UBUNTU-CVE-2026-34839

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.4, the Glances web server exposes a REST API /api/4/ that is accessible without authentication and allows cross-origin requests from any origin due to a permissive CORS policy Access-Control-Allow-Origin: . This...

CVE-2026-34839

creationtimestamp| type| source ---|---|--- 2026-04-20 23:51:47+00:00| seen| https://bsky.app/profile/opsmatters.com/post/3mjxnxoddzs2s 2026-04-21 01:18:26+00:00| published-proof-of-concept| Telegram/Ww620GgPpyXrrMPbpNwPksYQUctI-RNYBJrVLxtJIutZ-I...

MAL-2025-34839 Malicious code in test-mlw2-addio-drupe (npm)

The package test-mlw2-addio-drupe was found to contain malicious code...

CVE-2023-34839

A Cross Site Request Forgery CSRF vulnerability in Issabel issabel-pbx v.4.0.0-6 allows a remote attacker to gain privileges via a Custom CSRF exploit to create new user function in the application...

CVE-2021-34839

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.0.0.49893. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2023-34839

creationtimestamp| type| source ---|---|--- 2023-07-06 12:19:09+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8619 2023-07-07 10:44:24+00:00| published-proof-of-concept| https://t.me/dilagrafie/3117...

CVE-2023-34839

CVE-2023-34839 affects Issabel issabel-pbx v4.0.0-6. The vulnerability is a Cross-Site Request Forgery (CSRF) that allows an authenticated attacker to gain privileges by exploiting a crafted CSRF to create a new user with administrator rights in the application. Evidence across multiple sources (...

CVE-2022-34839

creationtimestamp| type| source ---|---|--- 2022-07-22 20:23:43+00:00| seen| https://t.me/cibsecurity/46835...

CVE-2022-34839 WordPress WP OAuth2 Server plugin <= 1.0.1 - Authentication Bypass vulnerability

Authentication Bypass vulnerability in CodexShaper's WP OAuth2 Server plugin = 1.0.1 at WordPress...

CVE-2022-34839

CVE-2022-34839 describes an Authentication Bypass in CodexShaper’s WP OAuth2 Server plugin for WordPress, affecting versions

Foxit PDF Editor (PhantomPDF) < 11.0.1 Multiple Vulnerabilities

According to its version, the Foxit PDF Editor application formally known as PhantomPDF installed on the remote Windows host is prior to 11.0.1. It is, therefore affected by multiple vulnerabilities: - Multiple remote code execution vulnerabilities exist in Foxit PDF Editor due to a use-after-fre...

CVE-2021-34839

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.0.0.49893. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2021-34839

FOXIT PDF Reader 11.0.0.49893 contains a vulnerability in the handling of Annotation objects where the existence of an object is not validated before operations, enabling remote code execution when a user opens a malicious document or visits a malicious page. The issue requires user interaction a...

Binaryen Buffer Overflow Vulnerability (CNVD-2019-34839)

Binaryen is a compiler and toolchain infrastructure library written in C++. Binaryen suffers from a buffer overflow vulnerability. An attacker could exploit this vulnerability to cause a denial of service with specially crafted input...

CVE-2025-34839

...