MINI-4552-G437-RCM8

Bulletin has no description...

CVE-2026-4552

creationtimestamp| type| source ---|---|--- 2026-03-22 16:39:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhnybgee2n2n 2026-04-02 22:20:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mikahaf73t2i...

CVE-2026-4552

A vulnerability was determined in Tenda F453 1.0.0.3. This issue affects the function fromVirtualSer of the file /goform/VirtualSer of the component Parameters Handler. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack may be performed from remote...

EUVD-2026-4552

The Moderate Selected Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4. This is due to missing nonce verification on the mspadminpage function. This makes it possible for unauthenticated attackers to modify plugin settings via a forg...

MiracleLinux 3 : nfs-utils-1.0.9-42.1AXS3 (AXSA:2009-391:02)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2009-391:02 advisory. The nfs-utils package provides a daemon for the kernel NFS server and related tools, which provides a much higher level of performance than the traditional...

CVE-2023-4552

Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. An authenticated AppBuilder user with the ability to create or manage existing databases can leverage them to exploit the AppBuilder server - including access to its local file system. This...

CVE-2010-4552

Memory leak in IBM Lotus Notes Traveler before 8.5.1.1 allows remote attackers to cause a denial of service memory consumption and daemon outage by sending many embedded objects in e-mail messages for iPhone clients...

CVE-2025-4552

A vulnerability has been found in ContiNew Admin up to 3.6.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /dev-api/system/user/1/password. The manipulation leads to unverified password change. The attack can be launched remotely. The exploi...

CVE-2025-4552 ContiNew Admin password unverified password change

A vulnerability has been found in ContiNew Admin up to 3.6.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /dev-api/system/user/1/password. The manipulation leads to unverified password change. The attack can be launched remotely. The exploi...

CVE-2025-4552

ContiNew Admin up to 3.6.0 is affected by a vulnerability that allows unverified password changes via the /dev-api/system/user/1/password endpoint. Root cause: manipulation of an unauthenticated password change functionality. A remote attacker can exploit this, and the exploit has been disclosed ...

CVE-2024-4552

The Social Login Lite For WooCommerce plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.6.0. This is due to insufficient verification on the user being supplied during the social login through the plugin. This makes it possible for unauthenticated...

CVE-2024-4552

The Social Login Lite For WooCommerce plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.6.0. This is due to insufficient verification on the user being supplied during the social login through the plugin. This makes it possible for unauthenticated...

CVE-2024-4552

CVE-2024-4552 affects the Social Login Lite For WooCommerce plugin for WordPress. Versions up to and including 1.6.0 are vulnerable to an authentication bypass due to insufficient verification of the user during social login, allowing unauthenticated attackers to log in as any existing user (e.g....

CVE-2024-4552 Social Login Lite For WooCommerce <= 1.6.0 - Authentication Bypass

The Social Login Lite For WooCommerce plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.6.0. This is due to insufficient verification on the user being supplied during the social login through the plugin. This makes it possible for unauthenticated...

WordPress Social Login Lite For WooCommerce Plugin <= 1.6.0 is vulnerable to Broken Authentication

Software Social Login Lite For WooCommerce Type Plugin Vulnerable versions = 1.6.0 Fixed in N/A OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2024-4552 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 9ddbae9ad306...

CVE-2023-4552

creationtimestamp| type| source ---|---|--- 2024-01-29 22:21:53+00:00| seen| https://t.me/ctinow/175564 2024-02-21 18:16:23+00:00| seen| https://t.me/ctinow/189870...

CVE-2023-4552

Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. An authenticated AppBuilder user with the ability to create or manage existing databases can leverage them to exploit the AppBuilder server - including access to its local file system. This...

CVE-2023-4552 Java Database Connectivity (JDBC) URL Manipulation

Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. An authenticated AppBuilder user with the ability to create or manage existing databases can leverage them to exploit the AppBuilder server - including access to its local file system. This...

CVE-2023-4552

OpenText AppBuilder (Windows/Linux) versions 21.2–23.2 are affected by an improper input validation vulnerability. An authenticated AppBuilder user with the ability to create or manage databases can leverage this to access the server’s local file system. Affected software and versions are confirm...

Oracle Linux 5 : nfs-utils (ELSA-2009-1321)

The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2009-1321 advisory. 1.0.9-42 - mountd: Check host alias with netgroups bz 478952 - exportfs: fixed typo in man page bz 474848 - nfs.init: NFS server reboot results in 'Stale NFS fi...