CVE-2026-3261

creationtimestamp| type| source ---|---|--- 2026-02-28 06:40:10+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfvmjzethh2a...

CVE-2026-3261

A flaw has been found in itsourcecode School Management System 1.0. This impacts an unknown function of the file /settings/index.php of the component Setting Handler. This manipulation of the argument ID causes sql injection. The attack may be initiated remotely. The exploit has been published an...

CVE-2026-3261

Concretely affects itsourcecode School Management System 1.0. The vulnerability is in the /settings/index.php file of the Setting Handler, where manipulation of the ID argument enables SQL injection. Exploitation can be remote and a PoC/public exploit exists. Multiple sources (NVD, Red Hat, EUVD,...

EUVD-2026-3261

Malicious code in private-payment-lib npm...

CVE-2025-3261

creationtimestamp| type| source ---|---|--- 2025-11-27 20:28:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6n7hltwx62s...

CVE-2017-3261 vulnerabilities

Vulnerabilities for packages: openjdk-17-openj9, openjdk-11-openj9, openjdk-21-openj9, openjdk-8-openj9...

RockyLinux 9 : nginx:1.22 (RLSA-2025:3261)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:3261 advisory. nginx: specially crafted MP4 file may cause denial of service CVE-2024-7347 Tenable has extracted the preceding description block directly from the RockyLinux...

RHSA-2024:3261

creationtimestamp| type| source ---|---|--- 2025-07-05 03:15:03+00:00| seen| Telegram/WfJc7uPRoLJrV4N04ab0I6vzm3GHF9Cjyp48UCO6YlWFjs 2025-07-05 03:15:05+00:00| seen| Telegram/RHkgF7skTMhGpb13BzAtFn3sG2C9DjYxigsVldo5V7Ki1OA 2025-07-05 03:15:05+00:00| seen|...

CVE-2009-3261

update/update0.1.2to0.2.php in LiveStreet 0.2 does not require administrative authentication, which allows remote attackers to perform DROP TABLE operations via unspecified vectors...

Oracle Linux 8 : tigervnc (ELSA-2024-3261)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3261 advisory. - Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents Resolves: RHEL-30755 - Fix CVE-2024-31083...

CentOS 8 : tigervnc (CESA-2024:3261)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2024:3261 advisory. - A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIGetSelectedEvents function. This issue occurs when byte-swapped...

CVE-2024-3261 Strong Testimonials < 3.1.12 - Contributor+ Stored XSS

The Strong Testimonials WordPress plugin before 3.1.12 does not validate and escape some of its Testimonial fields before outputting them back in a page/post, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. The attack requires a specific...

CVE-2024-3261

The CVE-2024-3261 entry concerns the WordPress plugin Strong Testimonials (prior to 3.1.12). It states that certain Testimonial fields are not validated/escaped before being output on pages, enabling Stored XSS for users with contributor role or higher when a specific view is accessed. Affected a...

CVE-2024-3261 Strong Testimonials < 3.1.12 - Contributor+ Stored XSS

The Strong Testimonials WordPress plugin before 3.1.12 does not validate and escape some of its Testimonial fields before outputting them back in a page/post, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. The attack requires a specific...

WordPress Strong Testimonials Plugin < 3.1.12 is vulnerable to Cross Site Scripting (XSS)

Software Strong Testimonials Type Plugin Vulnerable versions 3.1.12 Fixed in 3.1.12 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3261 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4383da9e6ea2 Credits Dmitrii Ignatyev...

[SECURITY] Fedora 38 Update: sofia-sip-1.13.12-2.fc38

Sofia SIP is a RFC-3261-compliant library for SIP user agents and other network elements. The Session Initiation Protocol SIP is an application-layer control signaling protocol for creating, modifying, and terminating sessions with one or more participants. These sessions include Internet telepho...

Fedora: Security Advisory for sofia-sip (FEDORA-2024-b9c02df30f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-3261

CVE-2022-3261 affects OpenStack; multiple components log plaintext passwords to /var/log/messages during the OpenStack overcloud update, causing disclosure of sensitive information. The available sources describe the issue and its impact but do not specify affected versions, fixes, or mitigations...

CVE-2023-3261

creationtimestamp| type| source ---|---|--- 2023-08-14 07:19:07+00:00| seen| https://t.me/cibsecurity/68415...

CVE-2023-3261

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier contains a buffer overflow vulnerability in the librta.so.0.0.0 library.Successful exploitation could cause denial of service or unexpected behavior with respect to all interactions relying on the targeted vulnerable binary...