AlmaLinux 10 : thunderbird (ALSA-2026:6342)

The remote AlmaLinux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:6342 advisory. firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-4701 firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.3...

AlmaLinux 9 : firefox (ALSA-2026:5930)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:5930 advisory. firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-4701 firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.34...

AlmaLinux 8 : firefox (ALSA-2026:5932)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:5932 advisory. firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-4701 firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.34...

CVE-2026-4714 vulnerabilities

Vulnerabilities for packages: firefox...

CVE-2026-4714 vulnerabilities

Vulnerabilities for packages: firefox...

CVE-2026-4714

creationtimestamp| type| source ---|---|--- 2026-03-25 01:00:27+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhtv7lkdj22m 2026-03-25 03:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/mozilla-products-multiple-vulnerabilities20260325 2026-03-25 04:01:25+00:00|...

firefox-esr-140.9.0-1.1 on GA media (moderate)

firefox-esr-140.9.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10413-1 Rating: moderate Cross-References: CVE-2025-59375 CVE-2026-4684 CVE-2026-4685 CVE-2026-4686 CVE-2026-4687 CVE-2026-4688 CVE-2026-4689 CVE-2026-4690 CVE-2026-4691 CVE-2026-4692 CVE-2026-4693 CVE-2026-4694 CVE-2026-4695...

Linux Distros Unpatched Vulnerability : CVE-2026-4714

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect boundary conditions in the Audio/Video component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird...

DEBIAN-CVE-2026-4714

Incorrect boundary conditions in the Audio/Video component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

CVE-2026-4714

Incorrect boundary conditions in the Audio/Video component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

CVE-2024-4714

A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web-Based School Management System 1.0. Affected by this issue is some unknown functionality of the file /model/updatesubject.php. The manipulation of the argument name leads to cross site scripting. The...

CVE-2022-4714

The WP Dark Mode WordPress plugin before 4.0.0 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...

CVE-2025-4714

creationtimestamp| type| source ---|---|--- 2025-05-19 14:38:28+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16845...

CVE-2025-4714

A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been classified as critical. Affected is an unknown function of the file /pages/reprint.php. The manipulation of the argument sid leads to sql injection. It is possible to launch the attack remotely. The exploit has bee...

CVE-2025-4714 Campcodes Sales and Inventory System reprint.php sql injection

A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been classified as critical. Affected is an unknown function of the file /pages/reprint.php. The manipulation of the argument sid leads to sql injection. It is possible to launch the attack remotely. The exploit has bee...

CVE-2025-4714 Campcodes Sales and Inventory System reprint.php sql injection

A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been classified as critical. Affected is an unknown function of the file /pages/reprint.php. The manipulation of the argument sid leads to sql injection. It is possible to launch the attack remotely. The exploit has bee...

CVE-2025-4714

CVE-2025-4714 affects Campcodes Sales and Inventory System 1.0. The vulnerability is an SQL injection in the file /pages/reprint.php caused by manipulating the sid parameter, with remote exploitation possible. Several sources confirm impact and disclosure status, noting the issue is critical. No ...

CVE-2024-4714

creationtimestamp| type| source ---|---|--- 2025-02-19 22:21:29+00:00| seen| Telegram/hegy9-Rk1VRFPMT5SJdX7dSJR1aDnPWoXDcufUZWMz5jemqg...

CVE-2024-4714 Campcodes Complete Web-Based School Management System update_subject.php cross site scripting

A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web-Based School Management System 1.0. Affected by this issue is some unknown functionality of the file /model/updatesubject.php. The manipulation of the argument name leads to cross site scripting. The...

CVE-2024-4714

The CVE-2024-4714 issue affects Campcodes Complete Web-Based School Management System 1.0, with a cross-site scripting flaw in the /model/update_subject.php page. The vulnerability arises from manipulation of the name parameter, allowingXSS that can be triggered remotely. Documents consistently i...