20 matches found
CVE-2026-49238
creationtimestamp| type| source ---|---|--- 2026-05-28 15:00:14+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmwby5t6o32c 2026-05-28 15:48:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmweoupup52n 2026-06-01 15:07:07+00:00| seen|...
CVE-2025-49238
Cross-Site Request Forgery CSRF vulnerability in everestthemes Everest Backup everest-backup allows Cross Site Request Forgery.This issue affects Everest Backup: from n/a through = 2.3.3...
CVE-2025-49238 WordPress Everest Backup plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in everestthemes Everest Backup everest-backup allows Cross Site Request Forgery.This issue affects Everest Backup: from n/a through = 2.3.3...
CVE-2025-49238 WordPress Everest Backup plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in everestthemes Everest Backup everest-backup allows Cross Site Request Forgery.This issue affects Everest Backup: from n/a through = 2.3.3...
WordPress Everest Backup plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by domiee13 in WordPress Plugin Everest Backup versions = 2.3.3...
CVE-2022-49238
In the Linux kernel, the following vulnerability has been resolved: ath11k: free peer for station when disconnect from AP for QCA6390/WCN6855 Commit b4a0f54156ac "ath11k: move peer delete after vdev stop of station for QCA6390 and WCN6855" is to fix firmware crash by changing the WMI command...
CVE-2022-49238
In the Linux kernel, the following vulnerability has been resolved: ath11k: free peer for station when disconnect from AP for QCA6390/WCN6855 Commit b4a0f54156ac "ath11k: move peer delete after vdev stop of station for QCA6390 and WCN6855" is to fix firmware crash by changing the WMI command...
CVE-2022-49238 ath11k: free peer for station when disconnect from AP for QCA6390/WCN6855
In the Linux kernel, the following vulnerability has been resolved: ath11k: free peer for station when disconnect from AP for QCA6390/WCN6855 Commit b4a0f54156ac "ath11k: move peer delete after vdev stop of station for QCA6390 and WCN6855" is to fix firmware crash by changing the WMI command...
CVE-2022-49238
CVE-2022-49238 concerns the Linux kernel ath11k driver for QCA6390/WCN6855. The issue arises when disconnecting from an AP: a commit sequence intended to fix a firmware crash ended up skipping all peer deletion, leaving peer->sta set and then used, causing a use-after-free. The log shows a use...
CVE-2022-49238 ath11k: free peer for station when disconnect from AP for QCA6390/WCN6855
In the Linux kernel, the following vulnerability has been resolved: ath11k: free peer for station when disconnect from AP for QCA6390/WCN6855 Commit b4a0f54156ac "ath11k: move peer delete after vdev stop of station for QCA6390 and WCN6855" is to fix firmware crash by changing the WMI command...
CVE-2022-49238
In the Linux kernel, the following vulnerability has been resolved: ath11k: free peer for station when disconnect from AP for QCA6390/WCN6855 Commit b4a0f54156ac "ath11k: move peer delete after vdev stop of station for QCA6390 and WCN6855" is to fix firmware crash by changing the WMI command...
CVE-2024-49238
creationtimestamp| type| source ---|---|--- 2024-10-18 12:44:23+00:00| seen| https://t.me/cvedetector/8315...
CVE-2024-49238
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in M. Konieczny, DH9SB ADIF Log Search Widget allows Reflected XSS.This issue affects ADIF Log Search Widget: from n/a through 1.0f...
CVE-2024-49238
CVE-2024-49238 covers the WordPress ADIF Log Search Widget (plugin) ≤ 1.0f, with a Reflected XSS via improper input neutralization during web page generation. The connected documents confirm the issue but do not provide a publicly available fixed version; Patchstack notes Fixed in: N/A and recomm...
WordPress ADIF Log Search Widget Plugin <= 1.0f is vulnerable to Cross Site Scripting (XSS)
Software ADIF Log Search Widget Type Plugin Vulnerable versions = 1.0f Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49238 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 10e10eee4580 Credits Le Ngoc Anh Required privile...
CVE-2023-49238
creationtimestamp| type| source ---|---|--- 2024-01-09 03:26:14+00:00| seen| https://t.me/ctinow/164774 2024-01-25 20:21:44+00:00| seen| https://t.me/ctinow/173761 2024-02-16 15:31:53+00:00| seen| https://t.me/ctinow/186446...
CVE-2023-49238
In Gradle Enterprise before 2023.1, a remote attacker may be able to gain access to a new installation in certain installation scenarios because of a non-unique initial system user password. Although this password must be changed upon the first login, it is possible that an attacker logs in befor...
CVE-2023-49238
In Gradle Enterprise before 2023.1, a remote attacker may be able to gain access to a new installation in certain installation scenarios because of a non-unique initial system user password. Although this password must be changed upon the first login, it is possible that an attacker logs in befor...
CVE-2023-49238
In Gradle Enterprise before 2023.1, a remote attacker may be able to gain access to a new installation in certain installation scenarios because of a non-unique initial system user password. Although this password must be changed upon the first login, it is possible that an attacker logs in befor...
CVE-2023-49238
In Gradle Enterprise before 2023.1, a non-unique initial system user password can allow a remote attacker to access a new installation in certain scenarios, potentially before the legitimate administrator logs in. This is classified as a high-severity issue (CVSS v3.1: CRITICAL) with network acce...