EUVD-2026-3075

Malicious code in dws-dx npm...

MiracleLinux 7 : glibc-2.17-157.el7 (AXSA:2016-1114:05)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-1114:05 advisory. The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make...

CVE-2025-3075

creationtimestamp| type| source ---|---|--- 2025-07-29 04:46:48+00:00| seen| Telegram/Sicrb8vnjeOolQWMuia1EDaZjbNhMJwDF7YqHIz2KQDvq0...

Linux Distros Unpatched Vulnerability : CVE-2016-3075

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack-based buffer overflow in the nssdns implementation of the getnetbyname function in GNU C Library aka glibc before 2.24 allows context-dependent attackers ...

openSUSE Security Advisory (SUSE-SU-2024:3075-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-3075

The MM-email2image WordPress plugin through 0.2.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

CVE-2024-3075 MM-email2image <= 0.2.5 - Contributor+ Stored XSS

The MM-email2image WordPress plugin through 0.2.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

CVE-2024-3075 MM-email2image <= 0.2.5 - Contributor+ Stored XSS

The MM-email2image WordPress plugin through 0.2.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

WordPress MM-email2image Plugin <= 0.2.5 is vulnerable to Cross Site Scripting (XSS)

Software MM-email2image Type Plugin Vulnerable versions = 0.2.5 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3075 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d669837268d4 Credits Bob Matyas Required privile...

openSUSE: Security Advisory for opera (openSUSE-SU-2022:10118-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for opera (openSUSE-SU-2022:10121-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2018-3075

creationtimestamp| type| source ---|---|--- 2023-11-15 16:53:23+00:00| published-proof-of-concept| https://t.me/BABATATASASA/5991...

Oracle Linux 7 : glibc (ELSA-2016-3638)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-3638 advisory. - CVE-2016-3075: Stack overflow in nssdnsgetnetbynamer 1321993 - Fix CVE-2015-7547: getaddrinfo stack-based buffer overflow 1296031. Tenable has extracted the...

SUSE SLES15 Security Update : kernel (Live Patch 29 for SLE 15 SP2) (SUSE-SU-2023:3075-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3075-1 advisory. - A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hcisock.c in the Linux Kernel...

Security update for opera (important)

openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2022:10121-1 Rating: important References: Cross-References: CVE-2022-3075 CVSS scores: CVE-2022-3075 NVD : 9.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H Affected Products: openSUSE Leap 15.5:NonFree An update tha...

CVE-2023-3075

creationtimestamp| type| source ---|---|--- 2023-06-02 22:26:19+00:00| seen| https://t.me/cibsecurity/64949...

CVE-2023-3075

Cross-Site Request Forgery CSRF in GitHub repository tsolucio/corebos prior to 8...

CVE-2023-3075 Cross-Site Request Forgery (CSRF) in tsolucio/corebos

Cross-Site Request Forgery CSRF in GitHub repository tsolucio/corebos prior to 8...

CVE-2023-3075

CVE-2023-3075 is a CSRF vulnerability in coreBOS (GitHub: tsolucio/corebos) prior to version 8. The issue arises due to lack of appropriate CSRF protections, enabling an attacker to forge requests that affect victims authenticated to the application. Public documents consistently describe the vul...

Debian: Security Advisory (DLA-494-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...