109 matches found
CVE-2026-4590
creationtimestamp| type| source ---|---|--- 2026-03-23 16:42:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhqivwnuqq2i...
CVE-2026-4590
CVE-2026-4590 affects kalcaddle kodbox 1.64. The vulnerable element is the loginSubmit API component, specifically an unknown function in /workspace/source-code/plugins/oauth/controller/bind/index.class.php. Manipulating the argument third enables cross-site request forgery (CSRF). The issue is e...
EUVD-2026-4590
Not used...
Linux Distros Unpatched Vulnerability : CVE-2016-4590
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit in Apple iOS before 9.3.3 and Safari before 9.1.2 mishandles about: URLs, which allows remote attackers to bypass the Same Origin Policy via a crafted we...
CVE-2025-4590 Daisycon prijsvergelijkers <= 4.9.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Daisycon prijsvergelijkers plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'daisyconuitvaart' shortcode in all versions up to, and including, 4.9.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible...
WordPress Daisycon prijsvergelijkers plugin <= 4.8.4 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by Chuck in WordPress Plugin Daisycon prijsvergelijkers versions = 4.8.4...
CVE-2010-4590
Cross-site scripting XSS vulnerability in HTTP Access Services HTTP-AS in the Connection Manager in IBM Lotus Mobile Connect LMC before 6.1.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Linux Distros Unpatched Vulnerability : CVE-2013-4590
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Tomcat before 6.0.39, 7.x before 7.0.50, and 8.x before 8.0.0-RC10 allows attackers to obtain Tomcat internals information by leveraging the presence of ...
Exploit for Classic Buffer Overflow in Kimmov Frhed
CVE-2023-4590 - PoC of Frhed Free hex editor v1...
RHEL 8 : firefox (RHSA-2024:4590)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:4590 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: Mozilla:...
CVE-2024-4590
A vulnerability was found in DedeCMS 5.7. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /src/dede/sysinfo.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the publ...
CVE-2024-4590 DedeCMS sys_info.php cross-site request forgery
A vulnerability was found in DedeCMS 5.7. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /src/dede/sysinfo.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the publ...
CVE-2024-4590 DedeCMS sys_info.php cross-site request forgery
A vulnerability was found in DedeCMS 5.7. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /src/dede/sysinfo.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the publ...
CVE-2023-4590
creationtimestamp| type| source ---|---|--- 2023-12-17 06:36:35+00:00| seen| https://t.me/ctinow/155514...
CVE-2023-4590 Buffer Overflow vulnerability in Frhed
Buffer overflow vulnerability in Frhed hex editor, affecting version 1.6.0. This vulnerability could allow an attacker to execute arbitrary code via a long filename argument through the Structured Exception Handler SEH registers...
CVE-2023-4590
Summary: CVE-2023-4590 affects Frhed hex editor v1.6.0. A buffer overflow via a long filename argument triggers in the Structured Exception Handler (SEH) registers, potentially allowing arbitrary code execution. Practical details: a GitHub post ( exploit/PoC ) demonstrates a working exploit for F...
CVE-2018-4590
Rejected reason: This candidate is unused by its CNA...
CVE-2022-4590
creationtimestamp| type| source ---|---|--- 2022-12-17 22:30:30+00:00| seen| https://t.me/cibsecurity/54808...
CVE-2022-4590
CVE-2022-4590 affects mschaef toto up to version 1.4.20 in the Todo List Handler component. The issue is a cross-site scripting vulnerability that can be triggered remotely. Upgrading to version 1.4.21 addresses the issue; the patch is identified as fdc825ac5249f40683377e8a526a06cdc6870125 (VDB-2...
CVE-2022-4590 mschaef toto Todo List cross site scripting
A vulnerability was found in mschaef toto up to 1.4.20. It has been classified as problematic. This affects an unknown part of the component Todo List Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 1.4.21 is able to...