CGA-C92P-7H85-4928

Bulletin has no description...

CVE-2022-4928

A vulnerability was found in icplayer up to 0.819. It has been declared as problematic. Affected by this vulnerability is the function AddonTextSelectioncreate of the file addons/TextSelection/src/presenter.js. The manipulation leads to cross site scripting. The attack can be launched remotely...

CVE-2011-4928

Cross-site scripting XSS vulnerability in the textile formatter in Redmine before 1.0.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2025-4928

A vulnerability was found in projectworlds Online Lawyer Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /savelawyereditprofile.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2025-4928

CVE-2025-4928 concerns the Projectworlds Online Lawyer Management System v1.0. Multiple connected sources confirm a SQL injection in the unknown-code path /save_lawyer_edit_profile.php that can be exploited remotely and with public disclosure. The evidence consistently states the issue is critica...

CVE-2025-4928 projectworlds Online Lawyer Management System save_lawyer_edit_profile.php sql injection

A vulnerability was found in projectworlds Online Lawyer Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /savelawyereditprofile.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2025-4928 projectworlds Online Lawyer Management System save_lawyer_edit_profile.php sql injection

A vulnerability was found in projectworlds Online Lawyer Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /savelawyereditprofile.php. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been...

Adobe InDesign 13.0 < 13.1.0 Multiple Vulnerabilities (APSB18-11) (macOS)

The version of Adobe InDesign installed on the remote macOS host is prior to 13.1.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB18-11 advisory. - Adobe InDesign versions 13.0 and below have an exploitable Memory corruption vulnerability. Successful exploitatio...

Oracle Linux 9 : kernel (ELSA-2024-4928)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-4928 advisory. - mlxbfgige: call requestirq after NAPI initialized Kamal Heib RHEL-43012 RHEL-37179 CVE-2024-35907 - mlxbfgige: stop PHY during open error paths Kamal...

Rocky Linux 9 : kernel (RLSA-2024:4928)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:4928 advisory. kernel: block: null pointer dereference in ioctl.c when length and logical block size are misaligned CVE-2023-52458 kernel: ext4: avoid allocating block...

RHEL 9 : kernel (RHSA-2024:4928)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4928 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: block: null pointer dereferenc...

CVE-2024-4928 SourceCodester Simple Online Bidding System sql injection

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /simple-online-bidding-system/admin/ajax.php?action=deletecategory. The manipulation of the argument id leads to sql...

openSUSE: Security Advisory for MozillaFirefox (SUSE-SU-2023:4928-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : MozillaFirefox (SUSE-SU-2023:4928-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4928-1 advisory. - On some systemsdepending on the graphics settings and driversit was possible to force an...

SUSE: Security Advisory (SUSE-SU-2023:4928-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-4928

SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1...

CVE-2023-4928 SQL Injection in instantsoft/icms2

SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1...

CVE-2023-4928

The CVE-2023-4928 entry describes an SQL injection in instantsoft/icms2 before version 2.16.1. The vulnerability affects the content management system’s query handling, with a CVSS v3.1 base score of 7.2 (HIGH); attack vector NETWORK, complexity LOW, privileges required HIGH, user interaction NON...

CVE-2023-4928 SQL Injection in instantsoft/icms2

SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1...

CVE-2023-4928 SQL Injection in instantsoft/icms2

SQL Injection in GitHub repository instantsoft/icms2 prior to 2.16.1...