CVE-2025-20769

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4804...

CVE-2025-20769

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4804...

CVE-2011-4804

Directory traversal vulnerability in the obSuggest comobsuggest component before 1.8 for Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the controller parameter to index.php...

CVE-2025-4804

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WatchGuard Fireware OS allows Stored XSS via the spamBlocker module. This vulnerability requires an authenticated administrator session to a locally managed Firebox. This issue affects...

CVE-2025-4804

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WatchGuard Fireware OS allows Stored XSS via the spamBlocker module. This vulnerability requires an authenticated administrator session to a locally managed Firebox. This issue affects...

CVE-2025-4804

creationtimestamp| type| source ---|---|--- 2025-05-16 20:35:03+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16756...

CVE-2025-4804 WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in Hotpot Configuration

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in WatchGuard Fireware OS allows Stored XSS via the spamBlocker module. This vulnerability requires an authenticated administrator session to a locally managed Firebox. This issue affects...

CVE-2025-4804

CVE-2025-4804 affects WatchGuard Fireware OS on Firebox devices, with a Stored XSS via the spamBlocker module. Affected versions are 12.0 through 12.11.1; exploitation requires an authenticated administrator session on a locally managed Firebox. Root cause is improper neutralization of input duri...

Linux Distros Unpatched Vulnerability : CVE-2016-4804

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The readboot function in boot.c in dosfstools before 4.0 allows attackers to cause a denial of service crash via a crafted filesystem, which triggers a heap-bas...

RHEL 5 : dosfstools (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dosfstools: Heap-buffer-overflows in readfat and getfat functions CVE-2016-4804 - The setfat function in...

RHEL 6 : dosfstools (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - dosfstools: Heap-buffer-overflows in readfat and getfat functions CVE-2016-4804 - The setfat function in...

CVE-2024-4804

A vulnerability was found in Kashipara College Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file edituser.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2024-4804

The CVE-2024-4804 entry concerns Kashipara College Management System 1.0. Affected is unknown functionality in edit_user.php where manipulating the id argument causes a SQL injection. The attack can be launched remotely and an exploit has been disclosed publicly. Public documents do not specify a...

Malicious code in wlwz-2312-4804 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7add5c93752f98ac650ba6e76035908ef22b7bc4b51c7503dd39a45fede694f4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-606 Malicious code in wlwz-2312-4804 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7add5c93752f98ac650ba6e76035908ef22b7bc4b51c7503dd39a45fede694f4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-5770

The CVE-2023-5770 issue affects Proofpoint Enterprise Protection’s email delivery agent. The vulnerability arises from inappropriate encoding when rewriting emails before delivery, allowing an unauthenticated attacker to inject improperly encoded HTML into the email body via the subject. Affected...

SUSE SLES15 Security Update : kernel (Live Patch 42 for SLE 15 SP2) (SUSE-SU-2023:4804-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2023:4804-1 advisory. - A use-after-free vulnerability in the Linux Kernel traffic control index filter tcindex can be exploited to achieve local privilege escalation. The...

CVE-2023-4804

creationtimestamp| type| source ---|---|--- 2023-11-21 14:32:15+00:00| seen| https://t.me/truesecator/5109...

CVE-2023-4804

An unauthorized user could access debug features in Quantum HD Unity products that were accidentally exposed...

CVE-2023-4804

An unauthorized user could access debug features in Quantum HD Unity products that were accidentally exposed...