CVE-2026-3149

creationtimestamp| type| source ---|---|--- 2026-02-25 05:17:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfnwjlgnan2u...

CVE-2026-3149

A weakness has been identified in itsourcecode College Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/asign-single-student-subjects.php. Executing a manipulation of the argument coursecode can lead to sql injection. The attack can be executed...

CVE-2026-3149 itsourcecode College Management System asign-single-student-subjects.php sql injection

A weakness has been identified in itsourcecode College Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/asign-single-student-subjects.php. Executing a manipulation of the argument coursecode can lead to sql injection. The attack can be executed...

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.191.b12-0.el7 (AXSA:2018-3359:06)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-3359:06 advisory. OpenJDK: Improper field access checks Hotspot, 8199226 CVE-2018-3169 OpenJDK: Unrestricted access to scripting engine Scripting, 8202936 CVE-2018-31...

CVE-2018-3149 vulnerabilities

Vulnerabilities for packages: openjdk-11-openj9, openjdk-8-openj9, openjdk-21-openj9, openjdk-17-openj9...

CVE-2025-3149

A vulnerability was found in itning Student Homework Management System up to 1.2.7. It has been classified as problematic. Affected is an unknown function of the file /shwwar/fileupload of the component Edit Job Page. The manipulation of the argument Course leads to cross site scripting. It is...

CVE-2025-3149

A vulnerability was found in itning Student Homework Management System up to 1.2.7. It has been classified as problematic. Affected is an unknown function of the file /shwwar/fileupload of the component Edit Job Page. The manipulation of the argument Course leads to cross site scripting. It is...

CVE-2025-3149

creationtimestamp| type| source ---|---|--- 2025-04-03 07:34:01+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10172 2025-04-03 11:03:13+00:00| seen| https://t.me/cvedetector/21955 2025-04-03 11:12:04+00:00| seen|...

CVE-2025-3149 itning Student Homework Management System Edit Job Page fileupload cross site scripting

A vulnerability was found in itning Student Homework Management System up to 1.2.7. It has been classified as problematic. Affected is an unknown function of the file /shwwar/fileupload of the component Edit Job Page. The manipulation of the argument Course leads to cross site scripting. It is...

CVE-2025-3149

CVE-2025-3149 affects itning Student Homework Management System up to 1.2.7. Vulnerable component: /shw_war/fileupload in the Edit Job Page. The issue arises from manipulation of the Course parameter, causing cross-site scripting. Attacker could exploit remotely; multiple sources indicate the exp...

CVE-2025-3149 itning Student Homework Management System Edit Job Page fileupload cross site scripting

A vulnerability was found in itning Student Homework Management System up to 1.2.7. It has been classified as problematic. Affected is an unknown function of the file /shwwar/fileupload of the component Edit Job Page. The manipulation of the argument Course leads to cross site scripting. It is...

Linux Distros Unpatched Vulnerability : CVE-2018-3149

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JNDI. Supported versions that are affected are Java SE: 6u201,...

CVE-2024-3149

A Server-Side Request Forgery SSRF vulnerability exists in the upload link feature of mintplex-labs/anything-llm. This feature, intended for users with manager or admin roles, processes uploaded links through an internal Collector API using a headless browser. An attacker can exploit this by...

CVE-2024-3149 SSRF in mintplex-labs/anything-llm

A Server-Side Request Forgery SSRF vulnerability exists in the upload link feature of mintplex-labs/anything-llm. This feature, intended for users with manager or admin roles, processes uploaded links through an internal Collector API using a headless browser. An attacker can exploit this by...

CVE-2024-3149

creationtimestamp| type| source ---|---|--- 2024-04-18 01:31:51+00:00| published-proof-of-concept| https://t.me/cKure/12750...

CVE-2023-3149

A vulnerability was found in SourceCodester Online Discussion Forum Site 1.0. It has been classified as critical. Affected is an unknown function of the file admin\user\manageuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2023-3149 SourceCodester Online Discussion Forum Site manage_user.php sql injection

A vulnerability was found in SourceCodester Online Discussion Forum Site 1.0. It has been classified as critical. Affected is an unknown function of the file admin\user\manageuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...

RHEL 9 : thunderbird (RHSA-2023:3149)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:3149 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.11.0. Security Fixes: Mozilla...

K50394032: Java SE vulnerabilities CVE-2018-3149, CVE-2018-3169, and CVE-2018-3209

Security Advisory Description CVE-2018-3149 Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JNDI. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit...

SUSE CVE-2012-3149

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.26 and earlier allows remote authenticated users to affect confidentiality, related to MySQL Client...