CVE-2026-3896 Livemesh SiteOrigin Widgets <= 3.9.2 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting

The Livemesh SiteOrigin Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the lsowadminajax AJAX action in all versions up to, and including, 3.9.2 due to missing authorization checks and insufficient input sanitization. The AJAX handler verifies a nonce but does not...

Oracle Linux 9 : postgresql:15 (ELSA-2026-3896)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3896 advisory. pgaudit 1.7.0-1 - Initial import for postgresql 15 module - Update to 1.7.0 - Support postgresql 15 - Related: 2128410 pgrepack 1.4.8-2 - Add new build...

RockyLinux 9 : postgresql:15 (RLSA-2026:3896)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:3896 advisory. postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code CVE-2026-2006 postgresql: PostgreSQL intarray missing...

MiracleLinux 4 : firefox-60.7.0-1.0.1.AXS4 (AXSA:2019-3896:02)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2019-3896:02 advisory. Mozilla: Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7 CVE-2019-9800 Mozilla: Cross-origin theft of images with createImageBitmap...

CVE-2007-3896

creationtimestamp| type| source ---|---|--- 2025-08-31 03:01:13+00:00| seen| MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d 2025-08-31 03:12:51+00:00| seen| MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57...

CVE-2020-3896

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious application may be able to overwrite arbitrary files...

Linux Distros Unpatched Vulnerability : CVE-2023-3896

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3 CVE-2023-3896 Note that Nessus relies on the presence of the package as reported by the vendor...

Debian: Security Advisory (DLA-3896-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-3896

creationtimestamp| type| source ---|---|--- 2024-07-24 15:48:40+00:00| seen| https://t.me/cvedetector/1559...

CVE-2024-3896 Photo Gallery, Images, Slider in Rbs Image Gallery <= 3.2.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via Gallery Title

The Photo Gallery, Images, Slider in Rbs Image Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the the Gallery title field in all versions up to, and including, 3.2.19 due to insufficient input sanitization and output escaping. This makes it possible for authenticate...

WordPress Robo Gallery Plugin <= 3.2.19 is vulnerable to Cross Site Scripting (XSS)

Software Robo Gallery Type Plugin Vulnerable versions = 3.2.19 Fixed in 3.2.20 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3896 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 6b6c5b6d851b Credits Tim Coen Required privile...

Ubuntu: Security Advisory (USN-6452-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Firefox vulnerabilities (USN-3896-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3896-1 advisory. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacke...

CBL Mariner 2.0 Security Update: vim (CVE-2023-3896)

The version of vim installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-3896 advisory. - Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3 CVE-2023-3896 Note that Nessus has not tested for this...

CVE-2023-3896 affecting package vim for versions less than 9.0.1562-2

CVE-2023-3896 affecting package vim for versions less than 9.0.1562-2. A patched version of the package is available...

CVE-2023-3896

A flaw was found in Vim. When foldcolumn and smoothscrool are on, a divide by zero issue may occur in the scrollcursorbot function, causing a program crash. Mitigation Untrusted vim scripts with -s scriptin are not recommended to run...

CVE-2023-3896

creationtimestamp| type| source ---|---|--- 2023-08-07 16:18:17+00:00| seen| https://t.me/cibsecurity/67870...

AZL-27893 CVE-2023-3896 affecting package vim for versions less than 9.0.1562-2

Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3...

CVE-2023-3896

Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3...

CVE-2023-3896

Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3...