@1auth/authn-webauthn (>=0.0.0-alpha.0 <=0.0.0-alpha.3), @agentic/stdlib (>=7.4.0 <=7.6.9) +786 more potentially affected by CVE-2026-4600 via jsrsasign (>=0.0.3 <=11.1.0)

jsrsasign NPM version =0.0.3, =0.0.0-alpha.0, =7.4.0, =7.4.0, =6.0.0, =1.0.0-1.0.1.0, =1.0.0-1.0.1.0, =0.0.3-alpha.0, =2.0.0, =2.7.1, =6.0.0, =6.0.0, =0.1.0, =1.0.0, =5.0.0-3998.0 and more Source cves: CVE-2026-4600 Source advisory: OSV:GHSA-WVQX-V3F6-W8RH...

org.webjars.npm:jsrsasign-util (=1.0.5) potentially affected by CVE-2026-4600 via org.webjars.npm:jsrsasign (=11.1.0)

org.webjars.npm:jsrsasign MAVEN version =11.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:jsrsasign and may be impacted: - org.webjars.npm:jsrsasign-util =1.0.5 Source cves: CVE-2026-4600 Source advisory:...

EUVD-2023-40754

Malicious code in bioql PyPI...

CVE-2022-4600

A vulnerability was found in Shoplazza LifeStyle 1.1. It has been classified as problematic. This affects an unknown part of the file /admin/api/theme-edit/ of the component Product Carousel Handler. The manipulation of the argument Heading/Description leads to cross site scripting. It is possibl...

CVE-2025-4600

A request smuggling vulnerability existed in the Google Cloud Classic Application Load Balancer due to improper handling of chunked-encoded HTTP requests. This allowed attackers to craft requests that could be misinterpreted by backend servers. The issue was fixed by disallowing stray data after ...

CVE-2025-4600

creationtimestamp| type| source ---|---|--- 2025-05-16 14:12:57+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114517919488436129 2025-05-16 17:02:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpcizo4hue2e...

CVE-2025-4600 HTTP Request Smuggling in Google Cloud Classic Application Load Balancer due to Improper Chunked Encoding Validation

A request smuggling vulnerability existed in the Google Cloud Classic Application Load Balancer due to improper handling of chunked-encoded HTTP requests. This allowed attackers to craft requests that could be misinterpreted by backend servers. The issue was fixed by disallowing stray data after ...

CVE-2025-4600 HTTP Request Smuggling in Google Cloud Classic Application Load Balancer due to Improper Chunked Encoding Validation

A request smuggling vulnerability existed in the Google Cloud Classic Application Load Balancer due to improper handling of chunked-encoded HTTP requests. This allowed attackers to craft requests that could be misinterpreted by backend servers. The issue was fixed by disallowing stray data after ...

Linux Distros Unpatched Vulnerability : CVE-2011-4600

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The networkReloadIptablesRules function in network/bridgedriver.c in libvirt before 0.9.9 does not properly handle firewall rules on bridge networks when libvir...

CVE-2015-4600

creationtimestamp| type| source ---|---|--- 2024-06-19 19:59:54+00:00| seen| Telegram/OFcRq2nNNh6lt2qa3MZdkhKpJMnJHIvl2kHj9qoKpcvzD1wO...

CVE-2024-4600

CVE-2024-4600 affects Socomec Net Vision (version 7.20). A CSRF vulnerability arises from improper cleanup/sanitisation of the set_param.cgi file, enabling an attacker to trick registered users into performing critical actions such as adding or updating accounts. Exploitation details are not prov...

CVE-2024-4600 Cross-Site Request Forgery vulnerability in Socomec Net Vision

Cross-Site Request Forgery vulnerability in Socomec Net Vision, version 7.20. This vulnerability could allow an attacker to trick registered users into performing critical actions, such as adding and updating accounts, due to lack of proper sanitisation of the ‘setparam.cgi’ file...

PT-2024-3102 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Junos OS versions 21.2 before 21.2R3-S7 Junos OS versions 21.4 before 21.4R3-S6 Junos OS versions 22.1 before 22.1R3-S5 Junos OS versions 22.2 before 22.2R3-S3 Junos OS versions 22.3 before 22.3R3-S2 Junos OS versions 22.4 before 22.4R3 Junos...

CVE-2019-4600

creationtimestamp| type| source ---|---|--- 2024-01-29 14:11:14+00:00| seen| https://t.me/ctinow/175246...

Malicious code in wlwz-2312-4600 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 42fa9cd934dffe4870f5ca26a4bec314f1e81100e5714052f8f9fa3cbdad382a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2018-4600

creationtimestamp| type| source ---|---|--- 2023-09-14 22:40:47+00:00| seen| https://t.me/cibsecurity/70524...

CVE-2018-4600

Rejected reason: This candidate is unused by its CNA...

CVE-2023-4600

creationtimestamp| type| source ---|---|--- 2023-08-30 16:12:14+00:00| seen| https://t.me/cibsecurity/69419...

CVE-2023-4600

The AffiliateWP for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'affwpactivateaddonspageplugin' function called via an AJAX action in versions up to, and including, 2.14.0. This makes it possible for authenticated attackers, with...

CVE-2023-4600

AffiliateWP for WordPress (CVE-2023-4600) is affected up to version 2.14.0 and can be exploited by authenticated users with subscriber-level access to activate arbitrary plugins due to a missing capability check in affwp_activate_addons_page_plugin invoked via AJAX. Evidence from multiple sources...