EUVD-2026-4588

Not used...

MiracleLinux 7 : libwmf-0.2.8.4-41.el7 (AXSA:2015-512:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-512:01 advisory. A library for reading and converting Windows MetaFile vector graphics WMF. Security issues fixed with this release: CVE-2015-0848 Heap-based buffer...

CVE-2025-4588

The 360 Photo Spheres plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sphere' shortcode in all versions up to, and including, 1.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2025-4588

CVE-2025-4588 (360 Photo Spheres, WordPress) is a stored cross-site scripting vulnerability in the 360 Photo Spheres plugin, affecting all versions up to 1.3. The issue stems from insufficient input sanitization and output escaping on user-supplied attributes in the sphere shortcode, enabling aut...

WordPress 360 Photo Spheres plugin <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Chuck in WordPress Plugin 360 Photo Spheres versions = 1.3...

CVE-2022-4588

A vulnerability, which was classified as problematic, was found in Boston Sleep slice up to 84.1.x. Affected is an unknown function of the component Layout Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 84.2.0 is able to...

CVE-2012-4588

McAfee Enterprise Mobility Manager EMM Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote attackers to cause a denial of service excessive list...

Linux Distros Unpatched Vulnerability : CVE-2015-4588

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash or possibly execute arbitrar...

CVE-2024-4588 DedeCMS mytag_add.php cross-site request forgery

A vulnerability was found in DedeCMS 5.7. It has been classified as problematic. Affected is an unknown function of the file /src/dede/mytagadd.php. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...

openSUSE: Security Advisory for MozillaThunderbird (SUSE-SU-2023:4588-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-4588

creationtimestamp| type| source ---|---|--- 2023-09-06 16:17:47+00:00| seen| https://t.me/cibsecurity/70004...

CVE-2023-4588

Delinea Secret Server (versions v10.9.000002 and v11.4.000002) contains a file accessibility vulnerability that could let an authenticated user with administrative privileges create a backup file in the webroot, redirect the default backup directory to wwwroot, and download files (e.g., encryptio...

Debian: Security Advisory (DLA-253-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2013-4588

Multiple stack-based buffer overflows in net/netfilter/ipvs/ipvsctl.c in the Linux kernel before 2.6.33, when CONFIGIPVS is used, allow local users to gain privileges by leveraging the CAPNETADMIN capability for 1 a getsockopt system call, related to the doipvsgetctl function, or 2 a setsockopt...

CVE-2022-4588

creationtimestamp| type| source ---|---|--- 2022-12-17 16:30:43+00:00| seen| https://t.me/cibsecurity/54803...

CVE-2022-4588

CVE-2022-4588 affects Boston Sleep Slice up to version 84.1.x, with the vulnerability located in an unknown function of the Layout Handler that enables cross-site scripting. The issue can be exploited remotely. A fix is available in version 84.2.0, with patch identifier 6523bb17d889e2ab13d767f38a...

RHEL 9 : .NET 6.0 (RHSA-2022:4588)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:4588 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...

Oracle Linux 9 : .NET / 6.0 (ELSA-2022-4588)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-4588 advisory. 6.0.105-1.0.1 - Add missing Oracle RIDs - Build all packages on source-build even when in servicing 6.0.105-1 - Update to .NET SDK 6.0.105 and Runtime...

RHEL 8 : gcc-toolset-10-binutils (RHSA-2021:4588)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:4588 advisory. The binutils packages provide a collection of binary utilities for the manipulation of object code in various object file formats. It includes the ar...

Security Bulletin: IBM® Db2® 'Check for Updates' process is vulnerable to DLL hijacking (CVE-2019-4588)

Summary When a Db2 administrator executes the check for updates application from the start menu or from the command line, the Flexnet agent binary agent.exe may be vulnerable to DLL hijacking. Vulnerability Details CVEID: CVE-2019-4588 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2...