Advanced Text Widget < 2.0.2 - Cross-Site Scripting

A cross-site scripting XSS vulnerability in advancedtext.php in Advanced Text Widget plugin before 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter. id: CVE-2011-4618 info: name: Advanced Text Widget 2.0.2 - Cross-Site Scripting author:...

RHSA-2024:4618

creationtimestamp| type| source ---|---|--- 2025-10-01 09:00:27+00:00| seen| Telegram/-h2tA7k5LBgvws531-LzQjYT1zC4XZfun-87EvnaObsJ2E...

CVE-2010-4618

Cross-site scripting XSS vulnerability in the Algis Info aiContactSafe component before 2.0.14 for Joomla! allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2024-4618 Exclusive Addons for Elementor <= 2.6.9.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Team Member Widget

The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Team Member widget in all versions up to, and including, 2.6.9.6 due to insufficient input sanitization and output escaping on user supplied 'url' attribute. This makes it possible for...

WordPress Exclusive Addons Elementor Plugin <= 2.6.9.6 is vulnerable to Cross Site Scripting (XSS)

Software Exclusive Addons Elementor Type Plugin Vulnerable versions = 2.6.9.6 Fixed in 2.6.9.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4618 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 3341f0baa50a Credits wesley...

CVE-2018-4618

Rejected reason: This candidate is unused by its CNA...

CVE-2022-4618

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

Ubuntu 20.04 LTS : tmux vulnerability (USN-4618-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-4618-1 advisory. Sergey Nizovtsev discovered that tmux incorrectly handled some inputs. An attacker could possibly use this issue to cause a crash or execute arbitrary code. Tenab...

CVE-2020-4618

CVE-2020-4618 affects IBM Data Risk Manager (iDNA) 2.0.6, where a privileged user could cause a denial of service due to improper input validation in the application. The impact is a DoS within iDNA as described in the entry. Remediation provided in the document recommends upgrading to v2.0.6.4 f...

CVE-2017-4618

CVE-2017-4618 is rejected/not used per description; this CVE entry does not represent an active vulnerability.

Apple Safari Multiple Vulnerabilities (Sep 2016) - Mac OS X

Apple Safari is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:safari"; ifdescription...

CVE-2016-4618

CVE-2016-4618 is a UXSS/XSS in Safari Reader affecting iOS prior to 10 and Safari prior to 10. The root cause is multiple input/validation flaws in Safari Reader that allow crafted pages to execute arbitrary script when loaded. Impact is remote code execution via a malicious webpage in the User’s...

CVE-2014-4618

EMC Documentum Content Server before 6.7 SP2 P16 and 7.x before 7.1 P07 allows remote authenticated users to gain privileges via a user-created system object...

CVE-2014-4618

EMC Documentum Content Server vulnerability CVE-2014-4618 allows a remote authenticated user to gain higher privileges via a user-created system object due to improper authorization checks. Affected products/versions include EMC Documentum Content Server 6.7 SP2 P16 and 7.x before 7.1 P07. The is...

CVE-2011-4618

Cross-site scripting XSS vulnerability in advancedtext.php in Advanced Text Widget plugin before 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter...

CVE-2011-4618

The CVE-2011-4618 entry concerns a Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Advanced Text Widget (file advancedtext.php) before version 2.0.2. The underlying issue is improper handling of the page parameter, allowing remote attackers to inject arbitrary web script or HTML ...

Cisco IOS NAT功能拒绝服务漏洞(CVE-2012-4618)

BUGTRAQ ID: 55693 CVE ID: CVE-2012-4618 Cisco IOS是多数思科系统路由器和网络交换机上使用的互联网络操作系统。NAT SIP ALG功能可通过IP报文的SIP负载内嵌入的IP地址转换，根据SIP部署VoIP解决方案之间的Cisco IOS NAT， Cisco IOS在启用了NAT SIP ALG功能处理SIP报文时存在安全漏洞，NAT SIP ALG是默认启用的并执行了IP报文的SIP负载转换。默认是对UDP端口5060报文转换NAT SIP。该端口使用全局配置命令"ip nat service sip udp port"配置。...

CVE-2012-4618

The CVE-2012-4618 issue affects Cisco IOS Software Network Address Translation NAT with the SIP ALG feature. The vulnerability arises when SIP payloads are translated for in-transit packets, causing a denial of service that can trigger a device reload. Affected IOS versions noted in the sources i...

CVE-2011-4618

creationtimestamp| type| source ---|---|--- 2011-11-21 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36324...

CVE-2010-4618

CVE-2010-4618 is a Cross-site scripting (XSS) vulnerability in the Algis Info aiContactSafe Joomla! component, affected up to version 2.0.13 (before 2.0.14). The issue allows remote attackers to inject arbitrary script or HTML via unspecified vectors. The available sources indicate the vulnerabil...