CVE-2026-4731

creationtimestamp| type| source ---|---|--- 2026-03-24 06:40:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhrxptxwy62f...

CVE-2012-4731

FAQ manager for Request Tracker RTFM before 2.4.5 does not properly check user rights, which allows remote authenticated users to create arbitrary articles in arbitrary classes via unknown vectors...

CVE-2011-4731

The Server Administration Panel in Parallels Plesk Panel 10.2.0build1011110331.18 includes an RFC 1918 IP address within a web page, which allows remote attackers to obtain potentially sensitive information by reading this page, as demonstrated by admin/home/admin and certain other files...

CVE-2025-4731

creationtimestamp| type| source ---|---|--- 2025-05-16 00:34:17+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16588 2025-05-16 02:37:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpaypfmo3j2o...

CVE-2025-4731

A vulnerability classified as critical has been found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formPortFw of the component HTTP POST Request Handler. The manipulation of the argument servicetype/ipsubnet leads to buffer overflow. It is...

CVE-2025-4731 TOTOLINK A3002R/A3002RU HTTP POST Request formPortFw buffer overflow

A vulnerability classified as critical has been found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formPortFw of the component HTTP POST Request Handler. The manipulation of the argument servicetype/ipsubnet leads to buffer overflow. It is...

CVE-2025-4731

Summary: CVE-2025-4731 affects TOTOLINK A3002R and A3002RU running 3.0.0-B20230809.1615. The vulnerability lies in the HTTP POST Request Handler, specifically the /boafrm/formPortFw file, where manipulating the argument commonly labeled as either service_type or ip_subnet leads to a buffer overfl...

CVE-2024-4731 Campcodes Legal Case Management System role cross site scripting

A vulnerability classified as problematic was found in Campcodes Legal Case Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/role. The manipulation of the argument slug leads to cross site scripting. The attack can be launched remotely. The...

CVE-2023-4731

creationtimestamp| type| source ---|---|--- 2024-03-12 11:31:39+00:00| seen| https://t.me/ctinow/205544 2024-03-12 11:36:34+00:00| seen| https://t.me/ctinow/205551...

CVE-2023-4731

CVE-2023-4731 relates to the LadiApp plugin for WordPress. The Red Hat and WordPress Threat Intel entries confirm a CSRF vulnerability in versions up to 4.4 caused by a missing nonce check in init_endpoint(), wired through the init hook. This allows unauthenticated attackers to forge requests tha...

WordPress LadiApp Plugin <= 4.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software LadiApp Type Plugin Vulnerable versions = 4.4 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-4731 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 9e10faf3494b Credits GiongfNef Required privilege...

SUSE CVE-2015-4731

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; Java SE Embedded 7u75; and Java SE Embedded 8u33 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX...

CVE-2022-4731

CVE-2022-4731 affects myapnea up to version 29.0.x, with a cross-site scripting vulnerability in the Title Handler that can be triggered remotely. Multiple connected sources confirm the issue and recommend upgrading to version 29.1.0 as the fix; the patch is identified as 99934258530d761bd5d09809...

Mageia: Security Advisory (MGASA-2015-0277)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2015:1509-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-4731-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : JUnit 4 vulnerability (USN-4731-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-4731-1 advisory. It was discovered that JUnit 4 contains a local information disclosure vulnerability. An attacker could possibly use this issue to obtain...

CVE-2020-4731

CVE-2020-4731 affects IBM Aspera Shares/Web Application 1.9.14 Patch Level 1 and earlier, with a cross-site scripting (XSS) vulnerability that could embed arbitrary JavaScript in the Web UI and potentially disclose credentials in a trusted session. Root cause: XSS in the web UI as described in IB...

CVE-2019-4731

creationtimestamp| type| source ---|---|--- 2020-07-28 16:55:06+00:00| seen| https://t.me/cibsecurity/13694...

Security Bulletin: IBM MQ Appliance is affected by inclusion of sensitive data within trace (CVE-2019-4731)

Summary IBM MQ Appliance has addressed the following inclusion of sensitive data within trace vulnerability. Vulnerability Details CVEID: CVE-2019-4731 DESCRIPTION: IBM MQ Appliance could allow a local attacker to obtain highly sensitive information by inclusion of sensitive data within trace. CV...