20 matches found
CVE-2026-46475
creationtimestamp| type| source ---|---|--- 2026-05-14 14:17:23+00:00| published-proof-of-concept| https://github.com/FlowiseAI/Flowise/security/advisories/GHSA-78pr-c5x5-jggc 2026-06-08 16:57:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mns5nlzx5j2o...
EUVD-2025-46475
Malicious code in mahesa-semur24-sukiwir npm...
CVE-2022-46475
D-Link DIR 645A1 1.06B01Beta01 was discovered to contain a stack overflow via the service= variable in the genacgimain function...
CVE-2025-46475
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joe Dolson Able Player ableplayer allows DOM-Based XSS.This issue affects Able Player: from n/a through = 1.2.1...
CVE-2025-46475
creationtimestamp| type| source ---|---|--- 2025-04-24 20:06:39+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13330...
WordPress Able Player plugin <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by johska in WordPress Plugin Able Player versions = 1.2.1...
CVE-2025-46475
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joe Dolson Able Player ableplayer allows DOM-Based XSS.This issue affects Able Player: from n/a through = 1.2.1...
CVE-2025-46475 WordPress Able Player plugin <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joe Dolson Able Player ableplayer allows DOM-Based XSS.This issue affects Able Player: from n/a through = 1.2.1...
CVE-2025-46475 WordPress Able Player plugin <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joe Dolson Able Player ableplayer allows DOM-Based XSS.This issue affects Able Player: from n/a through = 1.2.1...
CVE-2025-46475
CVE-2025-46475 affects Able Player (WordPress plugin) versions <= 1.2.1. The issue is a DOM-based XSS caused by improper neutralization of input during web page generation. Patchstack and related sources indicate the vulnerability has been patched for Able Player
CVE-2024-46475
A reflected cross-site scripting XSS vulnerability on the homepage of Metronic Admin Dashboard Template v2.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload...
CVE-2024-46475
A reflected cross-site scripting XSS vulnerability on the homepage of Metronic Admin Dashboard Template v2.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload...
CVE-2023-46475
creationtimestamp| type| source ---|---|--- 2023-11-02 15:28:52+00:00| seen| https://t.me/cibsecurity/73428...
CVE-2023-46475
A Stored Cross-Site Scripting vulnerability was discovered in ZenTao 18.3 where a user can create a project, and in the name field of the project, they can inject malicious JavaScript code...
CVE-2023-46475
CVE-2023-46475 – ZenTao PMS 18.3 stored XSS. Affected software is ZenTao PMS version 18.3. The vulnerability occurs in the project creation flow, specifically the project name field, where unsanitized input can inject JavaScript. Impact is that malicious code could run in an affected user’s brows...
CVE-2022-46475
creationtimestamp| type| source ---|---|--- 2023-01-18 00:15:29+00:00| seen| https://t.me/cibsecurity/56626...
CVE-2022-46475
CVE-2022-46475 affects D-Link DIR-645A1 (DIR-645) firmware 1.06B01_Beta01, with a stack overflow in the genacgi_main function triggered via the service= parameter. The vulnerability arises from memory corruption in the affected CGI handling, enabling a remote attacker to potentially crash or take...
CVE-2022-46475
D-Link DIR 645A1 1.06B01Beta01 was discovered to contain a stack overflow via the service= variable in the genacgimain function...
CVE-2021-46475
creationtimestamp| type| source ---|---|--- 2022-01-25 07:18:20+00:00| seen| https://t.me/cibsecurity/36188...
CVE-2021-46475
The CVE-2021-46475 entry concerns Jsish v3.5.0, where a heap buffer overflow is triggered by jsi_ArraySliceCmd in src/jsiArray.c, leading to Denial of Service (DoS). Multiple connected documents corroborate the vulnerability description (heap overflow in Jsish 3.5.0 via jsi_ArraySliceCmd, DoS); h...