WordPress Plugin Aviary Image Editor Addon For Gravity Forms 3.0 Beta - Arbitrary File Upload

Unrestricted file upload vulnerability in includes/upload.php in the Aviary Image Editor Add-on For Gravity Forms plugin 3.0 beta for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in...

MINI-6VX8-4455-HG36

Bulletin has no description...

CVE-2026-4455

creationtimestamp| type| source ---|---|--- 2026-03-20 06:55:12+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116260189773239032 2026-03-22 02:33:42+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhmizkjhtl2h 2026-03-22 02:34:21+00:00| seen|...

CVE-2026-4455

Heap buffer overflow in PDFium in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. Chromium security severity: High...

CVE-2026-4455

CVE-2026-4455 : The vulnerability is a heap buffer overflow in PDFium used by Google Chrome, prior to version 146.0.7680.153. The underlying issue is a heap corruption condition triggered by a crafted PDF file, allowing a remote attacker to potentially exploit it. Affected product/component: Goog...

Linux Distros Unpatched Vulnerability : CVE-2026-4455

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overflow in PDFium in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file...

PT-2026-26526

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 146.0.7680.153 Description A heap buffer overflow exists in PDFium within Google Chrome. This issue could allow a remote attacker to potentially exploit heap corruption through a specially crafted PDF file. The...

CVE-2024-4455

creationtimestamp| type| source ---|---|--- 2025-12-30 21:02:59+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mbaarlfjwq2f...

CVE-2022-4455 vulnerabilities

Vulnerabilities for packages: php...

CVE-2022-4455 vulnerabilities

Vulnerabilities for packages: php...

CVE-2005-4455

cleanhtml.pl 1.129 in LiveJournal CVS before Dec 13 2005 allows remote attackers to inject scripting languages via the XSL namespace in XML, via vectors such as customview.cgi...

CVE-2025-4455

A vulnerability was found in Patch My PC Home Updater up to 5.1.3.0. It has been rated as critical. This issue affects some unknown processing in the library...

CVE-2025-4455

creationtimestamp| type| source ---|---|--- 2025-05-09 04:24:59+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15668 2025-05-09 06:01:28+00:00| published-proof-of-concept| Telegram/NCNMmYwK9k2QA4BOyfDK5dLyUrZyUSDmQzFFIbgaIpVGMxI 2025-05-09 06:10:43+00:00| seen|...

CVE-2025-4455

A vulnerability was found in Patch My PC Home Updater up to 5.1.3.0. It has been rated as critical. This issue affects some unknown processing in the library...

CVE-2025-4455 Patch My PC Home Updater System.IO uncontrolled search path

A vulnerability was found in Patch My PC Home Updater up to 5.1.3.0. It has been rated as critical. This issue affects some unknown processing in the library...

CVE-2025-4455 Patch My PC Home Updater System.IO uncontrolled search path

A vulnerability was found in Patch My PC Home Updater up to 5.1.3.0. It has been rated as critical. This issue affects some unknown processing in the library...

CVE-2025-4455

CVE-2025-4455 affects Patch My PC Home Updater (versions up to 5.1.3.0). The issue is an uncontrolled search path (DLL search path manipulation) impacting multiple system DLLs (advapi32.dll, BCrypt.dll, comctl32.dll, crypt32.dll, dwmapi.dll, gdi32.dll, gdiplus.dll, imm32.dll, iphlpapi.dll, kernel...

CVE-2021-4455

creationtimestamp| type| source ---|---|--- 2025-04-19 08:02:08+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12578 2025-04-19 08:39:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ln5qctb56i24 2025-04-19 09:02:56+00:00| seen|...

CVE-2021-4455

The CVE-2021-4455 entry concerns the WordPress plugin Smart Product Review. It is vulnerable in all versions up to and including 1.0.4 due to missing file type validation, allowing unauthenticated attackers to upload arbitrary files to the affected site and potentially achieve remote code executi...

WordPress Wordpress Plugin Smart Product Review plugin <= 1.0.4 - Unauthenticated Arbitrary File Upload vulnerability

Unauthenticated Arbitrary File Upload vulnerability discovered by Keyvan Hardani in WordPress Plugin Smart Product Review versions = 1.0.4...