CVE-2026-4819

In Search Guard FLX versions from 1.0.0 up to 4.0.1, the audit logging feature might log user credentials from users logging into Kibana...

CVE-2026-4819 Search Guard audit logs can contain under certain conditions user credentials

In Search Guard FLX versions from 1.0.0 up to 4.0.1, the audit logging feature might log user credentials from users logging into Kibana...

MiracleLinux 4 : xorg-x11-server-1.7.7-29.2.0.1.AXS4 (AXSA:2012-01:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-01:01 advisory. The X.Org X11 X server Security issues fixed with this release: CVE-2010-4818 CVE-2010-4819 No information available at the time of writing, please...

MiracleLinux 3 : xorg-x11-server-1.1.1-48.76.5.0.1.AXS3 (AXSA:2011-320:02)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2011-320:02 advisory. X.Org X11 X server Security issues fixed with this release: CVE-2010-4818 CVE-2010-4819 No information available at the time of writing, please refer...

CVE-2023-4819

The Shared Files WordPress plugin before 1.7.6 does not return the right Content-Type header for the specified uploaded file. Therefore, an attacker can upload an allowed file extension injected with malicious scripts...

CVE-2024-4819

A vulnerability was found in Campcodes Online Laundry Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file adminclass.php. The manipulation of the argument type with the input 1 leads to improper authorization. It is possible to launch the atta...

CVE-2022-4819

A vulnerability was found in HotCRP. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. The attack may be launched remotely. The name of the patch is d4ffdb0ef806453c54ddca7fdda3e5c60356285c. It is recommended to...

CVE-2025-4819

creationtimestamp| type| source ---|---|--- 2025-05-17 07:08:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpdybsru472p 2025-05-17 17:01:21+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpezack5xtm2...

CVE-2025-4819

A vulnerability classified as problematic has been found in yproject RuoYi 4.8.0. Affected is an unknown function of the file /monitor/online/batchForceLogout of the component Offline Logout. The manipulation of the argument ids leads to improper authorization. It is possible to launch the attack...

CVE-2025-4819

A vulnerability classified as problematic has been found in yproject RuoYi 4.8.0. Affected is an unknown function of the file /monitor/online/batchForceLogout of the component Offline Logout. The manipulation of the argument ids leads to improper authorization. It is possible to launch the attack...

CVE-2025-4819 y_project RuoYi Offline Logout batchForceLogout improper authorization

A vulnerability classified as problematic has been found in yproject RuoYi 4.8.0. Affected is an unknown function of the file /monitor/online/batchForceLogout of the component Offline Logout. The manipulation of the argument ids leads to improper authorization. It is possible to launch the attack...

CVE-2025-4819 y_project RuoYi Offline Logout batchForceLogout improper authorization

A vulnerability classified as problematic has been found in yproject RuoYi 4.8.0. Affected is an unknown function of the file /monitor/online/batchForceLogout of the component Offline Logout. The manipulation of the argument ids leads to improper authorization. It is possible to launch the attack...

Linux Distros Unpatched Vulnerability : CVE-2015-4819

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier, and 5.6.25 and earlier, allows local users to affect confidentiality, integrity, and...

CVE-2024-4819 Campcodes Online Laundry Management System admin_class.php improper authorization

A vulnerability was found in Campcodes Online Laundry Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file adminclass.php. The manipulation of the argument type with the input 1 leads to improper authorization. It is possible to launch the atta...

RHEL 6 / 7 : rh-mariadb100-mariadb (RHSA-2016:1132)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:1132 advisory. MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. MariaD...

RHEL 6 / 7 : rh-mysql56-mysql (RHSA-2015:1630)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:1630 advisory. - mysql: unspecified vulnerability related to Server:GIS CPU July 2015 CVE-2015-2582 - mysql: unspecified vulnerability related to...

CentOS 7 : kernel (RHSA-2023:4819)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4819 advisory. - An issue in Zen 2 CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information...

Ubuntu 16.04 ESM : Leptonica vulnerabilities (USN-4819-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4819-1 advisory. It was discovered that Leptonica incorrectly handled path names. An attacker could possibly use this issue to obtain sensitive information. This issue on...

WordPress Shared Files Plugin < 1.7.6 is vulnerable to Cross Site Scripting (XSS)

Software Shared Files Type Plugin Vulnerable versions 1.7.6 Fixed in 1.7.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-4819 Patch priority Low CVSS severity Low 7.1 Developer Tammersoft PSID e7b614bc819b Credits Zeyad Alshahrani Required privileg...

CVE-2023-4819

The CVE-2023-4819 entry concerns the Shared Files WordPress plugin prior to version 1.7.6. Affected component: the upload handling (Content-Type header) for uploaded files. Root cause: the plugin does not return the correct Content-Type, enabling an attacker to upload an allowed file extension th...