73 matches found
CVE-2026-4468
A vulnerability was determined in Comfast CF-AC100 2.6.0.8. Affected is an unknown function of the file /cgi-bin/mbox-config?method=SET§ion=updateinterfacepng. This manipulation causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclose...
Debian: Security Advisory (DLA-4468-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MiracleLinux 7 : ipa-4.6.5-11.4.0.1.el7.AXS7 (AXSA:2020-4468:01)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4468:01 advisory. ipa: Denial of service in IPA server due to wrong use of berscanf CVE-2019-14867 ipa: Batch API logging user passwords to /var/log/httpd/errorlog...
CVE-2018-4468
This issue was addressed by removing additional entitlements. This issue is fixed in macOS Mojave 10.14.1, Security Update 2018-002 High Sierra, Security Update 2018-005 Sierra. A malicious application may be able to access restricted files...
CVE-2022-4468
The WP Recipe Maker WordPress plugin before 8.6.1 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high...
CVE-2025-4468
A vulnerability was found in SourceCodester Online Student Clearance System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /edit-photo.php. The manipulation of the argument userImage leads to unrestricted upload. The attack may be initiated remotely. Th...
CVE-2025-4468
creationtimestamp| type| source ---|---|--- 2025-05-09 06:46:20+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3loptd6q5y7r2 2025-05-09 09:01:22+00:00| published-proof-of-concept| Telegram/ldmHneF67leIor4rXHC1IabsYosLdGsA62p54R3IzFTMQB4...
CVE-2025-4468 SourceCodester Online Student Clearance System edit-photo.php unrestricted upload
A vulnerability was found in SourceCodester Online Student Clearance System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /edit-photo.php. The manipulation of the argument userImage leads to unrestricted upload. The attack may be initiated remotely. Th...
CVE-2019-4468
creationtimestamp| type| source ---|---|--- 2024-03-07 09:07:08+00:00| seen| https://t.me/ctinow/202211...
CVE-2023-4468
creationtimestamp| type| source ---|---|--- 2023-12-29 11:16:13+00:00| seen| https://t.me/ctinow/160418 2023-12-29 11:26:35+00:00| seen| https://t.me/ctinow/160437 2023-12-30 01:37:29+00:00| seen| https://t.me/cibsecurity/73935...
CVE-2023-4468
Poly Trio 8500/8800/C60 devices are affected by CVE-2023-4468 in the Poly Lens Management Cloud Registration component, enabling missing authorization with physical access to the device. The vulnerability is described as exploitable on the physical device, with public disclosure. Connected docume...
SUSE: Security Advisory (SUSE-SU-2023:4468-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Rocky Linux 8 : firefox (RLSA-2023:4468)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:4468 advisory. - Offscreen Canvas did not properly track cross-origin tainting, which could have been used to access image data from another site in violation of...
RHEL 8 : firefox (RHSA-2023:4468)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:4468 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...
SUSE CVE-2015-4468
Multiple integer overflows in the searchchunk function in chmd.c in libmspack before 0.5 allow remote attackers to cause a denial of service buffer over-read and application crash via a crafted CHM file...
CVE-2022-4468
creationtimestamp| type| source ---|---|--- 2023-01-10 02:28:05+00:00| seen| https://t.me/cibsecurity/56193...
CVE-2022-4468
CVE-2022-4468 affects the WP Recipe Maker WordPress plugin: versions before 8.6.1 do not validate/escape certain shortcode attributes, enabling Stored XSS from users with as low as Contributor to target higher-privilege users. The vulnerability is triggered by outputting untrusted shortcode data ...
CVE-2022-4468 WP Recipe Maker < 8.6.1 - Contributor+ Stored XSS
The WP Recipe Maker WordPress plugin before 8.6.1 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high...
Ubuntu: Security Advisory (USN-4468-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-4468
This issue was addressed by removing additional entitlements. This issue is fixed in macOS Mojave 10.14.1, Security Update 2018-002 High Sierra, Security Update 2018-005 Sierra. A malicious application may be able to access restricted files...