added 2026/01/14 12:0 a.m.7 views

MiracleLinux 4 : libvirt-0.9.10-21.5.0.1.AXS4 (AXSA:2012-975:04)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-975:04 advisory. Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the...

5CVSS6.7AI score0.03718EPSS
Exploits0References3
openvas
openvas
added 2025/12/29 12:0 a.m.1 views

Debian: Security Advisory (DLA-4423-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.8AI score0.00683EPSS
Exploits2References2
osv
osv
added 2025/12/28 12:0 a.m.3 views

DLA-4423-1 kodi - security update

Bulletin has no description...

5.5CVSS6.9AI score0.00683EPSS
Exploits2
nessus
nessus
added 2025/08/25 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2016-4423

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The attemptAuthentication function in Component/Security/Http/Firewall/UsernamePasswordFormAuthenticationListener.php in Symfony before 2.3.41, 2.7.x before...

7.5CVSS7.2AI score0.01862EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/08/01 1:16 a.m.4 views

CVE-2025-4423

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

8.2CVSS7.2AI score0.00182EPSS
Exploits0References1
nvd
nvd
added 2025/07/30 1:15 a.m.5 views

CVE-2025-4423

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

8.2CVSS0.00182EPSS
Exploits0References2
cve
cve
added 2025/07/30 12:42 a.m.22 views

CVE-2025-4423

CVE-2025-4423 is linked to Lenovo devices running InsydeH2O firmware. Connected documents describe a vulnerability in the InsydeH2O/SMM subsystem that allows a local attacker with privileges to write arbitrary code and trigger memory corruption (buffer flaw), enabling a local privilege escalation...

8.2CVSS6.6AI score0.00182EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/05/23 5:54 a.m.6 views

CVE-2023-4423

The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 3.1.37.1 due to insufficient input sanitization and output escaping. This makes it possible f...

4.8CVSS6AI score0.0051EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 8:2 a.m.6 views

CVE-2018-4423

A logic issue was addressed with improved validation. This issue affected versions prior to macOS Mojave 10.14.1...

7.8CVSS6.1AI score0.00891EPSS
Exploits0References1
nvd
nvd
added 2024/05/14 3:43 p.m.13 views

CVE-2024-4423

The access control in CemiPark software does not properly validate user-entered data, which allows the authentication bypass. An attacker who has network access to the login panel can log in with administrator rights to the application.This issue affects CemiPark software: 4.5, 4.7, 5.03 and...

7.2CVSS6.8AI score0.00907EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2024/05/09 9:36 a.m.10 views

CVE-2024-4423 Authentication bypass in CemiPark

The access control in CemiPark software does not properly validate user-entered data, which allows the authentication bypass. An attacker who has network access to the login panel can log in with administrator rights to the application.This issue affects CemiPark software: 4.5, 4.7, 5.03 and...

7.1AI score0.00907EPSS
Exploits0References3
cvelist
cvelist
added 2024/05/09 9:36 a.m.15 views

CVE-2024-4423 Authentication bypass in CemiPark

The access control in CemiPark software does not properly validate user-entered data, which allows the authentication bypass. An attacker who has network access to the login panel can log in with administrator rights to the application.This issue affects CemiPark software: 4.5, 4.7, 5.03 and...

7AI score0.00907EPSS
Exploits0References3
circl
circl
added 2024/02/01 7:16 p.m.5 views

CVE-2013-4423

creationtimestamp| type| source ---|---|--- 2024-02-01 19:16:41+00:00| seen| https://t.me/ctinow/177749...

5.5CVSS6.5AI score0.00308EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2023/09/27 3:3 a.m.9 views

CVE-2023-4423 WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce <= 3.1.37.1 - Authenticated (Admin+) Stored Cross-Site Scripting

The WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 3.1.37.1 due to insufficient input sanitization and output escaping. This makes it possible f...

4.4CVSS6.5AI score0.0051EPSS
Exploits1References4
cve
cve
added 2023/09/27 3:3 a.m.40 views

CVE-2023-4423

CVE-2023-4423 affects the WordPress plugin WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce . The vulnerability is a stored cross-site scripting (XSS) issue in admin settings present up to version 3.1.37.1, caused by insufficient input sanitization and output escap...

4.8CVSS4.8AI score0.0051EPSS
Exploits1References4Affected Software1
nvd
nvd
added 2023/07/12 7:15 a.m.15 views

CVE-2021-4423

The RAYS Grid plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.2. This is due to missing or incorrect nonce validation on the rsgdinsertupdate function. This makes it possible for unauthenticated attackers to update post fields via a forged...

4.3CVSS4.2AI score0.00393EPSS
Exploits0References9
Rows per page
Query Builder