MINI-4964-C48V-RPMC

Bulletin has no description...

MINI-X77R-P329-4964

Bulletin has no description...

CVE-2026-4964

creationtimestamp| type| source ---|---|--- 2026-03-27 19:59:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mi2vse55qh2o...

CVE-2026-4964 letta-ai letta File URL message_helper.py _convert_message_create_to_message server-side request forgery

A security vulnerability has been detected in letta-ai letta 0.16.4. This vulnerability affects the function convertmessagecreatetomessage of the file letta/helpers/messagehelper.py of the component File URL Handler. Such manipulation of the argument ImageContent leads to server-side request...

MINI-78X8-4964-495C

Bulletin has no description...

EUVD-2019-4964

Malware in sbrugna...

CVE-2025-4964

The WP Online Users Stats plugin for WordPress is vulnerable to time-based SQL Injection via the ‘tablename’ parameter in all versions up to, and including, 1.0.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes i...

CVE-2025-4964 WP Online Users Stats <= 1.0.0 - Authenticated (Editor+) SQL Injection via table_name Parameter

The WP Online Users Stats plugin for WordPress is vulnerable to time-based SQL Injection via the ‘tablename’ parameter in all versions up to, and including, 1.0.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes i...

CVE-2025-4964 WP Online Users Stats <= 1.0.0 - Authenticated (Editor+) SQL Injection via table_name Parameter

The WP Online Users Stats plugin for WordPress is vulnerable to time-based SQL Injection via the ‘tablename’ parameter in all versions up to, and including, 1.0.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes i...

CVE-2013-4964

Puppet Enterprise before 3.0.1 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session...

Linux Distros Unpatched Vulnerability : CVE-2022-4964

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio-record is not set. CVE-2022-4964 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2016-4964

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mptsasfetchrequests function in hw/scsi/mptsas.c in QEMU aka Quick Emulator allows local guest OS administrators to cause a denial of service infinite loop,...

Adobe Reader < 2015.006.30418 / 2017.011.30080 / 2018.011.20040 Multiple Vulnerabilities (APSB18-09) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 2015.006.30418, 2017.011.30080, or 2018.011.20040. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and...

RHEL 7 : qemu-kvm-rhev (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - Qemu: ps2: information leakage via postload routine CVE-2017-16845 - QEMU aka Quick Emulator built with a...

CVE-2024-4964

UNSUPPORTED WHEN ASSIGNED A vulnerability has been found in D-Link DAR-7000-40 V31R02B1413C and classified as critical. This vulnerability affects unknown code of the file /firewall/urlblist.php. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated...

CVE-2022-4964

creationtimestamp| type| source ---|---|--- 2024-01-24 02:26:05+00:00| seen| https://t.me/ctinow/172482 2024-01-25 19:31:53+00:00| seen| https://t.me/ctinow/173731 2024-01-31 02:17:10+00:00| seen| https://t.me/ctinow/176423 2024-02-17 18:16:31+00:00| seen| https://t.me/ctinow/186998...

CVE-2022-4964

Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio-record is not set...

CVE-2022-4964

Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio-record is not set...

CVE-2022-4964

CVE-2022-4964 concerns Ubuntu’s pipewire-pulse in snap, which grants microphone access even when the audio-record snap interface is not configured. The vulnerability is evaluated with a Local attacker, Low attack complexity, Low privileges required, and no user interaction, potentially exposing c...

CVE-2022-4964

Ubuntu's pipewire-pulse in snap grants microphone access even when the snap interface for audio-record is not set...