CVE-2026-4896

creationtimestamp| type| source ---|---|--- 2026-04-04 08:17:05+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3minsbjw6nt2j 2026-04-04 08:19:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3minsfvopfy2t 2026-04-04 09:15:29+00:00| seen|...

ECHO-E4EC-4896-121B

Bulletin has no description...

CVE-2025-4896 Tenda AC10 UserCongratulationsExec buffer overflow

A vulnerability was found in Tenda AC10 16.03.10.13 and classified as critical. Affected by this issue is some unknown functionality of the file /goform/UserCongratulationsExec. The manipulation of the argument getuid leads to buffer overflow. The attack may be launched remotely. The exploit has...

RHEL 9 : python3.11 (RHSA-2024:4896)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4896 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

CVE-2024-4896

The WPB Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 1.0.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

CVE-2024-4896 WPB Elementor Addons <= 1.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via url Parameter

The WPB Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 1.0.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...

CVE-2023-4896

creationtimestamp| type| source ---|---|--- 2023-10-18 00:33:09+00:00| seen| https://t.me/cibsecurity/72453...

CVE-2023-4896 Authenticated Disclosure of Sensitive Information in AirWave Management Platform

A vulnerability exists which allows an authenticated attacker to access sensitive information on the AirWave Management Platform web-based management interface. Successful exploitation allows the attacker to gain access to some data that could be further exploited to laterally access devices...

CVE-2022-4896

creationtimestamp| type| source ---|---|--- 2023-09-12 12:22:51+00:00| seen| https://t.me/cibsecurity/70252...

CVE-2022-4896

Cyber Control, in its 1.650 version, is affected by a vulnerability in the generation on the server of pop-up windows with the messages "PNTMEDIDAS", "PEDIR", "HAYDISCOA" or "SPOOLER". A complete denial of service can be achieved by sending multiple requests simultaneously on a core...

CVE-2022-4896

CVE-2022-4896 concerns Cyber Control, v1.650, where the server-side generation of pop-up windows for specific messages (PNTMEDIDAS, PEDIR, HAYDISCOA, SPOOLER) can be overwhelmed by concurrent requests, causing a complete denial of service on a core. Concrete details in connected records confirm a...

SUSE CVE-2011-4896

Tor before 0.2.2.24-alpha continues to use a reachable bridge that was previously configured but is not currently configured, which might allow remote attackers to obtain sensitive information about clients in opportunistic circumstances by monitoring network traffic to the bridge port...

Ubuntu: Security Advisory (USN-4896-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4896-1 : wordpress - security update

Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform XML External Entity XXE attacks, and access private content. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

CVE-2020-4896

creationtimestamp| type| source ---|---|--- 2021-01-07 20:40:52+00:00| seen| https://t.me/cibsecurity/21768...

CVE-2020-4896

CVE-2020-4896 affects IBM Emptoris Sourcing versions 10.1.0.x, 10.1.1.x, and 10.1.3.x. The root cause is improper input validation that allows manipulating HTTP request headers to perform a web cache poisoning attack. Public references (NVD, CNVD, and IBM bulletin) confirm the vulnerability and a...

CVE-2019-4896

CVE-2019-4896 entry is rejected/not used; it does not represent an active vulnerability entry.

CVE-2019-4896

...

CVE-2018-4896

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of...

CVE-2018-4896

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of...