CGA-7FW8-4973-WJ82

Bulletin has no description...

WordPress Workreap plugin <= 3.3.1 - Authentication Bypass via 'workreap_verify_user_account' vulnerability

Authentication Bypass via 'workreapverifyuseraccount' vulnerability discovered by Foxyyy in WordPress Plugin Workreap theme's plugin versions = 3.3.1...

CVE-2025-4973

creationtimestamp| type| source ---|---|--- 2025-06-12 05:34:48+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18149 2025-06-12 06:02:14+00:00| seen| Telegram/Fr5oajOHm-RvpCSXOwQO2LCkeqnAkuTv8dOdLfwEqROeuk 2025-06-12 08:48:30+00:00| seen|...

CVE-2010-4973

Cross-site scripting XSS vulnerability in the search feature in Campsite 3.4.0 allows remote attackers to inject arbitrary web script or HTML via the fsearchkeywords parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2024-4973

creationtimestamp| type| source ---|---|--- 2025-02-18 21:11:32+00:00| seen| Telegram/YYNi9nW81NMp2tOzesmsDRTt2JIhZDpnT355e4iWbd6cJq9...

CVE-2022-4973

creationtimestamp| type| source ---|---|--- 2024-10-16 10:30:24+00:00| seen| https://t.me/cvedetector/8018...

CVE-2022-4973

WordPress Core, in versions up to 6.0.2, is vulnerable to Authenticated Stored Cross-Site Scripting that can be exploited by users with access to the WordPress post and page editor, typically consisting of Authors, Contributors, and Editors making it possible to inject arbitrary web scripts into...

VulnCheck KEV: CVE-2022-4973

WordPress Core, in versions up to 6.0.2, is vulnerable to Authenticated Stored Cross-Site Scripting that can be exploited by users with access to the WordPress post and page editor, typically consisting of Authors, Contributors, and Editors making it possible to inject arbitrary web scripts...

Adobe Reader < 2015.006.30418 / 2017.011.30080 / 2018.011.20040 Multiple Vulnerabilities (APSB18-09) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 2015.006.30418, 2017.011.30080, or 2018.011.20040. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and...

CGA-P8J5-4973-M6P7

Bulletin has no description...

CVE-2024-4973

CVE-2024-4973 affects code-projects Simple Chat System 1.0, with the vulnerable component being the /register.php handler. The root cause is improper handling of the parameters name, number, and address, enabling SQL injection. The vulnerability can be exploited remotely and public exploit visibi...

CVE-2024-4973 code-projects Simple Chat System register.php sql injection

A vulnerability classified as critical was found in code-projects Simple Chat System 1.0. This vulnerability affects unknown code of the file /register.php. The manipulation of the argument name/number/address leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2023-4973

creationtimestamp| type| source ---|---|--- 2024-04-24 21:09:33+00:00| seen| Telegram/fQCkwzbJbLvewLQiHGCsWuoLqUk9GJHitjci5ogOBDUTag...

Academy LMS 6.2 - Reflected XSS

Exploit Title: Academy LMS 6.2 - Reflected XSS Exploit Author: CraCkEr Date: 29/08/2023 Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/academy/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site CVE: CVE-2023-4973 CWE...

CVE-2023-4973

Academy LMS 6.2 (Windows) contains a Cross-Site Scripting vulnerability in the /academy/tutor/filter functionality (GET Parameter Handler). User-controlled inputs—searched_word, searched_tution_class_type[], searched_price_type[], and searched_duration[]—can be reflected back and trigger XSS. The...

Academy LMS 6.2 Cross Site Scripting

Exploit Title: Academy LMS 6.2 - Reflected XSS Exploit Author: CraCkEr Date: 29/08/2023 Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/academy/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site CVE: CVE-2023-4973 CWE...

SUSE CVE-2011-4973

Authentication bypass vulnerability in modnss 1.0.8 allows remote attackers to assume the identity of a valid user by using their certificate and entering 'password' as the password...

SUSE CVE-2016-4973

Binaries compiled against targets that use the libssp library in GCC for stack smashing protection SSP might allow local users to perform buffer overflow attacks by leveraging lack of the Object Size Checking feature...

org.cloudfoundry.identity:cloudfoundry-identity-api (>=3.10.0 <=3.13.0), org.cloudfoundry.identity:cloudfoundry-identity-app (>=3.10.0 <=3.13.0) +1 more potentially affected by CVE-2017-4973 via org.cloudfoundry.identity:cloudfoundry-identity-server (>=3.10.0 <=3.13.0)

org.cloudfoundry.identity:cloudfoundry-identity-server MAVEN version =3.10.0, =3.10.0, =3.10.0, =3.10.0, =3.13.0 Source cves: CVE-2017-4973 Source advisory: OSV:GHSA-PGJC-GC7G-P2C6...

org.cloudfoundry.identity:cloudfoundry-identity-api (>=3.7.0 <=3.9.1), org.cloudfoundry.identity:cloudfoundry-identity-app (>=3.7.0 <=3.9.1) +1 more potentially affected by CVE-2017-4973 via org.cloudfoundry.identity:cloudfoundry-identity-server (>=3.7.0 <=3.9.1)

org.cloudfoundry.identity:cloudfoundry-identity-server MAVEN version =3.7.0, =3.7.0, =3.7.0, =3.7.0, =3.9.1 Source cves: CVE-2017-4973 Source advisory: OSV:GHSA-PGJC-GC7G-P2C6...