CVE-2026-7470

A flaw has been found in Tenda 4G300 US4G300V1.0MtV1.01.42CNTDC01. Affected is the function sub427C3C of the file /goform/SafeMacFilter. This manipulation of the argument page causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may...

CVE-2026-7470

creationtimestamp| type| source ---|---|--- 2026-04-30 04:19:12+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116491731051009332 2026-04-30 04:31:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkorrp2www2i 2026-04-30 04:41:17+00:00| seen|...

CVE-2020-7470

Sonoff TH 10 and 16 devices with firmware 6.6.0.21 allows XSS via the Friendly Name 1 field after a successful login with the Web Admin Password...

MAL-2025-7470 Malicious code in @crabas0npm/quaerat-nostrum-quis (npm)

The package @crabas0npm/quaerat-nostrum-quis was found to contain malicious code...

CVE-2025-7470 Campcodes Sales and Inventory System product_add.php unrestricted upload

A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been classified as critical. Affected is an unknown function of the file /pages/productadd.php. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the attack remotely. The...

CVE-2025-7470 Campcodes Sales and Inventory System product_add.php unrestricted upload

A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been classified as critical. Affected is an unknown function of the file /pages/productadd.php. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the attack remotely. The...

CVE-2024-7470

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. It has been rated as critical. This issue affects the function sslvpnconfigmod of the file /vpn/vpntemplatestyle.php of the component Web Interface. The manipulation of the argument template/stylenum leads to os...

Linux Distros Unpatched Vulnerability : CVE-2018-7470

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in ImageMagick 7.0.7-22 Q16. The IsWEBPImageLossless function in coders/webp.c allows attackers to cause a denial of service segmentatio...

CVE-2024-7470

creationtimestamp| type| source ---|---|--- 2024-08-05 07:12:54+00:00| seen| https://t.me/cvedetector/2426...

CVE-2024-7470 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface vpn_template_style.php sslvpn_config_mod os command injection

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. It has been rated as critical. This issue affects the function sslvpnconfigmod of the file /vpn/vpntemplatestyle.php of the component Web Interface. The manipulation of the argument template/stylenum leads to os...

K21914362: Linux kernel vulnerability CVE-2013-7470

Security Advisory Description cipsov4validate in include/net/cipsoipv4.h in the Linux kernel before 3.11.7, when CONFIGNETLABEL is disabled, allows attackers to cause a denial of service infinite loop and crash, as demonstrated by icmpsic, a different vulnerability than CVE-2013-0310. CVE-2013-74...

Oracle Linux 8 : pki-core:10.6 / and / pki-deps:10.6 (ELSA-2022-7470)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-7470 advisory. - Bug 2107334 - CVE-2022-2414 access to external entities when parsing XML can lead to XXE - CVE-2020-1695: Improper validation of response header in...

AlmaLinux 8 : pki-core:10.6 and pki-deps:10.6 (ALSA-2022:7470)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:7470 advisory. pki-core: access to external entities when parsing XML can lead to XXE CVE-2022-2414 Tenable has extracted the preceding description block directly from the...

CentOS 8 : pki-core:10.6 and pki-deps:10.6 (CESA-2022:7470)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2022:7470 advisory. - pki-core: access to external entities when parsing XML can lead to XXE CVE-2022-2414 Note that Nessus has not tested for this issue but has instead relied onl...

SUSE: Security Advisory (SUSE-SU-2017:1347-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1636)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-7470

CVE-2020-7470 affects Sonoff TH 10 and 16 devices running firmware 6.6.0.21, with a stored/reflected XSS in the Friendly Name 1 field that is exploitable after a successful login with the Web Admin Password. The available documents specify the affected hardware and the XSS condition but do not pr...

CVE-2013-7470

cipsov4validate in include/net/cipsoipv4.h in the Linux kernel before 3.11.7, when CONFIGNETLABEL is disabled, allows attackers to cause a denial of service infinite loop and crash, as demonstrated by icmpsic, a different vulnerability than CVE-2013-0310...

CVE-2013-7470

cipsov4validate in include/net/cipsoipv4.h in the Linux kernel before 3.11.7, when CONFIGNETLABEL is disabled, allows attackers to cause a denial of service infinite loop and crash, as demonstrated by icmpsic, a different vulnerability than CVE-2013-0310...

CVE-2013-7470

cipsov4validate in include/net/cipsoipv4.h in the Linux kernel before 3.11.7, when CONFIGNETLABEL is disabled, allows attackers to cause a denial of service infinite loop and crash, as demonstrated by icmpsic, a different vulnerability than CVE-2013-0310...