CVE-2026-3142

The CVE-2026-3142 entry concerns the Pinterest Site Verification plugin using Meta Tag plugin for WordPress (up to version 1.8). The underlying issue is insufficient input sanitization and output escaping in the post_var parameter, enabling Stored Cross-Site Scripting. For authenticated users wit...

Linux Distros Unpatched Vulnerability : CVE-2020-5202

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - apt-cacher-ng through 3.3 allows local users to obtain sensitive information by hijacking the hardcoded TCP port. The /usr/lib/apt-cacher-ng/acngtool program...

CVE-2023-3142

Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 2.0...

CVE-2022-3142

The NEX-Forms WordPress plugin before 7.9.7 does not properly sanitise and escape user input before using it in SQL statements, leading to SQL injections. The attack can be executed by anyone who is permitted to view the forms statistics chart, by default administrators, however can be configured...

CVE-2011-3142

Stack-based buffer overflow in an ActiveX control in KVWebSvr.dll in WellinTech KingView 6.52 and 6.53 allows remote attackers to execute arbitrary code via a long second argument to the ValidateUser method...

CVE-2025-3142

A vulnerability was found in SourceCodester Apartment Visitor Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /add-apartment.php. The manipulation of the argument buildingno leads to sql injection. The attack may be initiated remotely...

CVE-2025-3142

A vulnerability was found in SourceCodester Apartment Visitor Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /add-apartment.php. The manipulation of the argument buildingno leads to sql injection. The attack may be initiated remotely...

CVE-2025-3142

creationtimestamp| type| source ---|---|--- 2025-04-03 05:36:28+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10161 2025-04-03 07:06:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3llvdot7uf42c 2025-04-03 09:22:44+00:00| seen|...

CVE-2025-3142 SourceCodester Apartment Visitor Management System add-apartment.php sql injection

A vulnerability was found in SourceCodester Apartment Visitor Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /add-apartment.php. The manipulation of the argument buildingno leads to sql injection. The attack may be initiated remotely...

CVE-2025-3142 SourceCodester Apartment Visitor Management System add-apartment.php sql injection

A vulnerability was found in SourceCodester Apartment Visitor Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /add-apartment.php. The manipulation of the argument buildingno leads to sql injection. The attack may be initiated remotely...

Linux Distros Unpatched Vulnerability : CVE-2016-3142

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The pharparsezipfile function in zip.c in the PHAR extension in PHP before 5.5.33 and 5.6.x before 5.6.19 allows remote attackers to obtain sensitive informatio...

CVE-2023-3142

creationtimestamp| type| source ---|---|--- 2025-01-06 21:37:12+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/245...

CVE-2017-3142

creationtimestamp| type| source ---|---|--- 2024-11-04 16:25:30+00:00| seen| https://t.me/irananonymousofficialf/559 2024-11-04 16:27:07+00:00| seen| https://t.me/GhostsIranOfficial/114 2024-11-04 16:27:07+00:00| seen| https://t.me/iranAnonymousKo/2713...

Huawei EulerOS: Security Advisory for perl (EulerOS-SA-2023-3142)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-3142 Cross-site Scripting (XSS) - Stored in microweber/microweber

Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 2.0...

CVE-2023-3142 Cross-site Scripting (XSS) - Stored in microweber/microweber

Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 2.0...

CVE-2023-3142

Summary of CVE-2023-3142 Vulnerability: Cross-site Scripting (XSS) stored in microweber/microweber prior to 2.0, including 1.3.4 and earlier. What’s affected: Microweber web application; the issue is triggered by stored input that is later displayed (notably on the Editing page). Root cause: Stor...

Security Bulletin: Vulnerabilities in bind affect IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter Systems

Summary IBM Integrated Management Module II IMM2 for System x, Flex and BladeCenter Systems has addressed the following vulnerabilities in bind. Vulnerability Details Summary IBM Integrated Management Module II IMM2 for System x, Flex and BladeCenter Systems has addressed the following...

WordPress NEX-Forms plugin < 7.9.7 - Authenticated SQL injection Vulnerability

Exploit Title: NEX-Forms WordPress plugin =3D 5.0.12 AND time-based blind query SLEEP Payload: page=3Dnex-forms-dashboard&formid=3D1 AND SELECT 4715 FROM SELECTSLEEP5nPUi...

WordPress NEX-Forms SQL Injection

Exploit Title: NEX-Forms WordPress plugin =3D 5.0.12 AND time-based blind query SLEEP Payload: page=3Dnex-forms-dashboard&formid=3D1 AND SELECT 4715 FROM SELECTSLEEP5nPUi...