MINI-3288-PCC6-G53R

Bulletin has no description...

Exploit for CVE-2026-3288

CVE-2026-3288 Vulnerable Lab Docker NGINX Ingress Control...

MINI-GHJM-3288-RX7C

Bulletin has no description...

Security Bulletin: IBM Cloud Kubernetes Service is affected by Kubernetes Ingress Controller security vulnerability (CVE-2026-3288)

Summary IBM Cloud Kubernetes Service is affected by Kubernetes Ingress Controller security vulnerability CVE-2026-3288. A security issue was discovered in ingress-nginx where the nginx.ingress.kubernetes.io/rewrite-target Ingress annotation can be used to inject configuration into nginx. This can...

CVE-2026-3288

creationtimestamp| type| source ---|---|--- 2026-03-10 14:35:26+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/kubernetes-security-advisory-av26-208 2026-03-10 16:00:36+00:00| seen| https://gist.github.com/ichintu/18b9a09140a4dbb6aab50fdd24d38fb4 2026-03-17 15:07:42+00:00| seen|...

CGA-PR3V-C234-3288

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2022-3288

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A branch/tag name confusion in GitLab CE/EE affecting all versions prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1 allows an attacker to...

CVE-2024-3288

The Logo Slider WordPress plugin before 4.0.0 does not validate and escape some of its Slider Settings before outputting them back in attributes, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

CVE-2022-3288

A branch/tag name confusion in GitLab CE/EE affecting all versions prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1 allows an attacker to manipulate pages where the content of the default branch would be expected...

CVE-2011-3288

Cisco Unified Presence before 8.54 does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service memory and CPU consumption, and process crash via a crafted XML document containing a large number of nested entity references, aka Bug IDs...

CVE-2005-3288

Mailsite Express allows remote attackers to upload and execute files with executable extensions such as ASP by attaching the file using the "compose page" feature, then accessing the file from the cache directory before saving or sending the message...

CVE-2022-3288

creationtimestamp| type| source ---|---|--- 2025-05-13 16:30:57+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16172...

CVE-2025-3288

creationtimestamp| type| source ---|---|--- 2025-04-08 19:22:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmd755rtao2i 2025-04-08 19:51:43+00:00| seen| https://t.me/cvedetector/22491 2025-04-09 13:15:46+00:00| seen| https://infosec.exchange/users/cR0w/statuses/1143081890375504...

Linux Distros Unpatched Vulnerability : CVE-2015-3288

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/memory.c in the Linux kernel before 4.1.4 mishandles anonymous pages, which allows local users to gain privileges or cause a denial of service page tainting...

openSUSE Security Advisory (SUSE-SU-2024:3288-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-3288

creationtimestamp| type| source ---|---|--- 2024-07-09 13:56:10+00:00| seen| https://t.me/cvedetector/324...

CVE-2023-3288 A BOLA vulnerability in POST /providers in EasyAppointments < 1.5.0

A BOLA vulnerability in POST /providers allows a low privileged user to create a privileged user provider in the system. This results in privilege escalation...

CVE-2023-3288

CVE-2023-3288 affects Easy!Appointments, where a BOLA flaw on POST /providers allows a low-privileged user to create a privileged provider, enabling privilege escalation. Multiple connected sources (including CVELIST entry Easy!Appointments

CVE-2023-3288 A BOLA vulnerability in POST /providers in EasyAppointments < 1.5.0

A BOLA vulnerability in POST /providers allows a low privileged user to create a privileged user provider in the system. This results in privilege escalation...

CVE-2024-3288 Logo Slider < 4.0.0 - Contributor+ Stored XSS

The Logo Slider WordPress plugin before 4.0.0 does not validate and escape some of its Slider Settings before outputting them back in attributes, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...