Amazon Linux 2 : cri-tools, --advisory ALAS2-2026-3310 (ALAS-2026-3310)

The version of cri-tools installed on the remote host is prior to 1.32.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3310 advisory. Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can allow XSS if the meta...

CVE-2026-27466

BigBlueButton is an open-source virtual classroom. In versions 3.0.21 and below, the official documentation for "Server Customization" on Support for ClamAV as presentation file scanner contains instructions that leave a BBB server vulnerable for Denial of Service. The flawed command exposes both...

CVE-2026-27466

BigBlueButton is an open-source virtual classroom. In versions 3.0.21 and below, the official documentation for "Server Customization" on Support for ClamAV as presentation file scanner contains instructions that leave a BBB server vulnerable for Denial of Service. The flawed command exposes both...

MiracleLinux 7 : rh-postgresql96-postgresql-9.6.10-1.el7 (AXSA:2018-3310:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-3310:01 advisory. postgresql: Certain host connection parameters defeat client-side security defenses CVE-2018-10915 postgresql: Missing authorization and memory...

EUVD-2019-3310

Malware in sbrugna...

CVE-2015-3310 affecting package ppp for versions less than 2.5.0-1

CVE-2015-3310 affecting package ppp for versions less than 2.5.0-1. An upgraded version of the package is available that resolves this issue...

CVE-2021-3310

Western Digital My Cloud OS 5 devices before 5.10.122 mishandle Symbolic Link Following on SMB and AFP shares. This can lead to code execution and information disclosure by reading local files...

CVE-2025-3310

A vulnerability classified as critical has been found in code-projects Blood Bank Management System 1.0. This affects an unknown part of the file /admin/delete.php. The manipulation of the argument Search leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-3310

creationtimestamp| type| source ---|---|--- 2025-04-06 06:38:03+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10629 2025-04-06 09:00:44+00:00| published-proof-of-concept| Telegram/cOa7k6srWq52nd1YflUDAhFMyZGYnjyZ5Mbc9NhhnabllQ 2025-04-06 09:12:37+00:00| seen|...

CVE-2025-3310

CVE-2025-3310 affects the code-projects Blood Bank Management System 1.0. The flaw is in the /admin/delete.php file where manipulating the Search parameter enables an SQL injection. Remote exploitation is possible, and the exploit has been disclosed publicly. Multiple sources corroborate the vuln...

CVE-2025-3310 code-projects Blood Bank Management System delete.php sql injection

A vulnerability classified as critical has been found in code-projects Blood Bank Management System 1.0. This affects an unknown part of the file /admin/delete.php. The manipulation of the argument Search leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

Linux Distros Unpatched Vulnerability : CVE-2015-3310

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the rcmksid function in plugins/radius/util.c in Paul's PPP Package ppp 2.4.6 and earlier, when the PID for pppd is greater than 65535, allow...

openSUSE: Security Advisory for chromium (openSUSE-SU-2022:10138-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-3310

CVE-2023-3310 affects code-projects Agro-School Management System 1.0, with SQL injection in loaddata.php triggered by manipulating the subject/course parameter. Multiple connected sources confirm remote attack potential and public disclosure of exploitation. The issue targets an unknown function...

DEBIAN-CVE-2022-3310

Insufficient policy enforcement in custom tabs in Google Chrome on Android prior to 106.0.5249.62 allowed an attacker who convinced the user to install an application to bypass same origin policy via a crafted application. Chromium security severity: Medium...

CVE-2022-3310

Insufficient policy enforcement in custom tabs in Google Chrome on Android prior to 106.0.5249.62 allowed an attacker who convinced the user to install an application to bypass same origin policy via a crafted application. Chromium security severity: Medium...

CVE-2022-3310

Insufficient policy enforcement in custom tabs in Google Chrome on Android prior to 106.0.5249.62 allowed an attacker who convinced the user to install an application to bypass same origin policy via a crafted application. Chromium security severity: Medium...

CVE-2022-3310

Insufficient policy enforcement in custom tabs in Google Chrome on Android prior to 106.0.5249.62 allowed an attacker who convinced the user to install an application to bypass same origin policy via a crafted application. Chromium security severity: Medium...

CVE-2022-3310

CVE-2022-3310 : Affects Google Chrome/Chromium. The issue is described as insufficient policy enforcement in Custom Tabs, enabling a crafted app installed by the user to bypass the same-origin policy. Root cause: policy enforcement gap in Custom Tabs. Impact stated across sources includes potenti...

Mageia: Security Advisory (MGASA-2022-0357)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...