CVE-2008-3113 vulnerabilities

Vulnerabilities for packages: openjdk-21-openj9, openjdk-26-openj9, openjdk-11-openj9, openjdk-8-openj9, openjdk-25-openj9, openjdk-17-openj9...

CVE-2026-3113

creationtimestamp| type| source ---|---|--- 2026-03-27 03:00:09+00:00| seen| https://nvd.nist.gov/vuln/detail/CVE-2026-4274...

Amazon Linux 2 : libpng12, --advisory ALAS2-2025-3113 (ALAS-2025-3113)

The version of libpng12 installed on the remote host is prior to 1.2.50-10. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3113 advisory. A heap buffer over-read vulnerability exists in libpng's pngdoquantize function when processing PNG files with malforme...

CVE-2023-3113

An unauthenticated XML external entity injection XXE vulnerability exists in LXCA's Common Information Model CIM server that could result in read-only access to specific files...

CVE-2021-3113

Netsia SEBA+ through 0.16.1 build 70-e669dcd7 allows remote attackers to discover session cookies via a direct /session/list/allActiveSession request. For example, the attacker can discover the admin's cookie if the admin account happens to be logged in when the allActiveSession request occurs, a...

CVE-2025-3113

A valid, authenticated user with sufficient privileges and who is aware of Continuous Compliance’s internal database configurations can leverage the application’s built-in Connector functionality to access Continuous Compliance’s internal database. This allows the user to explore the internal...

CVE-2025-3113

A valid, authenticated user with sufficient privileges and who is aware of Continuous Compliance’s internal database configurations can leverage the application’s built-in Connector functionality to access Continuous Compliance’s internal database. This allows the user to explore the internal...

CVE-2025-3113

creationtimestamp| type| source ---|---|--- 2025-04-17 06:57:12+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12192 2025-04-17 10:00:35+00:00| seen| Telegram/jrReKndJEIIsIC3ejcV3Cb0KdRjUvz--FOWMYVkZUyMQ3kk 2025-04-17 10:28:09+00:00| seen| https://t.me/cvedetector/23214 2025-04-17...

CVE-2025-3113 Improper Access Control in Delphix Masking Engine

A valid, authenticated user with sufficient privileges and who is aware of Continuous Compliance’s internal database configurations can leverage the application’s built-in Connector functionality to access Continuous Compliance’s internal database. This allows the user to explore the internal...

CVE-2025-3113

CVE-2025-3113 affects Delphix Masking Engine via the built-in Connector feature that exposes Continuous Compliance’s internal database. The root cause is insufficient access control, enabling a valid, authenticated user with privileges to explore the internal database schema and export data, incl...

CVE-2025-3113 Improper Access Control in Delphix Masking Engine

A valid, authenticated user with sufficient privileges and who is aware of Continuous Compliance’s internal database configurations can leverage the application’s built-in Connector functionality to access Continuous Compliance’s internal database. This allows the user to explore the internal...

Oracle Linux 9 : fence-agents (ELSA-2025-3113)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3113 advisory. 4.10.0-76.6 - fenceibmvpc: refresh bearer-token if token data is corrupt, and avoid edge-case of writing empty token file Resolves: RHEL-83487 4.10.0-76.5 -...

Linux Distros Unpatched Vulnerability : CVE-2022-3113

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel through 5.16-rc6. mtkvcodecfwvpuinit in drivers/media/platform/mtk-vcodec/mtkvcodecfwvpu.c lacks check of the return...

Linux Distros Unpatched Vulnerability : CVE-2016-3113

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in ovirt-engine allows remote attackers to inject arbitrary web script or HTML. CVE-2016-3113 Note that Nessus relies on...

openSUSE Security Advisory (SUSE-SU-2024:3113-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-3113

creationtimestamp| type| source ---|---|--- 2024-07-30 09:02:52+00:00| seen| https://t.me/cvedetector/1991...

CVE-2024-3113

The FormFlow: WhatsApp Social and Advanced Form Builder with Easy Lead Collection WordPress plugin before 2.12.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml...

CVE-2024-3113 FormFlow < 2.12.2 - Admin+ Stored XSS

The FormFlow: WhatsApp Social and Advanced Form Builder with Easy Lead Collection WordPress plugin before 2.12.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml...

CVE-2024-40973

A flaw was found in the mtk-vcodec module in the Linux kernel. The mtkvcodecfwscpinit function in the drivers/media/platform/mediatek/vcodec/common/mtkvcodecfwscp.c file does not check the return value of the devmkzalloc function, potentially resulting in a NULL pointer dereference...

WordPress FormFlow Plugin < 2.12.2 is vulnerable to Cross Site Scripting (XSS)

Software FormFlow Type Plugin Vulnerable versions 2.12.2 Fixed in 2.12.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3113 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 05bb1755ee18 Credits Dikshita Trivedi Cybersecdexter...