Lucene search
+L

114 matches found

GithubExploit
GithubExploit
added 2026/06/03 1:18 p.m.140 views

Exploit for Improper Access Control in Proftpd

OpenVAS-Vulnerability-Analysis-Incident-Response-Report Real-W...

10CVSS6.2AI score0.96803EPSS
Exploits22
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.11 views

Amazon Linux 2 : thunderbird, --advisory ALAS2-2026-3306 (ALAS-2026-3306)

The version of thunderbird installed on the remote host is prior to 140.10.1-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3306 advisory. libexpat before 2.7.6 uses insufficient entropy, and thus hash flooding can occur via a crafted XML document. CVE-2026-41080...

7.5CVSS5.8AI score0.00398EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/26 3:12 p.m.4 views

CVE-2026-3306

An improper authorization vulnerability was identified in GitHub Enterprise Server that allowed a user with read access to a repository and write access to a project to modify issue and pull request metadata through the project. When adding an item to a project that already existed, column value...

5.3CVSS5.7AI score0.00321EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.5 views

SUSE: Security Advisory (SUSE-SU-2024:3306-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.00555EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 7:16 a.m.12 views

CVE-2024-3306

Authorization Bypass Through User-Controlled Key vulnerability in Utarit Information SoliClub allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects SoliClub: before 4.4.0 for iOS, before 5.2.1 for Android...

8.8CVSS5.8AI score0.00357EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:51 a.m.8 views

CVE-2023-3306

A vulnerability was found in Ruijie RG-EW1200G EW3.01B11P204. It has been declared as critical. This vulnerability affects unknown code of the file app.09df2a9e44ab48766f5f.js of the component Admin Password Handler. The manipulation leads to improper access controls. The attack can be initiated...

9.8CVSS6.8AI score0.23065EPSS
Exploits5References1
Circl
Circl
added 2025/04/06 1:38 a.m.13 views

CVE-2025-3306

creationtimestamp| type| source ---|---|--- 2025-04-06 01:38:10+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10621 2025-04-06 04:00:30+00:00| published-proof-of-concept| Telegram/HBFUUrGa3cJHt131NCCP4tblCqepouVMBTuDsYMDuf5r-jI 2025-04-06 05:07:20+00:00| seen|...

9.8CVSS7.3AI score0.00507EPSS
Exploits1References3
NVD
NVD
added 2025/04/06 1:15 a.m.19 views

CVE-2025-3306

A vulnerability was found in code-projects Blood Bank Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /don.php. The manipulation of the argument fullname leads to sql injection. The attack may be initiated remotely. The exploit has been...

9.8CVSS0.00507EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/04/06 1:0 a.m.25 views

CVE-2025-3306 code-projects Blood Bank Management System don.php sql injection

A vulnerability was found in code-projects Blood Bank Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /don.php. The manipulation of the argument fullname leads to sql injection. The attack may be initiated remotely. The exploit has been...

7.5CVSS0.00507EPSS
Exploits1References5
Circl
Circl
added 2024/09/12 3:37 p.m.5 views

CVE-2024-3306

creationtimestamp| type| source ---|---|--- 2024-09-12 15:37:07+00:00| seen| https://t.me/cvedetector/5473...

8.8CVSS5AI score0.00357EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/12 1:6 p.m.23 views

CVE-2024-3306 IDOR in Utarit Information's SoliClub

Authorization Bypass Through User-Controlled Key vulnerability in Utarit Information SoliClub allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects SoliClub: before 4.4.0 for iOS, before 5.2.1 for Android...

8.8CVSS5.8AI score0.00357EPSS
Exploits0References2
CVE
CVE
added 2024/09/12 1:6 p.m.62 views

CVE-2024-3306

This CVE-2024-3306 entry concerns Utarit Information SoliClub. Affected software: SoliClub mobile app on iOS (versions before 4.4.0) and Android (versions before 5.2.1). Vulnerability: Authorization Bypass Through User-Controlled Key due to incorrectly configured access control security levels. I...

8.8CVSS5.8AI score0.00357EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/05/25 12:0 a.m.44 views

Oracle Linux 9 : kernel (ELSA-2024-3306)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3306 advisory. - netfilter: nftables: disallow anonymous set with timeout flag Phil Sutter RHEL-32971 RHEL-30082 CVE-2024-26642 - netfilter: nftables: mark set as dea...

7.1CVSS6.9AI score0.00983EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/05/23 7:36 a.m.82 views

Moderate: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.1CVSS6.6AI score0.00983EPSS
Exploits0References5
Redos
Redos
added 2024/04/04 12:0 a.m.30 views

ROS-20240404-18

Vulnerability in the OpenVAS database management system's OpenVAS scanning and vulnerability management tool MariaDB is associated with uncontrolled resource consumption when connecting to ports 3306 and 4567. Exploitation exploitation of the vulnerability could allow a remote attacker to cause a...

7.5CVSS6.8AI score0.02021EPSS
Exploits0
OSV
OSV
added 2024/03/06 10:55 a.m.18 views

BIT-MARIADB-2023-5157 Mariadb: node crashes with transport endpoint is not connected mysqld got signal 6

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service...

7.5CVSS7.1AI score0.02021EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.26 views

openSUSE: Security Advisory for chromium (openSUSE-SU-2022:10138-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.00713EPSS
Exploits6References2
OSV
OSV
added 2024/01/24 8:23 p.m.7 views

MAL-2024-473 Malicious code in wlwz-2312-3306 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e6fb0515359e7dad3e48666e86ee03e74725ee3c58c53c7d30d5502e2e40f5ea Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/12/04 9:57 a.m.4 views

mariadb: node crashes with Transport endpoint is not connected mysqld got signal 6

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service...

7.5CVSS5.8AI score0.02021EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/11/13 8:57 a.m.6 views

mariadb: node crashes with Transport endpoint is not connected mysqld got signal 6

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service...

7.5CVSS5.8AI score0.02021EPSS
Exploits0References4
Rows per page
Query Builder