pretix-tracking-scripts (>=1.0.0 <=1.0.1) potentially affected by CVE-2026-5600 via pretix (=2024.11.0)

pretix PYPI version =2024.11.0 is affected by a known vulnerability. The following packages have a transitive dependency on pretix and may be impacted: - pretix-tracking-scripts =1.0.0, =1.0.1 Source cves: CVE-2026-5600 Source advisory: OSV:GHSA-WR8Q-C73G-M7GP...

CVE-2026-5600

CVE-2026-5600 involves a new API endpoint in pretix (2025 release) that should return check-in events for a specific event but instead exposes all check-in events under the organizer. The affected component is the API handling check-in data; the root cause is an endpoint mis-scoping that leaks re...

CVE-2026-5600

creationtimestamp| type| source ---|---|--- 2026-04-08 04:16:43+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-5600 2026-04-08 15:12:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miyldoqosd2g...

MiracleLinux 7 : openssh-6.6.1p1-22.el7 (AXSA:2015-787:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-787:01 advisory. SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide...

EUVD-2011-1623

Malware in sbrugna...

CVE-2015-5600

creationtimestamp| type| source ---|---|--- 2025-07-24 20:25:13+00:00| seen| https://gist.github.com/eplord/cfdc27a611599ce7d93d1ba56da3d7e0 2025-11-11 15:00:08+00:00| published-proof-of-concept| Telegram/lbg3qz8wK-Srr-k6BvW0hDYmtpTKwvGGzCPXHWNgNmGS9PQ 2026-01-25 15:30:55+00:00| seen|...

CVE-2023-5600

An issue has been discovered in GitLab EE affecting all versions starting from 16.0 before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1. Arbitrary access to the titles of an private specific references could be leaked through the service-des...

CVE-2023-5600

An issue has been discovered in GitLab EE affecting all versions starting from 16.0 before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1. Arbitrary access to the titles of an private specific references could be leaked through the service-des...

CVE-2023-5600

creationtimestamp| type| source ---|---|--- 2025-06-20 19:43:33+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19049 2025-06-20 21:54:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ls2znfclbr2i...

CVE-2023-5600 Missing Authorization in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 16.0 before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1. Arbitrary access to the titles of an private specific references could be leaked through the service-des...

CVE-2023-5600

GitLab EE/CE CVE-2023-5600 affects GitLab EE versions 16.0+ up to before 16.3.6, 16.4 before 16.4.2, and 16.5 before 16.5.1. The issue is an improper access control allowing arbitrary access to the titles of private specific references via the service-desk custom email template. No exploit detail...

CVE-2023-5600

Removed by vendor...

CVE-2023-5600 Missing Authorization in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 16.0 before 16.3.6, all versions starting from 16.4 before 16.4.2, all versions starting from 16.5 before 16.5.1. Arbitrary access to the titles of an private specific references could be leaked through the service-des...

CVE-2025-5600

creationtimestamp| type| source ---|---|--- 2025-06-04 18:26:50+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqsggjf7rnz2...

Linux Distros Unpatched Vulnerability : CVE-2015-5600

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The kbdintnextdevice function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a...

CVE-2024-5600

creationtimestamp| type| source ---|---|--- 2024-07-09 11:50:01+00:00| seen| https://t.me/cvedetector/289...

CVE-2024-5600 Happy SCSS Compiler - Compile SCSS to CSS automatically <= 1.3.10 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting

The SCSS Happy Compiler – Compile SCSS to CSS & Automatic Enqueue plugin for WordPress is vulnerable to Stored Cross-Site Scripting due to a missing capability check and insufficient sanitization on the importsettings function in all versions up to, and including, 1.3.10. This makes it possible f...

CVE-2024-5600

CVE-2024-5600 concerns the WordPress plugin “SCSS Happy Compiler – Compile SCSS to CSS & Automatic Enqueue.” The vulnerability is a Stored Cross-Site Scripting (XSS) due to a missing capability check and insufficient sanitization in the import_settings() function. It affects all versions up to an...

RHEL 5 : openssh (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openssh: MaxAuthTries limit bypass via duplicates in KbdInteractiveDevices CVE-2015-5600 - openssh:...

Malicious code in wlwz-2312-5600 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d9ea2c84f0fc71bf250ba20ff3cb19f83672f94904dee3fb919b7f6445f6f137 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...