CVE-2026-4821

creationtimestamp| type| source ---|---|--- 2026-04-22 01:19:03+00:00| seen| Telegram/zBPsvp7areyPvO2SEeKM1Qy-KxN79fyHXtde1OrDiJAWALw 2026-04-22 02:36:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mk2hmbqyle2c...

CVE-2026-4821

An improper neutralization of special elements vulnerability was identified in GitHub Enterprise Server that allowed an authenticated Management Console administrator to execute arbitrary OS commands via shell metacharacter injection in proxy configuration fields such as httpproxy. Exploitation o...

CVE-2026-4821

The CVE-2026-4821 entry describes an improper neutralization of special elements vulnerability in GitHub Enterprise Server . It allows an authenticated Management Console administrator to execute arbitrary OS commands via shell metacharacter injection in proxy configuration fields (e.g., http_pro...

CVE-2025-4821

creationtimestamp| type| source ---|---|--- 2025-06-18 16:30:06+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114705314960908620 2025-06-18 16:32:08+00:00| seen| Telegram/T9EREMrZJ40Ll1HhU5KoHVoW6Lc4lkfgV3T7v7c6jHizrY 2025-06-18 20:18:30+00:00| seen|...

CVE-2022-4821

A vulnerability classified as problematic was found in FlatPress. This vulnerability affects the function onupload of the file admin/panels/uploader/admin.uploader.php of the component XML File Handler/MD File Handler. The manipulation leads to cross site scripting. The attack can be initiated...

Linux Distros Unpatched Vulnerability : CVE-2012-4821

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and...

CVE-2024-4821

Technical details beyond this entry are not provided in the supplied documents; monitor for updates from vendors/advisories.

CVE-2024-4821 WP Shortcodes Plugin — Shortcodes Ultimate <= 7.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via su_lightbox Shortcode

The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sulightbox shortcode in all versions up to, and including, 7.1.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

Ubuntu 16.04 ESM : openpyxl vulnerability (USN-4821-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4821-1 advisory. It was discovered that openpyxl incorrectly handled certain documents. A remote attacker could possibly use this issue to cause a denial of service or other...

CVE-2023-4821

creationtimestamp| type| source ---|---|--- 2023-10-17 00:38:16+00:00| seen| https://t.me/cibsecurity/72367...

CVE-2023-4821 Drag and Drop Multiple File Upload < 1.1.1 - Unauthenticated Stored Cross-Site Scripting

The Drag and Drop Multiple File Upload for WooCommerce WordPress plugin before 1.1.1 does not filter all potentially dangerous file extensions. Therefore, an attacker can upload unsafe .shtml or .svg files containing malicious scripts...

CVE-2023-4821 Drag and Drop Multiple File Upload < 1.1.1 - Unauthenticated Stored Cross-Site Scripting

The Drag and Drop Multiple File Upload for WooCommerce WordPress plugin before 1.1.1 does not filter all potentially dangerous file extensions. Therefore, an attacker can upload unsafe .shtml or .svg files containing malicious scripts...

CVE-2023-4821

The CVE-2023-4821 entry describes an unauthenticated stored Cross-Site Scripting vulnerability in the WordPress plugin Drag and Drop Multiple File Upload for WooCommerce (before 1.1.1). The flaw arises because the plugin does not filter all potentially dangerous file extensions (e.g., .shtml, .sv...

WordPress Drag and Drop Multiple File Upload for WooCommerce Plugin < 1.1.1 is vulnerable to Cross Site Scripting (XSS)

Software Drag and Drop Multiple File Upload for WooCommerce Type Plugin Vulnerable versions 1.1.1 Fixed in 1.1.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-4821 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

CVE-2018-4821

creationtimestamp| type| source ---|---|--- 2023-09-14 22:43:51+00:00| seen| https://t.me/cibsecurity/70545...

CVE-2018-4821

Rejected reason: This candidate is unused by its CNA...

RHEL 7 : kernel-rt (RHSA-2023:4821)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4821 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

CVE-2023-1103

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was a duplicate of CVE-2022-4821. Notes: none...

SUSE CVE-2012-4821

Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics...

CVE-2022-4821

creationtimestamp| type| source ---|---|--- 2022-12-29 00:12:37+00:00| seen| https://t.me/cibsecurity/55512...