39 matches found
CVE-2022-4793
The Blog Designer WordPress plugin before 2.4.1 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...
CVE-2025-4793
A vulnerability was found in PHPGurukul Online Course Registration 3.1. It has been classified as critical. Affected is an unknown function of the file /edit-student-profile.php. The manipulation of the argument cgpa leads to sql injection. It is possible to launch the attack remotely. The exploi...
CVE-2025-4793
creationtimestamp| type| source ---|---|--- 2025-05-16 19:07:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpcpzdn2nw2j 2025-05-16 19:34:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16738...
CVE-2025-4793
A vulnerability was found in PHPGurukul Online Course Registration 3.1. It has been classified as critical. Affected is an unknown function of the file /edit-student-profile.php. The manipulation of the argument cgpa leads to sql injection. It is possible to launch the attack remotely. The exploi...
CVE-2025-4793
CVE-2025-4793 affects PHPGurukul Online Course Registration 3.1. The issue is a SQL injection in the /edit-student-profile.php file, caused by unsanitized input in the cgpa parameter. It can be exploited remotely and has been publicly disclosed. Connected reports consistently describe an attacker...
CVE-2025-4793 PHPGurukul Online Course Registration edit-student-profile.php sql injection
A vulnerability was found in PHPGurukul Online Course Registration 3.1. It has been classified as critical. Affected is an unknown function of the file /edit-student-profile.php. The manipulation of the argument cgpa leads to sql injection. It is possible to launch the attack remotely. The exploi...
CVE-2025-4793 PHPGurukul Online Course Registration edit-student-profile.php sql injection
A vulnerability was found in PHPGurukul Online Course Registration 3.1. It has been classified as critical. Affected is an unknown function of the file /edit-student-profile.php. The manipulation of the argument cgpa leads to sql injection. It is possible to launch the attack remotely. The exploi...
CVE-2024-4793 Campcodes Online Laundry Management System manage_laundry.php sql injection
A vulnerability, which was classified as critical, was found in Campcodes Online Laundry Management System 1.0. Affected is an unknown function of the file /managelaundry.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has...
CVE-2018-4793
creationtimestamp| type| source ---|---|--- 2023-09-14 22:43:48+00:00| seen| https://t.me/cibsecurity/70542...
CVE-2022-4793 Blog Designer – Post and Widget < 2.4.1 - Contributor+ Stored XSS via Shortcode
The Blog Designer WordPress plugin before 2.4.1 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...
CVE-2022-4793
CVE-2022-4793 affects the WordPress plugin Blog Designer – Post and Widget
WordPress Blog Designer - Post and Widget Plugin < 2.4.1 is vulnerable to Cross Site Scripting (XSS)
Software Blog Designer - Post and Widget Type Plugin Vulnerable versions 2.4.1 Fixed in 2.4.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-4793 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID d4fed6181a18 Credits Istv...
Debian DSA-4793-1 : firefox-esr - security update
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure, phishing, cross-site scripting or a DNS rebinding attack. C Tenable Network Security, Inc. The descriptive text and package check...
Debian: Security Advisory (DSA-4793-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2019-4793
...
CVE-2017-4793
...
CVE-2017-4793
CVE-2017-4793 entry is rejected and not an active vulnerability.
CVE-2011-4793
...
CVE-2012-4793
...
CVE-2012-4793
CVE-2012-4793 is rejected and does not represent an active vulnerability entry.