CVE-2026-4502

creationtimestamp| type| source ---|---|--- 2026-04-30 22:35:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkqofdveiw2q...

CVE-2026-4502

CVE-2026-4502 affects Langflow OSS Desktop and Langflow v2 API: authenticated attackers can exploit path traversal via /../ in multipart uploads to write arbitrary files and potentially achieve remote code execution. In IBM bulletins, Langflow OSS versions 1.2.0–1.8.4 are vulnerable through the f...

Debian: Security Advisory (DLA-4502-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DLA-4502-1 ansible - security update

Bulletin has no description...

Debian dla-4502 : ansible - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4502 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4502-1 [email protected] https://www.debian.org/lts/security/ L...

EUVD-2026-4502

EUVD-2026-4502...

MiracleLinux 7 : icu-50.2-4.el7 (AXSA:2020-4502:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-4502:01 advisory. ICU: Integer overflow in UnicodeString::doAppend CVE-2020-10531 Tenable has extracted the preceding description block directly from the MiracleLinux security...

CVE-2009-4502

The NETTCPLISTEN function in net.c in Zabbix Agent before 1.6.7, when running on FreeBSD or Solaris, allows remote attackers to bypass the EnableRemoteCommands setting and execute arbitrary commands via shell metacharacters in the argument to net.tcp.listen. NOTE: this attack is limited to attack...

CVE-2011-4502

The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with firmware 1.83, Canyon-Tech CN-WF514 with firmware 2.08, Sitecom WL-153 with firmware before 1.39, and Sweex LB000021 with firmware 3.15 allows remote attackers...

CVE-2010-4502

Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite Plus 2010 allows local users to cause a denial of service pool corruption and execute arbitrary code via crafted arguments to the 0x88000080 IOCTL, which triggers a buffer overflow...

CVE-2025-4502

creationtimestamp| type| source ---|---|--- 2025-05-10 14:27:25+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15896 2025-05-10 14:28:31+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lot5bni5jbr2 2025-05-10...

CVE-2025-4502 Campcodes Sales and Inventory System creditor_add.php sql injection

A vulnerability has been found in Campcodes Sales and Inventory System 1.0 and classified as critical. This vulnerability affects unknown code of the file /pages/creditoradd.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the...

CVE-2023-4502

creationtimestamp| type| source ---|---|--- 2025-05-02 17:16:33+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14532...

CVE-2022-4502

Cross-site Scripting XSS - Reflected in GitHub repository openemr/openemr prior to 7.0.0.2...

Rocky Linux 9 : skopeo (RLSA-2024:4502)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:4502 advisory. golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 Tenable has extracted the preceding description block directly fro...

AlmaLinux 9 : skopeo (ALSA-2024:4502)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:4502 advisory. golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 Tenable has extracted the preceding description block directly from...

Oracle Linux 9 : skopeo (ELSA-2024-4502)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-4502 advisory. 2:1.14.3-3 - golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads CVE-2024-1394 Tenable has extracted the preceding description bloc...

Malicious code in wlwz-2312-4502 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a1a76e0eae88546d615f46226e5d8e41877b30e4e3bccc6dd9ba9b975d9f1ff9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-4502

CVE-2023-4502 concerns the Translate WordPress with GTranslate plugin (before 3.0.4). Multiple connected sources confirm a Stored XSS vulnerability caused by insufficient sanitisation/escaping of plugin settings, which can permit high-privilege users (e.g., admins) to inject script payloads even ...

CVE-2023-4502 Translate WordPress with GTranslate < 3.0.4 - Admin+ Stored XSS

The Translate WordPress with GTranslate WordPress plugin before 3.0.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisi...