58 matches found
Oracle Linux 9 : dnsmasq (ELSA-2026-19373)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-19373 advisory. - Prevent overflow in extractname function CVE-2026-2291 - Prevent DoS in DNSSEC validation CVE-2026-4890 - Prevent out-of-bounds read in DNSSEC...
CVE-2026-4892 vulnerabilities
Vulnerabilities for packages: dnsmasq...
dnsmasq-2.92rel2-1.1 on GA media (moderate)
dnsmasq-2.92rel2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10821-1 Rating: moderate Cross-References: CVE-2026-2291 CVE-2026-4890 CVE-2026-4891 CVE-2026-4892 CVE-2026-4893 CVE-2026-5172 CVSS scores: CVE-2026-2291 SUSE : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2026-2291 SUSE :...
RHEL 9 : dnsmasq (RHSA-2026:19373)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:19373 advisory. The dnsmasq packages contain Dnsmasq, a lightweight DNS Domain Name Server forwarder and DHCP Dynamic Host Configuration Protocol server...
Fedora 43 : dnsmasq (2026-6384a3cf14)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-6384a3cf14 advisory. Update to 2.92rel2 2.92 point release incorporating fixes for: - CVE-2026-2291 - CVE-2026-4890 - CVE-2026-4891 - CVE-2026-4892 - CVE-2026-4893 -...
RHEL 10 : dnsmasq (RHSA-2026:19158)
The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:19158 advisory. The dnsmasq packages contain Dnsmasq, a lightweight DNS Domain Name Server forwarder and DHCP Dynamic Host Configuration Protocol server...
BELL-CVE-2026-4892
Bulletin has no description...
dnsmasq_2.92_pocs
dnsmasq 2.92 — Proof of Concepts Self-contained reproduction...
CVE-2026-4892
creationtimestamp| type| source ---|---|--- 2026-05-11 18:51:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mllwxdg4m32k 2026-05-11 18:51:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mllwxdg4m32k 2026-05-12 09:24:59+00:00| seen|...
Linux Distros Unpatched Vulnerability : CVE-2026-4892
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via...
MINI-4892-5X86-C4HW
Bulletin has no description...
MINI-PW5C-4892-3HV3
Bulletin has no description...
CVE-2022-4892
A vulnerability was found in MyCMS. It has been classified as problematic. This affects the function buildview of the file lib/gener/view.php of the component Visitors Module. The manipulation of the argument original/converted leads to cross site scripting. It is possible to initiate the attack...
CVE-2025-4892
creationtimestamp| type| source ---|---|--- 2025-05-18 19:24:14+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lphruuw4fb32 2025-05-18 19:38:00+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16776 2025-05-18...
CVE-2025-4892
A vulnerability was found in code-projects Police Station Management System 1.0. It has been declared as critical. Affected by this vulnerability is the function criminal::remove of the file source.cpp of the component Delete Record. The manipulation of the argument No leads to stack-based buffer...
WordPress Activity Reactions For Buddypress Plugin <= 12.5.0 is vulnerable to Cross Site Scripting (XSS)
Software Activity Reactions For Buddypress Type Plugin Vulnerable versions = 12.5.0 Fixed in 12.5.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4892 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 0a3e1e0166ec Credit...
SUSE SLES12: libncurses5 / libncurses5-32bit / libncurses6 / libncurses6-32bit / etc (SUSE-SU-2023:4892-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4892-1 advisory. - CVE-2023-50495: Fixed a segmentation fault via ncwrapentry bsc1218014 Tenable has extracted the preceding description block directly from...
CVE-2023-4892
CVE-2023-4892 affects Teedy v1.11, with a cross-site scripting (stored XSS) vulnerability in the text editor that lets attacker-supplied HTML/JS be executed in the web application. Impact stated: ability to run malicious JavaScript within the webapp. Exploitation details are not provided in the c...
CVE-2022-4892
creationtimestamp| type| source ---|---|--- 2023-01-19 12:21:39+00:00| seen| https://t.me/cibsecurity/56708...
CVE-2022-4892
The CVE-2022-4892 entry concerns MyCMS. Affected component: Visitors Module, build_view function in lib/gener/view.php. Issue: manipulation of the original/converted argument leads to cross-site scripting, enabling remote initiation of an attack. Patch: d64fcba4882a50e21cdbec3eb4a080cb694d26ee. A...