TencentOS Server 3: nghttp2 (TSSA-2026:0385)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0385 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

CVE-2026-0385

Microsoft Edge Chromium-based for Android Spoofing Vulnerability...

CVE-2026-0385

creationtimestamp| type| source ---|---|--- 2026-03-13 22:09:12+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116224147580524699 2026-03-16 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0298/ 2026-03-16 01:00:00+00:00| seen|...

CVE-2026-0385 Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability

...

CVE-2021-0385

In createConnectToAvailableNetworkNotification of ConnectToNetworkNotificationBuilder.java, there is a possible connection to untrusted WiFi networks due to notification interaction above the lockscreen. This could lead to local escalation of privilege with no additional execution privileges...

CVE-2022-0385

The Crazy Bone WordPress plugin through 0.6.0 does not sanitise and escape the username submitted via the login from when displaying them back in the log dashboard, leading to an unauthenticated Stored Cross-Site scripting...

CVE-2020-0385

In Parseinsh of easmdls.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote information disclosure in the media extractor with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

CVE-2019-0385

SAP Enable Now, before version 1908, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting XSS vulnerability...

Photon OS 5.0: Linux PHSA-2024-5.0-0385

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-5.0-0385. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Important Photon OS Security Update - PHSA-2024-5.0-0385

Updates of 'wireshark', 'linux-esx', 'linux' packages of Photon OS have been released...

CVE-2024-0385

CVE-2024-0385 affects the Categorify WordPress plugin (versions up to and including 1.0.7.4). The vulnerability arises from a missing capability/authorization check within the categorifyAjaxAddCategory function, enabling authenticated users with subscriber-level access and above to modify data (a...

CVE-2019-0385

creationtimestamp| type| source ---|---|--- 2024-02-13 14:02:29+00:00| seen| https://t.me/ctinow/183825...

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Content Manager Enterprise Edition ( CVE-2016-0385)

Summary IBM WebSphere Application Server is shipped as a component of Content Manager Enterprise Edition. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin...

SUSE CVE-2013-0385

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows local users to affect confidentiality and integrity via unknown vectors related to Server Replication...

CVE-2023-0385

creationtimestamp| type| source ---|---|--- 2023-01-18 18:21:04+00:00| seen| https://t.me/cibsecurity/56670...

CVE-2023-0385

The CVE-2023-0385 entry concerns the WordPress Custom 404 Pro plugin, vulnerable through CSRF due to missing/incorrect nonce validation in the custom_404_pro_admin_init function. Affected software: Custom 404 Pro plugin for WordPress, versions up to and including 3.7.1. Impact: unauthenticated at...

WordPress Custom 404 Pro Plugin <= 3.7.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software Custom 404 Pro Type Plugin Vulnerable versions = 3.7.1 Fixed in 3.7.2 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-0385 Patch priority Low CVSS severity Low 5.4 Developer Kunal Nagar PSID a124f27371a3 Credits Marco Wotschka Required...

CVE-2022-0385

The Crazy Bone WordPress plugin through 0.6.0 does not sanitise and escape the username submitted via the login from when displaying them back in the log dashboard, leading to an unauthenticated Stored Cross-Site scripting...

CVE-2022-0385

The CVE-2022-0385 entry relates to the WordPress Crazy Bone plugin (versions

Mageia: Security Advisory (MGASA-2014-0385)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...