MINI-R35P-4589-RQWM

Bulletin has no description...

MINI-4589-R9GV-246P

Bulletin has no description...

CVE-2026-4589

A vulnerability was identified in kalcaddle kodbox 1.64. The affected element is the function PathDriverUrl of the file /workspace/source-code/app/controller/explorer/editor.class.php of the component fileGet Endpoint. Such manipulation of the argument path leads to server-side request forgery. T...

CVE-2026-4589

A vulnerability was identified in kalcaddle kodbox 1.64. The affected element is the function PathDriverUrl of the file /workspace/source-code/app/controller/explorer/editor.class.php of the component fileGet Endpoint. Such manipulation of the argument path leads to server-side request forgery. T...

EUVD-2026-4589

Not used...

CVE-2022-4589

A vulnerability has been found in cyface Terms and Conditions Module up to 2.0.9 and classified as problematic. Affected by this vulnerability is the function returnTo of the file termsandconditions/views.py. The manipulation leads to open redirect. The attack can be launched remotely. Upgrading ...

CVE-2025-4589

creationtimestamp| type| source ---|---|--- 2025-05-15 06:57:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lp6wrhrrbc2t 2025-05-15 14:35:11+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16510...

CVE-2025-4589

The Bon Toolkit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bt-map' shortcode in all versions up to, and including, 1.3.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2025-4589

The Bon Toolkit WordPress plugin (versions up to 1.3.2) is vulnerable to Stored Cross-Site Scripting via the bt-map shortcode due to insufficient input sanitization and output escaping. Exploitation requires authenticated access (contributor level or higher) and can inject scripts that execute wh...

CVE-2025-4589 Bon Toolkit <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Bon Toolkit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bt-map' shortcode in all versions up to, and including, 1.3.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

WordPress Bon Toolkit plugin <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Chuck in WordPress Plugin Bon Toolkit versions = 1.3.2...

CGA-MFM8-4589-WP7J

Bulletin has no description...

CVE-2024-4589 DedeCMS mytag_edit.php cross-site request forgery

A vulnerability was found in DedeCMS 5.7. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /src/dede/mytagedit.php. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed ...

The vulnerability of the microprogrammed software of the wireless modems Hitron CODA-4582 and CODA-4589, related to insufficient entropy due to the default use of PSK, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the microprogrammed wireless modems Hitron CODA-4582 and CODA-4589 relates to insufficient entropy due to the use of default PSKs which are generated from 5-digit hexadecimal values combined using the “Hitron” substring. Exploiting this vulnerability could allow an attacker t...

Design/Logic Flaw

Hitron CODA-4582 and CODA-4589 devices have default PSKs that are generated from 5-digit hex values concatenated with a "Hitron" substring, resulting in insufficient entropy only about one million possibilities...

CVE-2024-25730

Hitron CODA-4582 and CODA-4589 devices have default PSKs that are generated from 5-digit hex values concatenated with a "Hitron" substring, resulting in insufficient entropy only about one million possibilities...

CVE-2024-25730

The CVE-2024-25730 issue affects Hitron CODA-4582 and CODA-4589 devices where default PSKs are derived from a 5-digit hex value concatenated with the string “Hitron,” producing very low entropy (roughly one million possibilities). This has been documented across multiple sources (NVD, Red Hat, CN...

CVE-2024-25730

Hitron CODA-4582 and CODA-4589 devices have default PSKs that are generated from 5-digit hex values concatenated with a "Hitron" substring, resulting in insufficient entropy only about one million possibilities...

PT-2024-2064 · Hitron · Coda-4589 +1

Name of the Vulnerable Software and Affected Versions: Hitron CODA-4582 and CODA-4589 devices affected versions not specified Description: The issue is related to insufficient entropy due to the use of default PSKs, which are generated from 5-digit hex values concatenated with a "Hitron" substrin...

Hitron CODA-4582 and CODA-4589 Security Vulnerabilities

The Hitron Technologies CODA-4582 and Hitron Technologies CODA-4589 are demodulator routers from Hitron Technologies, a Chinese company. A security vulnerability exists in the Hitron CODA-4582 and CODA-4589 that stems from the devices having default PSKs that are generated by concatenating a...