CVE-2026-4599

creationtimestamp| type| source ---|---|--- 2026-03-23 06:18:36+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhpg2nrlsg2s 2026-03-23 06:44:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhphjlw4wc2v 2026-03-23 10:30:27+00:00| seen|...

CVE-2026-4599

Versions of the package jsrsasign from 7.0.0 and before 11.1.1 are vulnerable to Incomplete Comparison with Missing Factors via the getRandomBigIntegerZeroToMax and getRandomBigIntegerMinToMax functions in src/crypto-1.1.js; an attacker can recover the private key by exploiting the incorrect...

MiracleLinux 3 : icu-3.6-5.16.1 (AXSA:2011-562:02)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2011-562:02 advisory. Tools and utilities for developing with icu. Security issues fixed with this release: CVE-2011-4599 No information available at the time of writing, please...

MiracleLinux 4 : icu-4.2.1-9.1.AXS4 (AXSA:2012-08:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-08:01 advisory. Tools and utilities for developing with icu. Security issues fixed with this release: CVE-2011-4599 No information available at the time of writing, please ref...

CVE-2025-4599

The fragment preview functionality in Liferay Portal 7.4.3.61 through 7.4.3.132, and Liferay DXP 2024.Q4.1 through 2024.Q4.5, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.13 and 7.4 update 61 through update 92 was found to be vulnerable to postMessage-base...

Security Bulletin: IBM i is affected by multiple vulnerabilities in International Components for Unicode (ICU) option 39 [CVE-2017-14952 CVE-2011-4599 CVE-2017-17484].

Summary International Components for Unicode ICU is a C and C++ library that provides Unicode services used for writing global applications in ILE programming languages. IBM i licensed program option 39 International Components for Unicode is currently built using ICU4C version 4.0. This version...

Security Bulletin: Due to use of International Components for Unicode, IBM Rational ClearQuest is vulnerable to buffer overflow.

Summary Multiple vulnerabilities in International Components for Unicode used within IBM Rational ClearQuest have been addressed CVE-2020-10531, CVE-2011-4599, CVE-2014-8146 Vulnerability Details CVEID:CVE-2020-10531 DESCRIPTION: International Components for Unicode ICU for C/C++ is vulnerable to...

CGA-CR23-7245-4599

Bulletin has no description...

CVE-2024-4599 Denial of service vulnerability in LAN Messenger

Remote denial of service vulnerability in LAN Messenger affecting version 3.4.0. This vulnerability allows an attacker to crash the LAN Messenger service by sending a long string directly and continuously over the UDP protocol...

CVE-2024-4599 Denial of service vulnerability in LAN Messenger

Remote denial of service vulnerability in LAN Messenger affecting version 3.4.0. This vulnerability allows an attacker to crash the LAN Messenger service by sending a long string directly and continuously over the UDP protocol...

CVE-2024-4599

CVE-2024-4599 describes a remote denial-of-service in LAN Messenger, version 3.4.0. The vulnerability is triggered by sending a long string continuously over UDP, crashing the LAN Messenger service. The CVE entry lists a CVSSv3.1 base score of 7.5 (HIGH) with network attack vector, low attack com...

Email Encoder Bundle < 2.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via shortcode

Description The Email Encoder – Protect Email Addresses and Phone Numbers plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 2.1.8 due to insufficient input sanitization and output escaping on user supplied attribute...

CVE-2023-4599

CVE-2023-4599 affects the Slimstat Analytics WordPress plugin. It is a stored XSS via the eeb_mailto shortcode caused by insufficient input sanitization and output escaping. Exploitation requires an authenticated attacker with contributor-level permissions or higher, who can inject scripts that e...

WordPress Email Encoder Bundle Plugin <= 2.1.7 is vulnerable to Cross Site Scripting (XSS)

Software Email Encoder Bundle Type Plugin Vulnerable versions = 2.1.7 Fixed in 2.1.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-4599 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 48a0517c2804 Credits István Márton...

Debian: Security Advisory (DLA-307-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-4599

creationtimestamp| type| source ---|---|--- 2022-12-18 14:40:38+00:00| seen| https://t.me/cibsecurity/54814...

CVE-2022-4599

CVE-2022-4599 affects Shoplazza LifeStyle 1.1. The vulnerability is an XSS in the Product Handler component, triggered by manipulating Subheading/Heading/Text/Button Text/Label through the file path /admin/api/theme-edit/. It can be exploited remotely and the exploit has been disclosed publicly (...

CVE-2019-4599

IBM Sterling Connect:Express for UNIX FTP Server is affected by a heap-based buffer overflow in the FTP service (CVE-2019-4599). The issue arises from improper bounds checking in the ALLO handling of the FTP server, where the static buffer in BSS (rem_file) can overflow when processing input with...

RHEL 8 : annobin (RHSA-2021:4599)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2021:4599 advisory. Annobin provides a compiler plugin to annotate and tools to examine compiled binary files. Security Fixes: Developer environment: Unicode's...

SUSE: Security Advisory (SUSE-SU-2015:1253-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...