GHSA-9PRC-PP2C-3427

creationtimestamp| type| source ---|---|--- 2026-04-21 03:18:04+00:00| seen| Telegram/QlBPoNymR9hPCPyX2NtJM9uRRriKED-kqAlb1qrMP0xHygk...

CVE-2026-3427

creationtimestamp| type| source ---|---|--- 2026-03-22 03:16:24+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-3427 2026-03-22 06:02:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhmuoqvwcb2o 2026-04-15 08:56:29+00:00| seen|...

MINI-3427-9W6P-PF3F

Bulletin has no description...

EUVD-2026-3427

A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. During execution of the Achilles EtherNet/IP Step Limits Storms tests, the device reboots unexpectedly, causing the Link State Monitor to go down for several seconds...

MiracleLinux 4 : java-1.8.0-openjdk-1.8.0.91-0.b14.AXS4 (AXSA:2016-213:03)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-213:03 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2016-0686 RESERVED This candidate has been reserved by an organization ...

MINI-P2MQ-8QJ7-3427

Bulletin has no description...

CVE-2016-3427 vulnerabilities

Vulnerabilities for packages: openjdk-8-openj9, openjdk-17-openj9, openjdk-21-openj9, openjdk-11-openj9...

CVE-2023-3427

The Salon Booking System plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 8.4.6. This is due to missing or incorrect nonce validation on the 'savecustomer' function. This makes it possible for unauthenticated attackers to change the admin role to...

CVE-2025-3427 3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'infill_text'

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'infilltext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

CVE-2025-3427 3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'infill_text'

The 3DPrint Lite plugin for WordPress is vulnerable to SQL Injection via the 'infilltext' parameter in all versions up to, and including, 2.1.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

openSUSE Security Advisory (SUSE-SU-2024:3427-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: kpatch-patch security update

An update for kpatch-patch is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

CVE-2024-3427 SourceCodester Online Courseware addq.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Online Courseware 1.0. This affects an unknown part of the file addq.php. The manipulation of the argument id leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

CVE-2024-3427

CVE-2024-3427 affects SourceCodester Online Courseware 1.0. The vulnerable component is the file addq.php where the id parameter can be manipulated to cause a cross-site scripting (XSS). Root cause: unsafely handled user input leading to XSS. Impact: potential remote exploitation; the exploit has...

CVE-2024-3427 SourceCodester Online Courseware addq.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Online Courseware 1.0. This affects an unknown part of the file addq.php. The manipulation of the argument id leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

CVE-2023-3427

creationtimestamp| type| source ---|---|--- 2023-06-28 07:17:36+00:00| seen| https://t.me/cibsecurity/65601...

CVE-2023-3427

The Salon Booking System plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 8.4.6. This is due to missing or incorrect nonce validation on the 'savecustomer' function. This makes it possible for unauthenticated attackers to change the admin role to...

CVE-2023-3427

CVE-2023-3427 affects the WordPress Salon Booking System plugin. The vulnerability is a Cross-Site Request Forgery due to missing/incorrect nonce validation in the save_customer function, allowing unauthenticated attackers to change the admin role to customer or modify user meta via a forged requ...

WordPress Salon booking system Plugin <= 8.4.7 is vulnerable to Cross Site Request Forgery (CSRF)

Software Salon booking system Type Plugin Vulnerable versions = 8.4.7 Fixed in 8.4.8 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-3427 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 8fa98b8f0a46 Credits István Márton...

Important: Red Hat Security Advisory: cups-filters security update

An update for cups-filters is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...