61 matches found
CVE-2026-3457
creationtimestamp| type| source ---|---|--- 2026-03-27 11:16:46+00:00| seen| Telegram/hnc41FvgR2VyITu4BVl6HabBwFPEZ-H6ltaZ3k0o3hEQc60 2026-03-27 12:42:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mi25ffwdni2q...
EUVD-2026-3457
HTML Injection vulnerability in Isshue by Bdtask, consisting os an HTML injection due to a lack os proper validation of user input by sending a POST request to '/categoryproductsearch', affecting the 'productname' parameter...
CVE-2022-3457
Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5...
CVE-2025-3457
creationtimestamp| type| source ---|---|--- 2025-04-22 12:03:27+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12837 2025-04-22 15:05:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnfxboafap2r 2025-04-22 16:43:53+00:00| seen|...
CVE-2025-3457
The CVE-2025-3457 entry describes a Stored Cross-Site Scripting (XSS) vulnerability in the WordPress Ocean Extra plugin (versions up to and including 2.4.6) that is exploitable by authenticated attackers with contributor-level access and above via the oceanwp_icon shortcode. The issue arises from...
CVE-2025-3457 Ocean Extra <= 2.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
The Ocean Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'oceanwpicon' shortcode in all versions up to, and including, 2.4.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2025-3457 Ocean Extra <= 2.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
The Ocean Extra plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'oceanwpicon' shortcode in all versions up to, and including, 2.4.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
WordPress Ocean Extra plugin <= 2.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode vulnerability discovered by muhammad yudha in WordPress Plugin Ocean Extra versions = 2.4.6...
SUSE: Security Advisory (SUSE-SU-2024:3457-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-3457 Netentsec NS-ASG Application Security Gateway config_ISCGroupNoCache.php sql injection
A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/configISCGroupNoCache.php. The manipulation of the argument GroupId leads to sql injection. It is possible to initiate the attack remotely. T...
CVE-2023-3457
creationtimestamp| type| source ---|---|--- 2023-06-29 18:14:30+00:00| seen| https://t.me/cibsecurity/65725 2024-01-03 22:54:24+00:00| seen| https://t.me/arpsyndicate/2375...
CVE-2023-3457
The CVE-2023-3457 entry concerns SourceCodester Shopping Website 1.0, with a vulnerability in the index.php file where manipulating the username parameter enables SQL injection. This allows remote exploitation and the exploit has been disclosed publicly. Affected component: index.php function han...
CVE-2022-3457
Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5...
CVE-2022-3457 Origin Validation Error in ikus060/rdiffweb
Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5...
CVE-2022-3457 Origin Validation Error in ikus060/rdiffweb
Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5...
CVE-2022-3457 Origin Validation Error in ikus060/rdiffweb
Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5...
CVE-2022-3457
CVE-2022-3457 documents an Origin Validation Error in the rdiffweb project by ikus060, prior to version 2.5.0a5. The issue arises from improper origin validation in web traffic, enabling an access-control-related vulnerability. Public references in GHSA and OSV entries corroborate the same adviso...
SUSE: Security Advisory (SUSE-SU-2022:3457-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-3457
creationtimestamp| type| source ---|---|--- 2021-07-06 10:20:12+00:00| published-proof-of-concept| https://t.me/techb0ltGenona/2703...
CVE-2021-3457
CVE-2021-3457 describes an improper authorization flaw in the Foreman Shellhooks plugin for the smart-proxy. The vulnerability allows an authenticated local attacker to access and delete resources and can cause a denial of service on the Foreman server. Affected component: smart_proxy_shellhooks ...