CVE-2026-4611

creationtimestamp| type| source ---|---|--- 2026-03-23 23:24:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhr7eifcwy2p...

CVE-2026-4611 TOTOLINK X6000R shttpd setLanCfg privilege escalation

A flaw has been found in TOTOLINK X6000R 9.4.0cu.1360B20241207/9.4.0cu.1498B20250826. Affected by this issue is the function setLanCfg of the file /usr/sbin/shttpd. Executing a manipulation of the argument Hostname can lead to os command injection. The attack may be launched remotely...

CVE-2022-4611

A vulnerability, which was classified as problematic, was found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. This affects an unknown part. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The exploit has been disclosed...

CVE-2025-4611

creationtimestamp| type| source ---|---|--- 2025-05-21 09:52:43+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17106 2025-05-23 07:20:57+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/37818 2025-05-26 02:10:54+00:00| seen|...

CVE-2025-4611 Slim SEO <= 4.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via slim_seo_breadcrumbs Shortcode

The Slim SEO – Fast & Automated WordPress SEO Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's slimseobreadcrumbs shortcode in all versions up to, and including, 4.5.3 due to insufficient input sanitization and output escaping on user supplied attributes...

CVE-2025-4611 Slim SEO <= 4.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via slim_seo_breadcrumbs Shortcode

The Slim SEO – Fast & Automated WordPress SEO Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's slimseobreadcrumbs shortcode in all versions up to, and including, 4.5.3 due to insufficient input sanitization and output escaping on user supplied attributes...

WordPress Slim SEO plugin <= 4.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via slim_seo_breadcrumbs Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via slimseobreadcrumbs Shortcode vulnerability discovered by muhammad yudha in WordPress Plugin Slim SEO versions = 4.5.3...

CVE-2024-4611

creationtimestamp| type| source ---|---|--- 2024-05-29 08:16:23+00:00| seen| https://t.me/HackingInsights/1075...

CVE-2024-4611 AppPresser <= 4.3.2 - Improper Missing Encryption Exception Handling to Authentication Bypass

The AppPresser plugin for WordPress is vulnerable to improper missing encryption exception handling on the 'decryptvalue' and on the 'doCookieAuth' functions in all versions up to, and including, 4.3.2. This makes it possible for unauthenticated attackers to log in as any existing user on the sit...

CVE-2024-4611

CVE-2024-4611 – AppPresser (WordPress plugin) affects versions up to 4.3.2. The root cause is improper missing encryption exception handling in the functions decrypt_value and doCookieAuth, which can allow an unauthenticated attacker to log in as any existing user (e.g., admin) if the openssl PHP...

WordPress AppPresser Plugin <= 4.3.2 is vulnerable to Broken Authentication

Software AppPresser Type Plugin Vulnerable versions = 4.3.2 Fixed in 4.4.0 OWASP Top 10 A2: Broken Authentication Classification Broken Authentication CVE CVE-2024-4611 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 99a815b5c3c8 Credits István Márton Required privilege...

CVE-2019-4611

creationtimestamp| type| source ---|---|--- 2024-03-09 10:06:22+00:00| seen| https://t.me/ctinow/203867...

CVE-2023-4611 affecting package kernel for versions less than 5.15.135.1-2

CVE-2023-4611 affecting package kernel for versions less than 5.15.135.1-2. A patched version of the package is available...

CVE-2023-4611

creationtimestamp| type| source ---|---|--- 2023-08-30 02:17:45+00:00| seen| https://t.me/cibsecurity/69401...

CVE-2023-4611

A use-after-free flaw was found in mm/mempolicy.c in the memory management subsystem in the Linux Kernel. This issue is caused by a race between mbind and VMA-locked page fault, and may allow a local attacker to crash the system or lead to a kernel information leak...

CVE-2023-4611

A use-after-free flaw was found in mm/mempolicy.c in the memory management subsystem in the Linux Kernel. This issue is caused by a race between mbind and VMA-locked page fault, and may allow a local attacker to crash the system or lead to a kernel information leak...

CVE-2023-4611 Use after free race between mbind() and vma-locked page fault

A use-after-free flaw was found in mm/mempolicy.c in the memory management subsystem in the Linux Kernel. This issue is caused by a race between mbind and VMA-locked page fault, and may allow a local attacker to crash the system or lead to a kernel information leak...

CVE-2023-4611

CVE-2023-4611 is a use-after-free in the Linux kernel memory subsystem (mm/mempolicy.c) caused by a race between mbind() and VMA-locked page fault. The vulnerability could allow a local attacker to crash the system or leak kernel information. Connected sources confirm the affected component and t...

CVE-2023-4611 Use after free race between mbind() and vma-locked page fault

A use-after-free flaw was found in mm/mempolicy.c in the memory management subsystem in the Linux Kernel. This issue is caused by a race between mbind and VMA-locked page fault, and may allow a local attacker to crash the system or lead to a kernel information leak...

CVE-2023-4611

A use-after-free flaw was found in mm/mempolicy.c in the memory management subsystem in the Linux Kernel. This issue is caused by a race between mbind and VMA-locked page fault, and may allow a local attacker to crash the system or lead to a kernel information leak. Mitigation Mitigation for this...