BELL-CVE-2026-3904 CVE-2026-3904 does not affect BellSoft software

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2026-3904

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Calling NSS-backed functions that support caching via nscd may call the nscd client side code and in the GNU C Library version 2.36 under high load on x8664...

CVE-2026-3904

Calling NSS-backed functions that support caching via nscd may call the nscd client side code and in the GNU C Library version 2.36 under high load on x8664 systems, the client may call memcmp on inputs that are concurrently modified by other processes or threads and crash. The nscd client in the...

EUVD-2026-3904

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in themepassion Ultra Portfolio ultra-portfolio allows Blind SQL Injection.This issue affects Ultra Portfolio: from n/a through = 6.7...

MiracleLinux 3 : kernel-2.6.18-194.8.AXS3 (AXSA:2010-492:17)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2010-492:17 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating system:...

Linux Distros Unpatched Vulnerability : CVE-2023-3904

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab EE affecting all versions starting before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting fr...

CVE-2022-3904

The MonsterInsights WordPress plugin before 8.9.1 does not sanitize or escape page titles in the top posts/pages section, allowing an unauthenticated attacker to inject arbitrary web scripts into the titles by spoofing requests to google analytics...

CVE-2020-3904

Multiple memory corruption issues were addressed with improved state management. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to execute arbitrary code with kernel privileges...

CVE-2025-3904

Vulnerability in Drupal Sportsleague.This issue affects Sportsleague:...

CVE-2025-3904

Technical details about CVE-2025-3904 are not publicly available in the provided documents; no affected versions, exploit details, or remediation are specified here. Monitor for updates.

CVE-2024-3904

Incorrect Default Permissions vulnerability in Smart Device Communication Gateway preinstalled on MELIPC Series MI5122-VW firmware versions "05" to "07" allows a local attacker to execute arbitrary code by saving a malicious file to a specific folder. As a result, the attacker may disclose, tampe...

SUSE: Security Advisory (SUSE-SU-2024:3904-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-3904

CVE-2024-3904 affects Mitsubishi Electric MELIPC Series MI5122-VW firmware versions 05–07. Root cause: Incorrect Default Permissions (CWE-276) enables a local attacker to execute arbitrary code by saving a malicious file to a specific folder. Impact per sources: disclosure/tampering/destruction o...

Malicious code in wlwz-2312-3904 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2da976c258b17def40e90383f30312e0e199a72f9392317b0eac746c1b990c69 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-3904

Summary: CVE-2023-3904 affects GitLab Enterprise Edition (GitLab EE) before certain patch levels and enables overflowing the time spent on an issue to alter details shown on issue boards. Affected versions: before 16.4.4; 16.5 before 16.5.4; 16.6 before 16.6.2. Technical detail: overflow in time-...

CVE-2023-3904 Improper Validation of Specified Type of Input in GitLab

An issue has been discovered in GitLab EE affecting all versions starting before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. It was possible to overflow the time spent on an issue that altered the details shown in the issue boards...

GitLab 0 < 16.4.4 / 16.5 < 16.5.4 / 16.6 < 16.6.2 (CVE-2023-3904)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE affecting all versions starting before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. It was possible t...

FreeBSD : Gitlab -- vulnerabilities (e2fb85ce-9a3c-11ee-af26-001b217b3468)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the e2fb85ce-9a3c-11ee-af26-001b217b3468 advisory. - Gitlab reports: Smartcard authentication allows impersonation of arbitrary user using user's...

Exploit for Cross-site Scripting in Monsterinsights

CVE-2022-3904 CVE-2022-3904 MonsterInsights 8.9.1 - Store...

SUSE CVE-2011-3904

Use-after-free vulnerability in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to bidirectional text aka bidi handling...