MINI-4X68-HH4V-4869

Bulletin has no description...

MiracleLinux 8 : java-1.8.0-openjdk-1.8.0.362.b09-2.el8 (AXSA:2023-4869:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4869:03 advisory. OpenJDK: improper restrictions in CORBA deserialization Serialization, 8285021 CVE-2023-21830 OpenJDK: soundbank URL remote loading Sound, 8293742...

CVE-2009-4869

Cross-site scripting XSS vulnerability in index.php in Nasim Guest Book 1.2 allows remote attackers to inject arbitrary web script or HTML via the page parameter...

CVE-2022-4869

A vulnerability was found in Evolution Events Artaxerxes. It has been declared as problematic. This vulnerability affects unknown code of the file arta/common/middleware.py of the component POST Parameter Handler. The manipulation of the argument password leads to information disclosure. The atta...

CVE-2025-4869

A vulnerability classified as critical has been found in itsourcecode Restaurant Management System 1.0. This affects an unknown part of the file /admin/memberupdate.php. The manipulation of the argument menu leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2025-4869

A vulnerability classified as critical has been found in itsourcecode Restaurant Management System 1.0. This affects an unknown part of the file /admin/memberupdate.php. The manipulation of the argument menu leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2025-4869 itsourcecode Restaurant Management System member_update.php sql injection

A vulnerability classified as critical has been found in itsourcecode Restaurant Management System 1.0. This affects an unknown part of the file /admin/memberupdate.php. The manipulation of the argument menu leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2024-4869

The WP Cookie Consent for GDPR, CCPA & ePrivacy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Client-IP’ header in all versions up to, and including, 3.2.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers...

CVE-2024-4869 WP Cookie Consent ( for GDPR, CCPA & ePrivacy ) <= 3.2.0 - Unauthenticated Stored Cross-Site Scripting via Client-IP header

The WP Cookie Consent for GDPR, CCPA & ePrivacy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Client-IP’ header in all versions up to, and including, 3.2.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers...

WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy Consent Plugin <= 3.2.0 is vulnerable to Cross Site Scripting (XSS)

Software WP Cookie Notice for GDPR, CCPA & ePrivacy Consent Type Plugin Vulnerable versions = 3.2.0 Fixed in 3.3.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4869 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

CGA-QF78-4869-X5MP

Bulletin has no description...

Ubuntu 16.04 ESM / 18.04 ESM : aria2 vulnerability (USN-4869-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-4869-1 advisory. It was discovered that aria2 could accidentally leak authentication data. An attacker could possibly use this to gain access to sensitive information...

CVE-2023-4869

CVE-2023-4869 affects SourceCodester Contact Manager App 1.0. The root cause is a cross-site request forgery vulnerability in the update.php file, enabling CSRF exploitation remotely. Public disclosures and multiple sources (NVD, Red Hat advisory, CVE records, and third‑party databases) consisten...

CVE-2023-4869 SourceCodester Contact Manager App update.php cross-site request forgery

A vulnerability was found in SourceCodester Contact Manager App 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file update.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been...

CVE-2023-4869 SourceCodester Contact Manager App update.php cross-site request forgery

A vulnerability was found in SourceCodester Contact Manager App 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file update.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been...

CVE-2022-4869

creationtimestamp| type| source ---|---|--- 2023-01-05 12:23:45+00:00| seen| https://t.me/cibsecurity/55938...

CVE-2022-4869

CVE-2022-4869 affects Evolution Events Artaxerxes, specifically the POST Parameter Handler component in the file arta/common/middleware.py. The issue is described as the manipulation of the password argument that leads to information disclosure, with the attack noted as remote. The available conn...

Debian DSA-4869-1 : tiff - security update

Two vulnerabilities have been discovered in the libtiff library and the included tools, which may result in denial of service or the execution of arbitrary code if malformed image files are processed. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

Debian: Security Advisory (DSA-4869-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-4869

IBM MQ Appliance 9.2 CD and 9.2 LTS are affected by CVE-2020-4869, a denial-of-service via buffer overflow triggered by a crafted SNMP query, causing the appliance to reload. IBM remediation for 9.2 LTS is fixpack 9.2.0.1; for 9.2 CD, interim fix IT34178 (iFix) is available. Affected products and...