70 matches found
EUVD-2026-3022
EUVD-2026-3022...
EUVD-2008-3022
Malware in sbrugna...
RHSA-2024:3022
creationtimestamp| type| source ---|---|--- 2025-06-16 17:37:54+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18479...
CVE-2019-3022
Vulnerability in the Oracle Content Manager product of Oracle E-Business Suite component: Content. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Content...
CVE-2025-3022
creationtimestamp| type| source ---|---|--- 2025-03-31 11:31:37+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9630 2025-03-31 12:40:24+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lloewosakd2n 2025-03-31 15:00:46+00:00| seen| https://t.me/cvedetector/21579 2025-08-10...
CVE-2025-3022 OS Command Injection vulnerability in e-management of e-solutions
Os command injection vulnerability in e-solutions e-management. This vulnerability allows an attacker to execute arbitrary commands on the server via the ‘client’ parameter in the /data/apache/e-management/api/api3.php endpoint...
CVE-2025-3022
CVE-2025-3022 concerns an OS command injection in E-Solutions E-Management. Multiple sources confirm the vulnerability is triggered via the client parameter to /data/apache/e-management/api/api3.php, allowing an attacker to execute arbitrary commands on the server. The CVE is rated critical (CVSS...
CVE-2025-3022 OS Command Injection vulnerability in e-management of e-solutions
Os command injection vulnerability in e-solutions e-management. This vulnerability allows an attacker to execute arbitrary commands on the server via the ‘client’ parameter in the /data/apache/e-management/api/api3.php endpoint...
Linux Distros Unpatched Vulnerability : CVE-2023-3022
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the IPv6 module of the Linux kernel. The arg.result was not used consistently in fib6rulelookup, sometimes holding rt6info and other times...
Oracle Linux 8 : motif (ELSA-2024-3022)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3022 advisory. - Fix CVE-2023-43788: out of bounds read in XpmCreateXpmImageFromBuffer Tenable has extracted the preceding description block directly from the Oracle...
RHEL 8 : motif (RHSA-2024:3022)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3022 advisory. The motif packages include the Motif shared libraries needed to run applications which are dynamically linked against Motif, as well as MWM,...
CentOS 8 : motif (CESA-2024:3022)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2024:3022 advisory. - A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer function. This flaw allows a local attacker to...
CVE-2024-3022
The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient filename validation in the 'bookingpressprocessupload' function in all versions up to, and including 1.0.87. This allows an authenticated attacker with administrator-level capabilities or higher to...
CVE-2024-3022 BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin <= 1.0.87 - Authenticated (Admin+) Arbitrary File Upload
The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient filename validation in the 'bookingpressprocessupload' function in all versions up to, and including 1.0.87. This allows an authenticated attacker with administrator-level capabilities or higher to...
CVE-2024-3022 BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin <= 1.0.87 - Authenticated (Admin+) Arbitrary File Upload
The BookingPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient filename validation in the 'bookingpressprocessupload' function in all versions up to, and including 1.0.87. This allows an authenticated attacker with administrator-level capabilities or higher to...
CVE-2024-3022
BookingPress for WordPress (all versions
WordPress BookingPress Plugin <= 1.0.87 is vulnerable to Arbitrary File Upload
Software BookingPress Type Plugin Vulnerable versions = 1.0.87 Fixed in 1.0.88 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-3022 Patch priority Low CVSS severity Low 6.6 Developer Claim ownership PSID 95c9a0019f7e Credits Dian Sun Required privilege Administrator...
CVE-2019-3022
creationtimestamp| type| source ---|---|--- 2024-01-09 11:06:58+00:00| seen| https://t.me/ctinow/164927...
CVE-2023-3022
creationtimestamp| type| source ---|---|--- 2023-08-15 16:16:50+00:00| seen| https://t.me/cibsecurity/65351 2025-03-11 14:39:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7143...
CVE-2023-3022
A flaw was found in the IPv6 module of the Linux kernel. The arg.result was not used consistently in fib6rulelookup, sometimes holding rt6info and other times fib6info. This was not accounted for in other parts of the code where rt6info was expected unconditionally, potentially leading to a kerne...