61 matches found
CVE-2026-4808
creationtimestamp| type| source ---|---|--- 2026-04-08 09:15:53+00:00| seen| Telegram/2us3LfI3-3LhgNH-mQsCI8ayQxKx-qgKTK1cQJ8QYqIxeY 2026-05-07 19:33:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mlbxgrrcyl2i...
CVE-2011-4808
SQL injection vulnerability in the HM Community comhmcommunity component before 1.01 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a fndhome action to index.php...
CVE-2025-4808
creationtimestamp| type| source ---|---|--- 2025-05-16 20:35:04+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16758...
CVE-2025-4808
A vulnerability was found in PHPGurukul Park Ticketing Management System 2.0 and classified as critical. This issue affects some unknown processing of the file /add-normal-ticket.php. The manipulation of the argument noadult/nochildren/aprice/cprice leads to sql injection. The attack may be...
CVE-2025-4808
A vulnerability was found in PHPGurukul Park Ticketing Management System 2.0 and classified as critical. This issue affects some unknown processing of the file /add-normal-ticket.php. The manipulation of the argument noadult/nochildren/aprice/cprice leads to sql injection. The attack may be...
CVE-2025-4808 PHPGurukul Park Ticketing Management System add-normal-ticket.php sql injection
A vulnerability was found in PHPGurukul Park Ticketing Management System 2.0 and classified as critical. This issue affects some unknown processing of the file /add-normal-ticket.php. The manipulation of the argument noadult/nochildren/aprice/cprice leads to sql injection. The attack may be...
CVE-2025-4808 PHPGurukul Park Ticketing Management System add-normal-ticket.php sql injection
A vulnerability was found in PHPGurukul Park Ticketing Management System 2.0 and classified as critical. This issue affects some unknown processing of the file /add-normal-ticket.php. The manipulation of the argument noadult/nochildren/aprice/cprice leads to sql injection. The attack may be...
CVE-2024-4808
A vulnerability, which was classified as critical, was found in Kashipara College Management System 1.0. Affected is an unknown function of the file deletefaculty.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2024-4808
CVE-2024-4808 affects Kashipara College Management System 1.0, specifically the delete_faculty.php script. The vulnerability stems from an injectable id parameter in the deletion function, enabling SQL injection. Descriptions consistently state remote exploitation is possible and the vulnerabilit...
Malicious code in wlwz-2312-4808 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6d451ba6fb2427818257d07af719793cfb9572e67d6e4d4a61d8f07ab65b5c2e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2023-4808
The WP Post Popup WordPress plugin through 3.7.3 does not sanitise and escape some of its inputs, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-4808 WP Post Popup <= 3.7.3 - Admin+ Stored XSS
The WP Post Popup WordPress plugin through 3.7.3 does not sanitise and escape some of its inputs, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2023-4808
Affected software: WP Post Popup WordPress plugin
WordPress WP Post Popup Plugin <= 3.7.3 is vulnerable to Cross Site Scripting (XSS)
Software WP Post Popup Type Plugin Vulnerable versions = 3.7.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-4808 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 3ee14d9df6d2 Credits Abhijith A Required privileg...
Ubuntu 16.04 ESM / 18.04 ESM : Tinyproxy vulnerability (USN-4808-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4808-1 advisory. It was discovered that Tinyproxy created its pid file with insecure permissions. An attacker could use the vulnerability to cause arbitrary processes ...
CVE-2018-4808
Rejected reason: This candidate is unused by its CNA...
CVE-2022-4808 Improper Privilege Management in usememos/memos
Improper Privilege Management in GitHub repository usememos/memos prior to 0.9.1...
CVE-2022-4808
CVE-2022-4808 affects the GitHub repository usememos/memos, specifically versions prior to 0.9.1. The connected sources uniformly describe an Improper Privilege Management vulnerability that can allow an attacker to manipulate user roles, with some entries citing the potential to assign a HOST ro...
CVE-2022-4808 Improper Privilege Management in usememos/memos
Improper Privilege Management in GitHub repository usememos/memos prior to 0.9.1...
Ubuntu: Security Advisory (USN-376-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...