Lucene search
K

74 matches found

OSV
OSV
added 2026/05/10 11:1 p.m.3 views

MINI-4957-WRR9-5FFJ

Bulletin has no description...

5.3CVSS5.7AI score0.00179EPSS
Exploits0
Circl
Circl
added 2025/10/09 1:29 p.m.2 views

CVE-2025-4957

creationtimestamp| type| source ---|---|--- 2025-10-09 13:29:39+00:00| seen| https://bsky.app/profile/undercode.bsky.social/post/3m2rb7iqq7r2o...

7.1CVSS5.8AI score0.00224EPSS
Exploits0References1
CVE
CVE
added 2025/09/26 8:31 a.m.10 views

CVE-2025-4957

The CVE-2025-4957 entry concerns the WordPress ProfileGrid plugin (versions up to and including 5.9.5.7). The issue is a Reflected Cross-Site Scripting (XSS) vulnerability caused by improper input neutralization during web page generation. Exploitation could allow injected scripts to run in a use...

7.1CVSS5.9AI score0.00224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:46 a.m.7 views

CVE-2022-4957

A vulnerability was found in librespeed speedtest up to 5.2.4. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file results/stats.php. The manipulation of the argument id leads to cross site scripting. The attack can be launched remotely...

6.1CVSS6.3AI score0.00556EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 12:35 a.m.7 views

CVE-2012-4957

Absolute path traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to read arbitrary files via a /FSF/CMD request with a full pathname in a PATH element of an SRS record...

7.8CVSS6.9AI score0.67093EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.19 views

CentOS 7 : java-1.7.1-ibm (RHSA-2022:4957)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:4957 advisory. - Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Utility. Supported versions that are affected ar...

5.3CVSS6.1AI score0.06468EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.23 views

Adobe Reader < 2015.006.30418 / 2017.011.30080 / 2018.011.20040 Multiple Vulnerabilities (APSB18-09) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 2015.006.30418, 2017.011.30080, or 2018.011.20040. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and...

10CVSS8.6AI score0.86518EPSS
Exploits5References50
Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.246 views

NFR Agent SRS Record Arbitrary Remote File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NFR Agent SRS Record Arbitrary Remote File Access', 'Description' = %q NFRAgent.exe, a component of Novell File Reporter NFR, allows remote...

10CVSS7AI score0.71194EPSS
Exploits22
Vulnrichment
Vulnrichment
added 2024/06/26 6:0 a.m.10 views

CVE-2024-4957 Frontend Checklist <= 2.3.2 - Admin+ Stored XSS

The Frontend Checklist WordPress plugin through 2.3.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.7AI score0.00329EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/06/26 6:0 a.m.30 views

CVE-2024-4957 Frontend Checklist <= 2.3.2 - Admin+ Stored XSS

The Frontend Checklist WordPress plugin through 2.3.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

0.00329EPSS
Exploits2References1
CVE
CVE
added 2024/06/26 6:0 a.m.58 views

CVE-2024-4957

CVE-2024-4957 affects the Frontend Checklist WordPress plugin (versions ≤ 2.3.2). The issue is a stored XSS due to incomplete sanitisation/escaping of certain plugin settings, enabling high-privilege users (e.g., Administrators) to inject script even when unfiltered_html is disallowed (such as on...

4.3CVSS4.4AI score0.00329EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2024/06/26 12:0 a.m.10 views

WordPress Frontend Checklist Plugin <= 2.3.2 is vulnerable to Cross Site Scripting (XSS)

Software Frontend Checklist Type Plugin Vulnerable versions = 2.3.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4957 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 6503560b6c7b Credits Felipe Caon Required...

4.3CVSS5.7AI score0.00329EPSS
Exploits2References3Affected Software1
OSV
OSV
added 2024/06/06 12:29 p.m.20 views

CGA-RCQM-4957-WHGV

Bulletin has no description...

6.5CVSS6.9AI score0.01165EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/05/06 12:0 a.m.24 views

Zebra ZTC Industrial ZT400 and ZTC Desktop GK420d Authentication Bypass Using an Alternate Path or Channel (CVE-2023-4957)

A vulnerability of authentication bypass has been found on a Zebra Technologies ZTC ZT410-203dpi ZPL printer. This vulnerability allows an attacker that is in the same network as the printer, to change the username and password for the Web Page by sending a specially crafted POST request to the...

5.4CVSS5.7AI score0.00269EPSS
Exploits0References3
Circl
Circl
added 2024/01/28 9:39 a.m.3 views

GHSA-4957-7VHP-7V59

creationtimestamp| type| source ---|---|--- 2024-01-28 09:39:40+00:00| seen| https://t.me/arpsyndicate/3259...

4.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/12/22 12:0 a.m.17 views

openSUSE 15 Security Update : libcryptopp (SUSE-SU-2023:4957-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2023:4957-1 advisory. - CVE-2023-50980: Fixed DoS via malformed DER public key file bsc1218219. Tenable has extracted the preceding description block directly from the SUSE securi...

7.5CVSS7.2AI score0.00829EPSS
Exploits1References4
Circl
Circl
added 2023/10/11 6:23 p.m.4 views

CVE-2023-4957

creationtimestamp| type| source ---|---|--- 2023-10-11 18:23:58+00:00| seen| https://t.me/cibsecurity/72106...

5.4CVSS4.7AI score0.00269EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/11 1:21 p.m.33 views

CVE-2023-4957 Authentication Bypass on Zebra ZTC

A vulnerability of authentication bypass has been found on a Zebra Technologies ZTC ZT410-203dpi ZPL printer. This vulnerability allows an attacker that is in the same network as the printer, to change the username and password for the Web Page by sending a specially crafted POST request to the...

5.4CVSS5.9AI score0.00269EPSS
Exploits0References1
CVE
CVE
added 2023/10/11 1:21 p.m.49 views

CVE-2023-4957

CVE-2023-4957 affects Zebra Technologies ZTC industrial printers (ZT410) and GK420d desktop models. A authentication-bypass flaw allows an attacker on the same network to alter web-page credentials by sending a crafted POST to setvarsResults.cgi when the printer’s protected mode is disabled. Repo...

5.4CVSS4.7AI score0.00269EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/09/04 12:0 a.m.25 views

RHEL 8 : firefox (RHSA-2023:4957)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:4957 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

8.8CVSS7.6AI score0.00693EPSS
Exploits0References26
Rows per page
Query Builder