CVE-2026-4858

creationtimestamp| type| source ---|---|--- 2026-05-19 00:51:14+00:00| seen| https://www.acn.gov.it/portale/w/rilevate-vulnerabilita-in-mattermost 2026-05-21 12:00:55+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmeep2dusz2k 2026-05-21 13:09:09+00:00| seen|...

MiracleLinux 4 : tomcat6-6.0.24-36.AXS4 (AXSA:2012-515:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-515:02 advisory. Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Jav...

MiracleLinux 3 : tomcat5-5.5.23-0jpp.31.0.1.AXS3 (AXSA:2012-510:02)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-510:02 advisory. Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Jav...

EUVD-2015-4930

Malware in sbrugna...

MINI-MC6X-4858-333P

Bulletin has no description...

CVE-2023-4858

The Simple Table Manager WordPress plugin through 1.5.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2025-4858

A vulnerability was found in D-Link DAP-2695 120b36r137ALLen20210528. It has been declared as problematic. This vulnerability affects unknown code of the file /advarpspoofing.php of the component ARP Spoofing Prevention Page. The manipulation of the argument harpmac leads to cross site scripting...

CVE-2025-4858

creationtimestamp| type| source ---|---|--- 2025-05-18 04:32:07+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpg7xhjrfqg2 2025-05-18 05:08:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpgc2ckot52o 2025-05-19...

CVE-2025-4858

A vulnerability was found in D-Link DAP-2695 120b36r137ALLen20210528. It has been declared as problematic. This vulnerability affects unknown code of the file /advarpspoofing.php of the component ARP Spoofing Prevention Page. The manipulation of the argument harpmac leads to cross site scripting...

CVE-2025-4858

A vulnerability was found in D-Link DAP-2695 120b36r137ALLen20210528. It has been declared as problematic. This vulnerability affects unknown code of the file /advarpspoofing.php of the component ARP Spoofing Prevention Page. The manipulation of the argument harpmac leads to cross site scripting...

CVE-2025-4858

The CVE-2025-4858 entry concerns D-Link DAP-2695 (ARP Spoofing Prevention Page) where the param harp_mac in /adv_arpspoofing.php is vulnerable to cross-site scripting. Multiple sources confirm remote exploitability and exploitation disclosed publicly, with affected products being out of maintenan...

CVE-2025-4858 D-Link DAP-2695 ARP Spoofing Prevention Page adv_arpspoofing.php cross site scripting

A vulnerability was found in D-Link DAP-2695 120b36r137ALLen20210528. It has been declared as problematic. This vulnerability affects unknown code of the file /advarpspoofing.php of the component ARP Spoofing Prevention Page. The manipulation of the argument harpmac leads to cross site scripting...

Linux Distros Unpatched Vulnerability : CVE-2015-4858

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via vector...

WordPress Testimonial Carousel For Elementor Plugin <= 10.2.0 is vulnerable to Broken Access Control

Software Testimonial Carousel For Elementor Type Plugin Vulnerable versions = 10.2.0 Fixed in 10.2.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-4858 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID ab55da921c3b Credits Francesco...

RHEL 6 / 7 : rh-mariadb100-mariadb (RHSA-2016:1132)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:1132 advisory. MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. MariaD...

CVE-2012-4858

creationtimestamp| type| source ---|---|--- 2024-01-06 15:30:41+00:00| seen| https://t.me/arpsyndicate/2551...

CVE-2023-4858

creationtimestamp| type| source ---|---|--- 2023-11-07 00:25:57+00:00| seen| https://t.me/cibsecurity/73642...

CVE-2023-4858

The Simple Table Manager WordPress plugin through 1.5.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2023-4858

The Simple Table Manager WordPress plugin through 1.5.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2023-4858 WP Simple Table Manager Plugin <= 1.5.6 - Admin+ Stored Cross-Site Scripting

The Simple Table Manager WordPress plugin through 1.5.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...