CVE-2026-33304

creationtimestamp| type| source ---|---|--- 2026-03-19 22:22:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhgzzvs5vs2k...

CVE-2026-33304

OpenEMR prior to 8.0.0.2 suffers an authorization bypass in the dated reminders log. Any authenticated non-admin user can view reminder messages belonging to other users, including patient names and free-text content, by crafting a GET request with arbitrary user IDs in the sentTo[] or sentBy[] p...

CVE-2022-33304

creationtimestamp| type| source ---|---|--- 2026-01-20 08:04:59+00:00| seen| https://infosec.exchange/users/certvde/statuses/115926387351405846...

CVE-2021-33304

Double Free vulnerability in virtualsquare picoTCP v1.7.0 and picoTCP-NG v2.1 in modules/picofragments.c in function picofragmentsreassemble, allows attackers to execute arbitrary code...

CVE-2022-33304

Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet...

CVE-2024-33304

SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting XSS via "Last Name" under Add Users...

CVE-2024-33304

SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting XSS via "Last Name" under Add Users...

CVE-2024-33304

CVE-2024-33304 affects SourceCodester Product Show Room 1.0. A Cross Site Scripting (XSS) vulnerability exists via the "Last Name" field under Add Users, enabling script injection. The vulnerability is documented across multiple sources (NVD/Red Hat/CNVD/CVE list/PT-Security/Vulnrichment). The pr...

CVE-2023-33304

A use of hard-coded credentials vulnerability in Fortinet FortiClient Windows 7.0.0 - 7.0.9 and 7.2.0 - 7.2.1 allows an attacker to bypass system protections via the use of static credentials...

CVE-2023-33304

CVE-2023-33304 affects Fortinet FortiClient for Windows (versions 7.0.0–7.0.9 and 7.2.0–7.2.1). The issue is hard-coded credentials that allow bypassing protections via static credentials. According to the sources, exploitation status is not detailed in these documents. Remediation is available: ...

CVE-2022-33304

Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet...

CVE-2022-33304 NULL pointers dereference in Modem

Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet...

CVE-2022-33304

CVE-2022-33304 affects the Modem component and is caused by a NULL pointer dereference during the pullup for received TCP/UDP packets, leading to a transient Denial of Service. The CVSS v3.1 vector indicates network attack, low complexity, no user interaction, with availability impact but no conf...

CVE-2022-33304 NULL pointers dereference in Modem

Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet...

CVE-2021-33304

creationtimestamp| type| source ---|---|--- 2023-02-16 00:37:11+00:00| seen| https://t.me/cibsecurity/58302...

CVE-2021-33304

CVE-2021-33304 is a documented Double Free vulnerability in virtualsquare picoTCP v1.7.0 and picoTCP-NG v2.1, arising in modules/pico_fragments.c within pico_fragments_reassemble. The issue allows arbitrary code execution and is rated CRITICAL (CVSS ~9.8) with network access, no privileges, and n...