CVE-2026-4841

creationtimestamp| type| source ---|---|--- 2026-03-26 04:16:41+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-4841 2026-03-26 06:18:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhwxhzcatf2o...

D-Link Multiple DCS IP Camera Devices Multiple Vulnerabilities (SAP10247)

Multiple D-Link DCS IP camera devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2005-4841

The Outlook Progress Ctl control allows remote attackers to cause a denial of service Internet Explorer crash by creating a COM object of the class associated with the control's CLSID, which is not intended for use within Internet Explorer...

CVE-2025-4841 D-Link DCS-932L gpio sub_404780 stack-based overflow

A vulnerability was found in D-Link DCS-932L 2.18.01 and classified as critical. Affected by this issue is the function sub404780 of the file /bin/gpio. The manipulation of the argument CameraName leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been...

CVE-2022-4841

Cross-site Scripting XSS - Stored in GitHub repository usememos/memos prior to 0.9.1...

Oracle Siebel CRM (October 2015 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the October 2015 CPU advisory. - Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM subcomponent: Services. Supported versions that are affected are IP20...

CVE-2024-4841

A Path Traversal vulnerability exists in the parisneo/lollms-webui, specifically within the 'addreferencetolocalmode' function due to the lack of input sanitization. This vulnerability affects versions v9.6 to the latest. By exploiting this vulnerability, an attacker can predict the folders,...

CVE-2023-4841

creationtimestamp| type| source ---|---|--- 2023-09-14 07:24:13+00:00| seen| https://t.me/cibsecurity/70428...

CVE-2023-4841

The Feeds for YouTube plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'youtube-feed' shortcode in versions up to, and including, 2.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers wit...

CVE-2023-4841

CVE-2023-4841 affects the Feeds for YouTube for WordPress plugin. Vulnerable in versions up to 2.1 due to insufficient input sanitization/output escaping in the youtube-feed shortcode, allowing authenticated users with contributor+ rights to inject XSS. Remediation: update to version 2.1.2 (patch...

CVE-2023-4841 Feeds for YouTube <= 2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The Feeds for YouTube plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'youtube-feed' shortcode in versions up to, and including, 2.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers wit...

WordPress Feeds for YouTube Plugin <= 2.1 is vulnerable to Cross Site Scripting (XSS)

Software Feeds for YouTube Type Plugin Vulnerable versions = 2.1 Fixed in 2.1.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-4841 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 9fd258b26a01 Credits Lana Codes Required...

SUSE CVE-2007-4841

Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and SeaMonkey before 1.1.5 allows remote attackers to execute arbitrary commands via a 1 mailto, 2 nntp, 3 news, or 4 snews URI with invalid "%" encoding, related to improper file type handling on Windows XP with Internet Explorer 7...

CVE-2022-4841

Cross-site Scripting XSS - Stored in GitHub repository usememos/memos prior to 0.9.1...

CVE-2022-4841

CVE-2022-4841 is a stored Cross-site Scripting (XSS) vulnerability in the open-source project usememos/memos, present in versions prior to 0.9.1. The public descriptions consistently state that user input stored by the application could be reflected in later displays, enabling XSS. The available ...

CVE-2022-4841 Cross-site Scripting (XSS) - Stored in usememos/memos

Cross-site Scripting XSS - Stored in GitHub repository usememos/memos prior to 0.9.1...

Debian: Security Advisory (DSA-4841-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4841-1 : slurm-llnl - security update

Multiple security issues were discovered in the Simple Linux Utility for Resource Management SLURM, a cluster resource management and job scheduling system, which could result in denial of service, information disclosure or privilege escalation. C Tenable Network Security, Inc. The descriptive te...

CVE-2020-4841

IBM Security Secret Server 10.6 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID:...

CVE-2020-4841

CVE-2020-4841 affects IBM Security Secret Server 10.6. The root cause is failure to properly enable HTTP Strict Transport Security, enabling an information disclosure vulnerability that could be exploited via man-in-the-middle techniques to obtain sensitive information. The issue is documented wi...