Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through pskbcopy CVE-2026-46300 Affected Packages: kernel Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the differenc...

EUVD-2018-3307

Malware in sbrugna...

CVE-2013-3307

Linksys E1000 devices through 2.1.02, E1200 devices before 2.0.05, and E3200 devices through 1.0.04 allow OS command injection via shell metacharacters in the apply.cgi pingip parameter on TCP port 52000...

CVE-2013-3307

Linksys E1000 devices through 2.1.02, E1200 devices before 2.0.05, and E3200 devices through 1.0.04 allow OS command injection via shell metacharacters in the apply.cgi pingip parameter on TCP port 52000...

CVE-2013-3307

Linksys E1000 devices through 2.1.02, E1200 devices before 2.0.05, and E3200 devices through 1.0.04 allow OS command injection via shell metacharacters in the apply.cgi pingip parameter on TCP port 52000...

CVE-2013-3307

Linksys E1000 devices through 2.1.02, E1200 devices before 2.0.05, and E3200 devices through 1.0.04 allow OS command injection via shell metacharacters in the apply.cgi pingip parameter on TCP port 52000. Recent assessments: gwillcox-r7 at November 21, 2021 10:11pm UTC reported: Bug in Linksys...

CVE-2013-3307

CVE-2013-3307 affects Linksys E1000 (≤2.1.02), E1200 (2.1.02, E1200 ≥2.0.05, E3200 >1.0.04. Monitor for updates and apply vendor-provided patches when available.

CVE-2025-3307 code-projects Blood Bank Management System reset.php sql injection

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /reset.php. The manipulation of the argument useremail leads to sql injection. It is possible to launch the attack remotely. The exploit has...

CVE-2025-3307

CVE-2025-3307 affects code-projects Blood Bank Management System 1.0. A vulnerability exists in the reset.php file where manipulation of the useremail parameter enables SQL injection, exploitable remotely. Public disclosures and multiple sources corroborate an active risk, with CVSS metrics indic...

CVE-2024-3307

creationtimestamp| type| source ---|---|--- 2025-03-08 02:35:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6918 2025-03-08 04:36:11+00:00| seen| Telegram/TaaJJZlZWtYrcHaof2QpsrmrvKMj9GTwwjIv0zdB5nPTaa 2025-03-08 05:09:24+00:00| seen| https://t.me/cvedetector/19872...

Linux Distros Unpatched Vulnerability : CVE-2015-3307

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The pharparsemetadata function in ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of...

SUSE SLES12 Security Update : ucode-intel (SUSE-SU-2024:3307-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3307-1 advisory. - Intel CPU Microcode was updated to the 20240910 release bsc1230400 - CVE-2024-23984: Observable discrepancy in RAPL interface for...

Oracle Linux 9 : tomcat (ELSA-2024-3307)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3307 advisory. - Resolves: RHEL-31048 tomcat: Apache Tomcat: WebSocket DoS with incomplete closing handshake CVE-2024-23672 - Resolves: RHEL-31032 tomcat: : Apache...

CVE-2024-3307

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Countdown widget's attributes in all versions up to, and including, 2.4.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...

WordPress HT Mega Plugin <= 2.4.9 is vulnerable to Cross Site Scripting (XSS)

Software HT Mega Type Plugin Vulnerable versions = 2.4.9 Fixed in 2.5.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3307 Patch priority Low CVSS severity Low 6.5 Developer HTMega PSID d87a1e471944 Credits Webbernaut Required privilege Contributor...

openSUSE: Security Advisory for chromium (openSUSE-SU-2022:10138-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Malicious code in wlwz-2312-3307 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4b73e85d19a77bc1751551b2896f78ebc5d2046f0531731fe45ee4cabee9c43b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

SUSE SLES12 Security Update : docker (SUSE-SU-2023:3307-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3307-1 advisory. - Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, an...

CVE-2023-3307

A vulnerability was found in miniCal 1.0.0. It has been rated as critical. This issue affects some unknown processing of the file /booking/showbookings/. The manipulation of the argument searchquery leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to th...

CVE-2023-3307

CVE-2023-3307 affects miniCal 1.0.0 with a SQL injection vulnerability in the /booking/show_bookings/ endpoint via the search_query parameter. Multiple sources confirm remote exploitation chances and public disclosure. Root cause: lack of input validation on the search_query parameter leading to ...