MINI-9449-W36C-6J9G

Bulletin has no description...

MINI-9449-XRRH-Q9HG

Bulletin has no description...

MINI-9449-8M4C-W9MR

Bulletin has no description...

CVE-2026-9449 code-projects Employee Management System changepassemp.php sql injection

A vulnerability was identified in code-projects Employee Management System 1.0. This impacts an unknown function of the file /changepassemp.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used...

MINI-CVX5-9449-3WHP

Bulletin has no description...

CVE-2025-9449

creationtimestamp| type| source ---|---|--- 2025-09-17 09:20:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyziz5j5hb2m 2025-09-22 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-903/...

CVE-2025-9449

CVE-2025-9449 is a Use-After-Free vulnerability in the PAR file parsing path of Dassault Systèmes SOLIDWORKS eDrawings on SOLIDWORKS Desktop 2025. The issue arises during PAR file reading and can allow arbitrary code execution if a specially crafted PAR file is opened. Public advisories indicate ...

Linux Distros Unpatched Vulnerability : CVE-2014-9449

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote attackers to cause a denial of service crash via a long...

CVE-2018-9449

creationtimestamp| type| source ---|---|--- 2024-12-03 00:35:47+00:00| seen| https://infosec.exchange/users/cve/statuses/113586087327367659 2024-12-03 03:07:35+00:00| seen| https://t.me/cvedetector/11844...

CVE-2024-9449

creationtimestamp| type| source ---|---|--- 2024-10-09 09:47:34+00:00| seen| https://t.me/cvedetector/7438...

CVE-2024-9449

CVE-2024-9449 affects the WordPress Auto iFrame plugin (versions ≤ 1.7). It is a Stored XSS via the tag parameter due to insufficient input sanitization/output escaping, exploitable by authenticated users with Author-level access or higher to inject scripts on pages. A fix is available in version...

RHEL 6 : exiv2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - exiv2: integer overflow in the LoaderExifJpeg class in preview.cpp CVE-2018-12265 - Buffer overflow in th...

Debian: Security Advisory (DLA-715-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2016-0413)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 8 : libtirpc (ELSA-2021-9449)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-9449 advisory. 1.1.4-4.0.1 - Backport fix for CVE-2018-14621 in libtirpc Orabug: 33017925 Tenable has extracted the preceding description block directly from the Oracle Linux...

CVE-2020-9449

An insecure random number generation vulnerability in BlaB! AX, BlaB! AX Pro, BlaB! WS client, and BlaB! WS Pro client version 19.11 allows an attacker with a guest or user session cookie to escalate privileges by retrieving the cookie salt value and creating a valid session cookie for an arbitra...

CVE-2020-9449

An insecure random number generation vulnerability in BlaB! AX, BlaB! AX Pro, BlaB! WS client, and BlaB! WS Pro client version 19.11 allows an attacker with a guest or user session cookie to escalate privileges by retrieving the cookie salt value and creating a valid session cookie for an arbitra...

CVE-2020-9449

CVE-2020-9449 affects BlaB! AX/AX Pro and BlaB! WS clients (version 19.11) due to insecure RNG. An attacker with a guest or user session cookie can retrieve the cookie salt value and craft a valid session cookie to escalate privileges to other users or admin. Root cause: weak/random generation in...

CVE-2015-9449

The microblog-poster plugin before 1.6.2 for WordPress has SQL Injection via the wp-admin/options-general.php?page=microblogposter.php accountid parameter...

CVE-2015-9449

The CVE concerns the WordPress plugin Microblog Poster (versions before 1.6.2). A SQL Injection vulnerability exists in the plugin’s admin page (wp-admin/options-general.php?page=microblogposter.php account_id parameter) due to insufficient input validation. Public sources describe the issue as a...