107 matches found
CVE-2026-3170
A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected is an unknown function of the file /patient-search.php. The manipulation of the argument First Name/Last Name results in cross site scripting. The attack can be executed...
CVE-2026-3170
creationtimestamp| type| source ---|---|--- 2026-02-25 10:02:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfogggt4rp2u...
EUVD-2026-3170
A security vulnerability has been detected in lwj flow up to a3d2fe8133db9d3b50fda4f66f68634640344641. This affects the function uploadFile of the file \flow-master\flow-front-rest\src\main\java\com\dragon\flow\web\resource\flow\FormResource.java of the component SVG File Handler. The manipulatio...
EUVD-2012-3147
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2016-3170
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The have you forgotten your password links in the User module in Drupal 7.x before 7.43 and 8.x before 8.0.4 allow remote attackers to obtain sensitive username...
CVE-2025-3170
creationtimestamp| type| source ---|---|--- 2025-04-03 19:35:25+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10317 2025-04-03 21:55:36+00:00| seen| https://t.me/cvedetector/22002...
CVE-2025-3170 Project Worlds Online Lawyer Management System admin_user.php sql injection
A vulnerability classified as critical has been found in Project Worlds Online Lawyer Management System 1.0. This affects an unknown part of the file /adminuser.php. The manipulation of the argument blockid/unblockid leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2025-3170
The vulnerability CVE-2025-3170 affects Project Worlds Online Lawyer Management System 1.0, specifically the /admin_user.php component. The root cause is improper handling of the block_id/unblock_id parameters, leading to a SQL injection vulnerability. The issue is exploitable remotely and has be...
CVE-2025-3170 Project Worlds Online Lawyer Management System admin_user.php sql injection
A vulnerability classified as critical has been found in Project Worlds Online Lawyer Management System 1.0. This affects an unknown part of the file /adminuser.php. The manipulation of the argument blockid/unblockid leads to sql injection. It is possible to initiate the attack remotely. The...
Linux Distros Unpatched Vulnerability : CVE-2024-3170
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in WebRTC in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Linux Distros Unpatched Vulnerability : CVE-2015-3170
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - selinux-policy when sysctl fs.protectedhardlinks are set to 0 allows local users to cause a denial of service SSH login prevention by creating a hardlink to...
Oracle Siebel CRM (January 2013 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2013 CPU advisory. - Vulnerability in the Siebel CRM component of Oracle Siebel CRM subcomponent: Siebel Calendar. Supported versions that are affected are 8.1.1 an...
openSUSE Security Advisory (SUSE-SU-2024:3170-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : postgresql16 (SUSE-SU-2024:3170-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3170-1 advisory. - Upgrade to 16.4 bsc1229013 - CVE-2024-7348: PostgreSQL relation replacement during pgdump executes...
SUSE: Security Advisory (SUSE-SU-2024:3170-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-3170
Use after free in WebRTC in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2024-3170
Use after free in WebRTC in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2024-3170
Use after free in WebRTC in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2024-3170
Use after free in WebRTC in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2024-3170
CVE-2024-3170 affects Google Chrome prior to 121.0.6167.85, where a Use-after-Free in WebRTC could allow a remote attacker to cause heap corruption via a crafted HTML page. The issue is in Chromium’s WebRTC handling and is addressed by updating Chrome to 121.0.6167.85 or later. Public exploits ex...