106 matches found
CVE-2021-3313
Plone CMS until version 5.2.4 has a stored Cross-Site Scripting XSS vulnerability in the user fullname property and the file upload functionality. The user's input data is not properly encoded when being echoed back to the user. This data can be interpreted as executable code by the browser and...
CVE-2010-3313
phpgwapi/js/fckeditor/editor/dialog/fckspellerpages/spellerpages/serverscripts/spellchecker.php in EGroupware 1.4.001+.002; 1.6.001+.002 and possibly other versions before 1.6.003; and EPL 9.1 before 9.1.20100309 and 9.2 before 9.2.20100309; allows remote attackers to execute arbitrary commands v...
CVE-2025-3313
creationtimestamp| type| source ---|---|--- 2025-04-06 08:24:33+00:00| seen| https://bsky.app/profile/potato.software/post/3lm4zgq3dcz2k 2025-04-06 08:37:59+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10634 2025-04-06 09:12:36+00:00| seen|...
CVE-2025-3313 PHPGurukul Men Salon Management System add-customer.php sql injection
A vulnerability, which was classified as critical, was found in PHPGurukul Men Salon Management System 1.0. Affected is an unknown function of the file /admin/add-customer.php. The manipulation of the argument Name leads to sql injection. It is possible to launch the attack remotely. The exploit...
CVE-2025-3313 PHPGurukul Men Salon Management System add-customer.php sql injection
A vulnerability, which was classified as critical, was found in PHPGurukul Men Salon Management System 1.0. Affected is an unknown function of the file /admin/add-customer.php. The manipulation of the argument Name leads to sql injection. It is possible to launch the attack remotely. The exploit...
CVE-2025-3313
CVE-2025-3313 affects PHPGurukul Men Salon Management System 1.0. The vulnerability is in an unknown function of the file /admin/add-customer.php, where manipulation of the Name parameter leads to SQL injection. It is described as exploitable remotely, with the exploit disclosed publicly. The con...
Linux Distros Unpatched Vulnerability : CVE-2017-3313
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: MyISAM. Supported versions that are affected are 5.5.53 and earlier, 5.6.34 an...
CVE-2024-3313
SUBNET Solutions Inc. has identified vulnerabilities in third-party components used in PowerSYSTEM Server 2021 and Substation Server 2021...
CVE-2024-3313
SUBNET Solutions Inc. has identified vulnerabilities in third-party components used in PowerSYSTEM Server 2021 and Substation Server 2021...
CVE-2024-3313 SUBNET PowerSYSTEM Server and Substation Server Reliance on Insufficiently Trustworthy Component
SUBNET Solutions Inc. has identified vulnerabilities in third-party components used in PowerSYSTEM Server 2021 and Substation Server 2021...
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:3313-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for chromium (openSUSE-SU-2022:10138-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2013-3313
creationtimestamp| type| source ---|---|--- 2024-02-26 08:41:45+00:00| published-proof-of-concept| https://t.me/ctinow/193158...
Trellix Enterprise Security Manager < 11.6.7 Command Injection
The version of Trellix Enterprise Security Manager running on the remote web server is prior to 11.6.7. It is, therefore, affected by multiple command injection vulnerabilities. - A vulnerability arises out of a failure to comprehensively sanitize the processing of a zip files. Incomplete...
BELL-CVE-2017-3313 CVE-2017-3313 does not affect BellSoft software
Bulletin has no description...
CVE-2023-3313
creationtimestamp| type| source ---|---|--- 2023-07-03 12:22:24+00:00| seen| https://t.me/cibsecurity/65855...
CVE-2023-3313
CVE-2023-3313 pertains to an OS command injection in the Trellix Enterprise Security Manager (ESM) certificate API, caused by insufficient neutralization of special elements. The vulnerability could let an unauthorized user with local access execute system commands, potentially escalating privile...
MariaDB 5.5.0 < 5.5.55 Multiple Vulnerabilities
The version of MariaDB installed on the remote host is prior to 5.5.55. It is, therefore, affected by multiple vulnerabilities as referenced in the 5.5.55 advisory. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: DDL. Supported versions that are affected are...
MariaDB 10.1.0 < 10.1.22 Multiple Vulnerabilities
The version of MariaDB installed on the remote host is prior to 10.1.22. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.1.22 advisory. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: MyISAM. Supported versions that are affected a...
MariaDB 10.2.0 < 10.2.5 Multiple Vulnerabilities
The version of MariaDB installed on the remote host is prior to 10.2.5. It is, therefore, affected by multiple vulnerabilities as referenced in the 10.2.5 advisory. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: MyISAM. Supported versions that are affected are...