121 matches found
@squawk/mcp (>=0.2.0 <=0.9.0) potentially affected by unknown CVE via @squawk/airway-data (>=0.3.3 <=0.5.3)
@squawk/airway-data NPM version =0.3.3, =0.2.0, =0.9.0 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3439...
CVE-2026-3439
creationtimestamp| type| source ---|---|--- 2026-03-04 12:06:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgaamhtp3f2x...
CVE-2026-3439
A post-authentication Stack-based Buffer Overflow vulnerability in SonicOS certificate handling allows a remote attacker to crash a firewall...
EUVD-2026-3439
Multiple denial-of-service vulnerabilities exist in the affected product. These issues can be triggered through various crafted inputs, including malformed Class 3 messages, memory leak conditions, and other resource exhaustion scenarios. Exploitation may cause the device to become unresponsive...
MiracleLinux 4 : freetype-2.3.11-6.AXS4.8 (AXSA:2012-24:01)
The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-24:01 advisory. The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments...
CGA-HP5X-8CV2-3439
Bulletin has no description...
CVE-2022-3439
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0...
CVE-2025-3439
The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.1.1 via deserialization of untrusted input from the 'fieldvalue' parameter. This makes it possible for...
WordPress Everest Forms plugin <= 3.1.1 - Unauthenticated PHP Object Injection vulnerability
Unauthenticated PHP Object Injection vulnerability discovered by kuaile in WordPress Plugin Everest Forms versions = 3.1.1...
CVE-2025-3439
creationtimestamp| type| source ---|---|--- 2025-04-11 15:37:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmkdyc6bpr2i 2025-04-11 15:48:41+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114320115017132840 2025-04-11 16:27:11+00:00| seen|...
CVE-2025-3439
The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.1.1 via deserialization of untrusted input from the 'fieldvalue' parameter. This makes it possible for...
CVE-2025-3439
The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.1.1 via deserialization of untrusted input from the 'fieldvalue' parameter. This makes it possible for...
CVE-2025-3439 Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress <= 3.1.1 - Unauthenticated PHP Object Injection
The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.1.1 via deserialization of untrusted input from the 'fieldvalue' parameter. This makes it possible for...
CVE-2025-3439
The CVE-2025-3439 entry describes a PHP Object Injection in Everest Forms for WordPress up to version 3.1.1, achieved via deserialization of untrusted input in the field_value parameter. Attackers can inject a PHP object, but impact depends on whether a POP (object payload) chain exists in anothe...
CVE-2024-3439
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /Account/login.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to th...
CentOS 7 : kernel-rt (RHSA-2021:3439)
The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:3439 advisory. - A flaw was found in the Routing decision classifier in the Linux kernel's Traffic Control networking subsystem in the way it handled changing of classificatio...
CVE-2024-3439
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /Account/login.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to th...
CVE-2024-3439
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /Account/login.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to th...
CVE-2024-3439 SourceCodester Prison Management System login.php sql injection
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /Account/login.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to th...
CVE-2010-3439
creationtimestamp| type| source ---|---|--- 2024-02-11 12:06:33+00:00| seen| https://t.me/ctinow/182760...