53 matches found
CVE-2024-4765 vulnerabilities
Vulnerabilities for packages: firefox-esr...
CVE-2009-4765
CNR Hikaye Portal 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/hikaye.mdb...
EUVD-2019-4765
Malware in sbrugna...
CVE-2024-4765
Web application manifests were stored by using an insecure MD5 hash which allowed for a hash collision to overwrite another application's manifest. This could have been exploited to run arbitrary code in another application's context. This issue only affects Firefox for Android. Other versions of...
CVE-2022-4765
The Portfolio for Elementor WordPress plugin before 2.3.1 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against hig...
CVE-2010-4765
Race condition in the Kernel::System::Main::FileWrite method in Open Ticket Request System OTRS before 2.4.8 allows remote authenticated users to corrupt the TicketCounter.log data in opportunistic circumstances by creating tickets...
CVE-2025-4765
A vulnerability was found in PHPGurukul Zoo Management System 2.1. It has been classified as critical. Affected is an unknown function of the file /admin/contactus.php. The manipulation of the argument mobnum leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2025-4765
creationtimestamp| type| source ---|---|--- 2025-05-16 09:34:52+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16668 2025-05-16 13:03:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpc3ny324y2r...
CVE-2025-4765 PHPGurukul Zoo Management System contactus.php sql injection
A vulnerability was found in PHPGurukul Zoo Management System 2.1. It has been classified as critical. Affected is an unknown function of the file /admin/contactus.php. The manipulation of the argument mobnum leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2025-4765 PHPGurukul Zoo Management System contactus.php sql injection
A vulnerability was found in PHPGurukul Zoo Management System 2.1. It has been classified as critical. Affected is an unknown function of the file /admin/contactus.php. The manipulation of the argument mobnum leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
CVE-2025-4765
CVE-2025-4765 affects PHPGurukul Zoo Management System 2.1, specifically the /admin/contactus.php file where the mobnum parameter is vulnerable to SQL injection. The vulnerability allows remote exploitation and the exploit has been publicly disclosed. Exploitation details are documented across mu...
CVE-2023-4765
creationtimestamp| type| source ---|---|--- 2025-02-11 02:16:53+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulplhoic2o...
CVE-2024-4765
Web application manifests were stored by using an insecure MD5 hash which allowed for a hash collision to overwrite another application's manifest. This could have been exploited to run arbitrary code in another application's context. This issue only affects Firefox for Android. Other versions of...
Moderate: Red Hat Security Advisory: opencryptoki security update
An update for opencryptoki is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
Ubuntu 16.04 ESM : The Sleuth Kit vulnerabilities (USN-4765-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4765-1 advisory. It was discovered that The Sleuth Kit did not properly handle certain entires in FAT file systems. An attacker could use this vulnerability to mislead an...
CVE-2018-4765
creationtimestamp| type| source ---|---|--- 2023-09-14 22:40:57+00:00| seen| Telegram/mGmZ0i-ua7jpgSfomHcn6a49kak1KFkQKS8t8yvlJ5V1Tkk...
CVE-2018-4765
Rejected reason: This candidate is unused by its CNA...
Important: Red Hat Security Advisory: cups security update
An update for cups is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
CVE-2022-4765 Portfolio for Elementor, Image Gallery & Post Grid | PowerFolio < 2.3.1 - Contributor+ Stored XSS via Shortcode
The Portfolio for Elementor WordPress plugin before 2.3.1 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against hig...
CVE-2022-4765
The CVE-2022-4765 issue affects the Portfolio for Elementor WordPress plugin prior to version 2.3.1. It arises from insufficient validation and escaping of certain shortcode attributes, enabling stored XSS where users with as low as Contributor can target higher-privilege users (e.g., admins). A ...