SUSE CVE-2026-3388

A vulnerability was found in Squirrel up to 3.2. This affects the function SQCompiler::Factor/SQCompiler::UnaryOP of the file squirrel/sqcompiler.cpp. Performing a manipulation results in uncontrolled recursion. The attack needs to be approached locally. The exploit has been made public and could...

CVE-2026-3388

creationtimestamp| type| source ---|---|--- 2026-03-01 13:43:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfyunj4z5g2y...

EUVD-2026-3388

A reflected cross-site scripting xss vulnerability exists in the modifyAnonymize functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability...

RockyLinux 8 : python-jinja2 (RLSA-2025:3388)

The remote RockyLinux 8 host has a package installed that is affected by a vulnerability as referenced in the RLSA-2025:3388 advisory. jinja2: Jinja sandbox breakout through attr filter selecting format method CVE-2025-27516 Tenable has extracted the preceding description block directly from the...

CVE-2025-3388

A vulnerability classified as problematic was found in hailey888 oasystem up to 2025.01.01. This vulnerability affects the function loginCheck of the file cn/gson/oasys/controller/login/LoginsController.java of the component Frontend. The manipulation of the argument Username leads to cross site...

CVE-2025-3388

A vulnerability classified as problematic was found in hailey888 oasystem up to 2025.01.01. This vulnerability affects the function loginCheck of the file cn/gson/oasys/controller/login/LoginsController.java of the component Frontend. The manipulation of the argument Username leads to cross site...

CVE-2025-3388

CVE-2025-3388 affects the hailey888 oa_system frontend, specifically the function loginCheck in cn/gson/oasys/controller/login/LoginsController.java . The issue is a cross-site scripting vulnerability caused by manipulation of the Username parameter. The attack can be initiated remotely, and publ...

CGA-W75R-3388-975J

Bulletin has no description...

CGA-G5JQ-3VWF-3388

Bulletin has no description...

CVE-2024-3388

creationtimestamp| type| source ---|---|--- 2024-04-10 20:08:42+00:00| seen| Telegram/KYIaGGUUECfiFFhr1hRQaqqeF1Mr1zoJwWDvL7eDPVKrWpg 2024-04-15 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1270...

CVE-2024-3388 PAN-OS: User Impersonation in GlobalProtect SSL VPN

A vulnerability in the GlobalProtect Gateway in Palo Alto Networks PAN-OS software enables an authenticated attacker to impersonate another user and send network packets to internal assets. However, this vulnerability does not allow the attacker to receive response packets from those internal...

EulerOS Virtualization 2.11.0 : zstd (EulerOS-SA-2023-3388)

According to the versions of the zstd package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in zstd v1.4.10, where an attacker can supply empty string as an argument to the command line tool to caus...

CVE-2023-3388

The CVE-2023-3388 issue affects the WordPress plugin Beautiful Cookie Consent Banner. Affected: WordPress plugin versions up to 2.10.1. Root cause: insufficient input sanitization and output escaping for the nsc_bar_content_href parameter. Impact: stored cross-site scripting allowing unauthentica...

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

RHEL 8 : kernel (RHSA-2023:3388)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3388 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free caused by...

SUSE CVE-2006-3388

Cross-site scripting XSS vulnerability in phpMyAdmin before 2.8.2 allows remote attackers to inject arbitrary web script or HTML via the table parameter...

SUSE CVE-2010-3388

unknown...

Hitachi Energy MicroSCADA Pro/X SYS600 Products (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION : Low attack complexity Vendor : Hitachi Energy Equipment : MicroSCADA X SYS600, MicroSCADA Pro Vulnerability : Improper Use of Validation Framework 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthorized...

CVE-2022-3388

An input validation vulnerability exists in the Monitor Pro interface of MicroSCADA Pro and MicroSCADA X SYS600. An authenticated user can launch an administrator level remote code execution irrespective of the authenticated user's role...

CVE-2022-3388

CVE-2022-3388 affects Hitachi Energy MicroSCADA Pro and MicroSCADA X SYS600. The vulnerability is an input-validation flaw in the Monitor Pro interface (improper use of a validation framework) that allows an authenticated user to perform administrator-level remote code execution regardless of the...