CVE-2026-37596

creationtimestamp| type| source ---|---|--- 2026-04-14 17:34:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjhw2rqxqm2m...

EUVD-2025-37596

The LinkedIn Resume plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.00. This is due to missing or incorrect nonce validation on the linkedinresumeprintAdminPage function. This makes it possible for unauthenticated attackers to update settin...

MAL-2025-37596 Malicious code in ui-ngx-i18 (npm)

The package ui-ngx-i18 was found to contain malicious code...

CVE-2023-37596

Cross Site Request Forgery CSRF vulnerability in issabel-pbx v.4.0.0-6 allows a remote attacker to cause a denial of service via a crafted script to the deleteuser function...

CVE-2021-37596

Telegram Web K Alpha 0.6.1 allows XSS via a document name...

CVE-2023-37596

creationtimestamp| type| source ---|---|--- 2023-07-11 20:29:44+00:00| seen| https://t.me/cibsecurity/66408...

CVE-2023-37596

Summary: CVE-2023-37596 is a CSRF vulnerability in issabel-pbx v4.0.0-6 that enables a remote attacker to cause a denial of service by crafting a request to the deleteuser function. This is documented across multiple sources (NVD, Red Hat, CNNVD, CVE list, etc.). The vulnerability affects the del...

CVE-2021-37596

Telegram Web K Alpha 0.6.1 allows XSS via a document name...

CVE-2021-37596

CVE-2021-37596 affects Telegram Web K Alpha 0.6.1. A cross-site scripting vulnerability arises because the application allows XSS to pass through document names, with potential for client-side code execution. Connected sources corroborate the issue; however, no remediation steps or patch versions...