CVE-2025-4523

The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the admindonorprofileview function in versions 2.0.0 to 2.1.9. This makes it possible for authenticated attackers, with...

CVE-2025-4523

The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the admindonorprofileview function in versions 2.0.0 to 2.1.9. This makes it possible for authenticated attackers, with...

CVE-2025-4523

creationtimestamp| type| source ---|---|--- 2025-08-01 04:46:09+00:00| seen| Telegram/1m9xMUNrdlRfkWWTDix87rvYJHnzohCpLg64Kta7kgTJQs...

CVE-2025-4523 IDonate 2.0.0 - 2.1.9 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Disclosure via admin_donor_profile_view Function

The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the admindonorprofileview function in versions 2.0.0 to 2.1.9. This makes it possible for authenticated attackers, with...

CVE-2024-4523

A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web-Based School Management System 1.0. Affected by this issue is some unknown functionality of the file /view/teacherattendancehistory1.php. The manipulation of the argument year leads to cross site...

CVE-2024-4523

creationtimestamp| type| source ---|---|--- 2025-02-19 19:13:57+00:00| seen| Telegram/okdTl6x7QRZlWGOuoxND0r2O-kwZLV7MI3QeaRp9Rkzx07...

CVE-2024-4523 Campcodes Complete Web-Based School Management System teacher_attendance_history1.php cross site scripting

A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web-Based School Management System 1.0. Affected by this issue is some unknown functionality of the file /view/teacherattendancehistory1.php. The manipulation of the argument year leads to cross site...

CentOS 8 : curl (CESA-2023:4523)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:4523 advisory. - An authentication bypass vulnerability exists libcurl 8.0.0 in the connection reuse feature which can reuse previously established connections with...

SUSE: Security Advisory (SUSE-SU-2023:4523-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-4523 Real Time Automation 460 Series Cross-site Scripting

Real Time Automation 460 Series products with versions prior to v8.9.8 are vulnerable to cross-site scripting, which could allow an attacker to run any JavaScript reference from the URL string. If this were to occur, the gateway's HTTP interface would redirect to the main page, which is index.htm...

CVE-2023-4523

CVE-2023-4523 affects Real Time Automation 460 Series with versions before v8.9.8. The vulnerability is cross-site scripting via the URL string, enabling an attacker to execute JavaScript and causing the gateway’s HTTP interface to redirect to index.htm. According to NVD, CVSS v3.1 base score is ...

Real Time Automation 460 Series

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.4 ATTENTION : Exploitable remotely/low attack complexity/public exploits are available Vendor : Real Time Automation Equipment : 460MCBS Vulnerability : Cross-site Scripting 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an...

CVE-2018-4523

Rejected reason: This candidate is unused by its CNA...

Oracle Linux 8 : curl (ELSA-2023-4523)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-4523 advisory. - GSS delegation too eager connection re-use CVE-2023-27536 - fix host name wildcard checking CVE-2023-28321 Tenable has extracted the preceding...

AlmaLinux 8 : curl (ALSA-2023:4523)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:4523 advisory. - An authentication bypass vulnerability exists libcurl 8.0.0 in the connection reuse feature which can reuse previously established connections with...

RHEL 8 : curl (RHSA-2023:4523)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4523 advisory. The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTT...

CVE-2016-4523

creationtimestamp| type| source ---|---|--- 2023-06-14 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-12-04 14:41:23+00:00| seen| https://t.me/arpsyndicate/1229 2024-12-24 20:30:37+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/2971523 2025-02-12 21:07:53+00:00|...

SUSE CVE-2010-4523

Multiple stack-based buffer overflows in libopensc in OpenSC 0.11.13 and earlier allow physically proximate attackers to execute arbitrary code via a long serial-number field on a smart card, related to 1 card-acos5.c, 2 card-atrust-acos.c, and 3 card-starcos.c...

CVE-2022-4523

creationtimestamp| type| source ---|---|--- 2022-12-16 00:23:51+00:00| seen| https://t.me/cibsecurity/54652...

CVE-2022-4523

Vexim2 is affected by a cross-site scripting vulnerability arising from unknown processing that can be triggered remotely. The issue is documented across multiple sources with a patch identified by the hash 21c0a60d12e9d587f905cd084b2c70f9b1592065. Public details do not specify affected versions ...