CVE-2026-4467

A vulnerability was found in Comfast CF-AC100 2.6.0.8. This impacts an unknown function of the file /cgi-bin/mbox-config?method=SET=wirelessdevicedissoc. The manipulation results in command injection. The attack can be executed remotely. The exploit has been made public and could be used. The...

CVE-2026-4467

CVE-2026-4467 affects Comfast CF-AC100 firmware 2.6.0.8. An attacker can remotely trigger command injection via /cgi-bin/mbox-config?method=SET&section=wireless_device_dissoc, by exploiting a vulnerable function in that path. The exploit is publicly available, and exploitation has activity descri...

EUVD-2026-4467

Langflow Disk Cache Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Langflow. Authentication is required to exploit this vulnerability. The specific flaw exists within the disk...

MiracleLinux 9 : qemu-kvm-8.2.0-11.el9_4.4 (AXSA:2024-8508:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8508:05 advisory. qemu-kvm: QEMU: 'qemu-img info' leads to host file read/write CVE-2024-4467 Tenable has extracted the preceding description block directly from the...

SUSE SLES15 : Security update 5.0.6 for Multi-Linux Manager Salt Bundle (SUSE-SU-2025:4467-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4467-1 advisory. venv-salt-minion: - Security issues fixed: - CVE-2025-62349: Added minimumauthversion to enforce security bsc1254257 - CVE-2025-62348: Fixed...

Ubuntu: Security Advisory (USN-7744-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MINI-4467-2V33-3J44

Bulletin has no description...

CVE-2022-4467

The Search & Filter WordPress plugin before 1.2.16 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high...

CVE-2024-4467

creationtimestamp| type| source ---|---|--- 2025-05-21 01:45:15+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17098...

CVE-2025-4467

creationtimestamp| type| source ---|---|--- 2025-05-09 06:46:19+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3loptd6lf2cc2 2025-05-09 09:01:22+00:00| published-proof-of-concept| Telegram/ldmHneF67leIor4rXHC1IabsYosLdGsA62p54R3IzFTMQB4...

CVE-2025-4467

CVE-2025-4467 affects the SourceCodester Online Student Clearance System 1.0. The vulnerability lies in the file /admin/edit-admin.php where manipulating the parameters id, txtfullname, txtemail, and cmddesignation enables SQL injection. This can be exploited remotely, and public disclosures exis...

CVE-2025-4467 SourceCodester Online Student Clearance System edit-admin.php sql injection

A vulnerability was found in SourceCodester Online Student Clearance System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/edit-admin.php. The manipulation of the argument id/txtfullname/txtemail/cmddesignation leads to sql injection. The attack...

CVE-2025-4467 SourceCodester Online Student Clearance System edit-admin.php sql injection

A vulnerability was found in SourceCodester Online Student Clearance System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/edit-admin.php. The manipulation of the argument id/txtfullname/txtemail/cmddesignation leads to sql injection. The attack...

Azure Linux 3.0 Security Update: qemu (CVE-2024-4467)

The version of qemu installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4467 advisory. - A flaw was found in the QEMU disk image utility qemu-img 'info' command. A specially crafted image file...

CVE-2024-4467 affecting package qemu for versions less than 8.2.0-14

CVE-2024-4467 affecting package qemu for versions less than 8.2.0-14. A patched version of the package is available...

CBL Mariner 2.0 Security Update: qemu (CVE-2024-4467)

The version of qemu installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4467 advisory. - A flaw was found in the QEMU disk image utility qemu-img 'info' command. A specially crafted image file...

CVE-2024-4467 affecting package qemu for versions less than 6.2.0-24

CVE-2024-4467 affecting package qemu for versions less than 6.2.0-24. A patched version of the package is available...

Mageia: Security Advisory (MGASA-2024-0387)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 9 : qemu-kvm (ELSA-2024-9136)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-9136 advisory. - kvm-nbd-server-CVE-2024-7409-Avoid-use-after-free-when-c.patch RHEL-52617 - Resolves: RHEL-52617 CVE-2024-7409 qemu-kvm: Denial of Service via Improp...

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2024-2746)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...