CVE-2025-46866 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79)

Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

CVE-2024-46866

creationtimestamp| type| source ---|---|--- 2024-09-27 15:53:29+00:00| seen| https://t.me/cvedetector/6523...

CVE-2024-46866

CVE-2024-46866 is a Linux kernel DRM-XE issue: bo_meminfo() can inspect bo state (tt/ttm) without holding the bo lock, allowing state changes that may cause NPD or UAF. The fix grabs the bo lock during bo_meminfo() and adds a ref for object_idr; v2 also introduces xe_bo_assert_held(). Concrete de...

CVE-2023-46866

In International Color Consortium DemoIccMAX 79ecb74, CIccCLUT::Interp3d in IccProfLib/IccTagLut.cpp in libSampleICC.a attempts to access array elements at out-of-bounds indexes...

CVE-2023-46866

CVE-2023-46866 affects International Color Consortium DemoIccMAX 79ecb74. The issue is in CIccCLUT::Interp3d (IccProfLib/IccTagLut.cpp, libSampleICC.a) where it accesses array elements at out-of-bounds indexes, enabling a heap/buffer issue as described in multiple sources. Impact is documented as...

CVE-2022-46866

CVE-2022-46866 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin Marty Thornley Import External Images (versions

CVE-2022-46866 WordPress Import External Images Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Marty Thornley Import External Images plugin = 1.4 versions...

CVE-2022-46866 WordPress Import External Images Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Marty Thornley Import External Images plugin = 1.4 versions...

WordPress Import External Images Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Import External Images Type Plugin Vulnerable versions = 1.4 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-46866 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 21b5efe2f984 Credits Cat Required...

Linux Kernel drivers/char/tpm/tpm.c信息泄露漏洞

BUGTRAQ ID: 46866 CVE ID: CVE-2011-1160 Linux Kernel是Linux操作系统的内核。 Linux Kernel在drivers/char/tpm/tpm.c的实现上存在信息泄露漏洞，本地攻击者可利用此漏洞从栈中获取敏感信息 Linux kernel 2.6.x OpenVZ Project OpenVZ 028stab091.1 厂商补丁： Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.kernel.org/...