CVE-2026-2997

creationtimestamp| type| source ---|---|--- 2026-02-23 01:49:00+00:00| seen| https://www.twcert.org.tw/en/cp-139-10721-276b6-2.html...

EUVD-2026-2997

EUVD-2026-2997...

MiracleLinux 4 : rh-mysql56-mysql-5.6.40-1.AXS4 (AXSA:2018-2997:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-2997:02 advisory. mysql: Server: Replication unspecified vulnerability CPU Apr 2018 CVE-2018-2755 mysql: Server: Security: Privileges unspecified vulnerability CPU Ap...

MINI-MR9Q-369F-2997

Bulletin has no description...

Amazon Linux 2 : mpg123, --advisory ALAS2-2025-2997 (ALAS-2025-2997)

The version of mpg123 installed on the remote host is prior to 1.32.9-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2997 advisory. An out-of-bounds write flaw was found in mpg123 when handling crafted streams. When decoding PCM, the libmpg123 may write past the...

Linux Distros Unpatched Vulnerability : CVE-2019-2997

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DDL. Supported versions that are affected are 8.0.17 and prior. Easily exploitable...

CVE-2022-2997

Session Fixation in GitHub repository snipe/snipe-it prior to 6.0.10...

CVE-2005-2997

Multiple directory traversal vulnerabilities in PHP Advanced Transfer Manager 1.30 allow remote attackers to read arbitrary files via ".." sequences in 1 the currentdir parameter to txt.php, or the currentdir parameter to 2 htm.php or 3 html.php...

CVE-2025-2997

CVE-2025-2997 affects youkefu 4.2.0 (zhangyanbo2007). The vulnerability is triggered by manipulation of the url argument in the /res/url function, leading to server-side request forgery. The issue is exploitable remotely and has been disclosed publicly. The connected documents confirm the root ca...

CVE-2025-2997 zhangyanbo2007 youkefu url server-side request forgery

A vulnerability was found in zhangyanbo2007 youkefu 4.2.0. It has been classified as critical. Affected is an unknown function of the file /res/url. The manipulation of the argument url leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been...

CVE-2025-2997 zhangyanbo2007 youkefu url server-side request forgery

A vulnerability was found in zhangyanbo2007 youkefu 4.2.0. It has been classified as critical. Affected is an unknown function of the file /res/url. The manipulation of the argument url leads to server-side request forgery. It is possible to launch the attack remotely. The exploit has been...

Linux Distros Unpatched Vulnerability : CVE-2017-2997

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable buffer overflow / underflow vulnerability in the Primetime TVSDK that supports customizin...

SysAid Help Desk Arbitrary File Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SysAid Help Desk Arbitrary File Download', 'Description' = %q This module exploits two vulnerabilities in SysAid Help Desk that allows an...

SUSE: Security Advisory (SUSE-SU-2024:2997-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-2997

creationtimestamp| type| source ---|---|--- 2024-08-05 00:05:59+00:00| published-proof-of-concept| https://t.me/TheDarkWebInformer/2112 2026-04-21 15:00:06+00:00| published-proof-of-concept| Telegram/OSwk74LPyb-SoCOGGq7g6dJYTwStVpGs5Vg25MlO305tzc...

CVE-2024-2997

A vulnerability was found in Bdtask Multi-Store Inventory Management System up to 20240320. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation of the argument Category Name/Model Name/Brand Name/Unit Name leads to cross site scripting...

CVE-2019-2997

creationtimestamp| type| source ---|---|--- 2023-11-15 16:53:22+00:00| seen| https://t.me/BABATATASASA/5989 2024-01-15 10:06:42+00:00| seen| https://t.me/ctinow/168236...

SUSE CVE-2019-2997

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DDL. Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

SUSE: Security Advisory (SUSE-SU-2022:2997-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-2997

creationtimestamp| type| source ---|---|--- 2022-08-26 00:24:09+00:00| seen| https://t.me/cibsecurity/48819...