SUSE CVE-2026-3351

Improper authorization in the API endpoint GET /1.0/certificates in Canonical LXD 6.6 on Linux allows an authenticated, restricted user to enumerate all certificate fingerprints trusted by the lxd server...

CVE-2026-3351

creationtimestamp| type| source ---|---|--- 2026-03-03 12:54:05+00:00| published-proof-of-concept| https://github.com/canonical/lxd/security/advisories/GHSA-crmg-9m86-636r 2026-03-03 16:19:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg66d5ziry2v 2026-03-04 20:40:05+00:00| see...

CVE-2025-3351

A vulnerability has been found in PHPGurukul Old Age Home Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/login.php. The manipulation of the argument Username leads to sql injection. The attack can be launched remotel...

CVE-2025-3351

creationtimestamp| type| source ---|---|--- 2025-04-07 17:04:20+00:00| seen| https://t.me/cvedetector/22313 2025-08-09 17:25:38+00:00| seen| MISP/a1f4de80-fff0-4971-8020-da8f70ab57ea 2025-09-10 07:00:41+00:00| seen| MISP/a1f4de80-fff0-4971-8020-da8f70ab57ea...

CVE-2025-3351 PHPGurukul Old Age Home Management System login.php sql injection

A vulnerability has been found in PHPGurukul Old Age Home Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/login.php. The manipulation of the argument Username leads to sql injection. The attack can be launched remotel...

CVE-2025-3351 PHPGurukul Old Age Home Management System login.php sql injection

A vulnerability has been found in PHPGurukul Old Age Home Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/login.php. The manipulation of the argument Username leads to sql injection. The attack can be launched remotel...

CVE-2024-3351

creationtimestamp| type| source ---|---|--- 2025-02-14 10:01:40+00:00| seen| Telegram/YpSlW9Q3gWvqOjrDjhBJNBMljeMewOqmOMz1Z9EiPH3GjD64...

CVE-2024-3351

A vulnerability, which was classified as critical, was found in SourceCodester Aplaya Beach Resort Online Reservation System 1.0. This affects an unknown part of the file admin/modroomtype/index.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack...

CVE-2024-3351

SourceCodester Aplaya Beach Resort Online Reservation System 1.0 is affected by a SQL injection in the admin/mod_roomtype/index.php file via the id parameter. Exploitation can be performed remotely and has been disclosed publicly. The CVE entry notes a critical impact (NVD CVSSv3.1: 9.8) with hig...

RHEL 8 : kpatch-patch (RHSA-2023:3351)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:3351 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fixe...

Important: Red Hat Security Advisory: kpatch-patch security update

An update for kpatch-patch is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

CVE-2022-3351

Summary: CVE-2022-3351 affects GitLab EE; an attacker could access a user’s primary email via group member events webhooks. Affected versions: GitLab EE 13.7 through 15.2.5, 15.3 through 15.3.3, and 15.4 through 15.4.0. Root cause/impact: disclosed primary email; impact is limited to confidential...

GitLab 13.7 < 15.2.5 / 15.3 < 15.3.4 / 15.4 < 15.4.1 (CVE-2022-3351)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE affecting all versions starting from 13.7 before 15.2.5, all versions starting from 15.3 before 15.3.4, all versions starting from 15.4 before 15.4.1. A user'...

FreeBSD : Gitlab -- Multiple vulnerabilities (04422df1-40d8-11ed-9be7-454b1dd82c64)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 04422df1-40d8-11ed-9be7-454b1dd82c64 advisory. - Gitlab reports: Denial of Service via cloning an issue Arbitrary PUT request as victim user...

openSUSE: Security Advisory for webkit2gtk3 (SUSE-SU-2022:3351-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2021-3351

creationtimestamp| type| source ---|---|--- 2021-08-02 12:27:11+00:00| seen| https://t.me/cibsecurity/26648...

CVE-2021-3351

OpenPLC runtime V3 (up to 2016-03-14) is affected by a stored XSS on the Device Name field of the Add New Device page. The issue arises from improper handling of input, enabling execution of client-side code. Affected product/version details are stated; no patch/fix is described in the provided d...

SUSE: Security Advisory (SUSE-SU-2018:3351-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:3351-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Cisco SD-WAN Solution Software DoS (cisco-sa-sdw-dos-KWOdyHnB)

A denial of service DoS vulnerability exists in Cisco SD-WAN Solution Software due to improper validation of fields in Cisco SD-WAN peering messages that are encapsulated in UDP packets. An unauthenticated, remote attacker can exploit this issue, by sending crafted UDP messages to the targeted...