Linux Distros Unpatched Vulnerability : CVE-2026-4868

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab EE affecting all versions from 18.8 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that, under certain...

CVE-2026-4868

creationtimestamp| type| source ---|---|--- 2026-05-28 01:07:08+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mmutghmbwl25 2026-05-28 11:35:07+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmvwjfgzfg2c...

CVE-2020-4868

IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 190744...

CVE-2013-4868

Karotz API 12.07.19.00: Session Token Information Disclosure...

CVE-2012-4868

SQL injection vulnerability in news.php in the Kunena component 1.7.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2013-2688

Buffer overflow in phrelay in BlackBerry QNX Neutrino RTOS through 6.5.0 SP1 in the QNX Software Development Platform allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted packets to TCP port 4868 that leverage improper handling of t...

CVE-2024-4868

creationtimestamp| type| source ---|---|--- 2024-07-09 11:50:02+00:00| seen| https://t.me/cvedetector/290...

CVE-2024-4868 Extensions for Elementor <= 2.0.31 - Authenticated (Contributor+) Stored Cross-Site Scripting via EE Events and EE Flipbox Widget

The Extensions for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's EE Events and EE Flipbox widgets in all versions up to, and including, 2.0.31 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

WordPress Extensions for Elementor Plugin <= 2.0.32 is vulnerable to Cross Site Scripting (XSS)

Software Extensions for Elementor Type Plugin Vulnerable versions = 2.0.32 Fixed in 2.0.33 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4868 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e4e38eb0ff6b Credits stealthcopter...

RockyLinux 8 : exiv2 (RLSA-2020:1577)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:1577 advisory. exiv2: infinite loop and hang in Jp2Image::readMetadata in jp2image.cpp could lead to DoS CVE-2019-20421 exiv2: null pointer dereference in the...

Ubuntu 16.04 ESM / 18.04 ESM : LibTomCrypt vulnerability (USN-4868-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4868-1 advisory. It was discovered that LibTomCrypt incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service or read...

CVE-2023-4868 SourceCodester Contact Manager App add.php cross-site request forgery

A vulnerability was found in SourceCodester Contact Manager App 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file add.php. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been...

CVE-2023-4868

SourceCodester Contact Manager App 1.0 has a CSRF vulnerability in add.php. The issue can be exploited remotely and exploits have been disclosed publicly. Red Hat and PT Security documents suggest restricting or disabling access to add.php as a temporary mitigation; no patch/version details are p...

CVE-2020-4868

creationtimestamp| type| source ---|---|--- 2023-07-31 07:37:30+00:00| seen| https://t.me/cibsecurity/67431...

CVE-2020-4868

IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 190744...

CVE-2020-4868 IBM TRIRIGA information disclosure

IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 190744...

CVE-2020-4868

CVE-2020-4868 affects IBM TRIRIGA Application Platform versions 3.x and 4.0–4.4. A remote attacker could obtain sensitive information when a detailed technical error message is returned in the browser, enabling potential follow‑on attacks. The IBM Security Bulletin confirms the impact and lists a...

Security Bulletin: IBM TRIRIGA Application Platform discloses possible remote attacker (CVE-2020-4868

Summary IBM TRIRIGA could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. Vulnerability Details CVEID:CVE-2020-4868 DESCRIPTION: IBM TRIRIGA could allo...

CVE-2022-4868

CVE-2022-4868 describes an Improper Authorization vulnerability in froxlor/froxlor prior to 2.0.0-beta1. The issue affects Froxlor versions before 2.0.0-beta1 (GitHub repository froxlor/froxlor) and is widely referenced across CVE records and advisories (Red Hat, GHSA, OSV, NVD, etc.). Root cause...

CVE-2022-4868 Improper Authorization in froxlor/froxlor

Improper Authorization in GitHub repository froxlor/froxlor prior to 2.0.0-beta1...