CVE-2026-3464

creationtimestamp| type| source ---|---|--- 2026-04-17 17:20:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mjpgq22aty2c 2026-04-17 18:50:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjplpxhqwg2f 2026-04-17 19:27:20+00:00| seen|...

CVE-2026-3464

The WP Customer Area plugin for WordPress is vulnerable to arbitrary file read and deletion due to insufficient file path validation in the 'ajaxattachfile' function in all versions up to, and including, 8.3.4. This makes it possible for authenticated attackers with a role that an administrator...

AlmaLinux 8 : kernel (ALSA-2026:3464)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:3464 advisory. kernel: Linux kernel: Denial of Service due to a deadlock in hugetlb folio migration CVE-2026-23097 Tenable has extracted the preceding description block directly...

EUVD-2026-3464

On an instance of TwinCAT 3 HMI Server running on a device an authenticated administrator can inject arbitrary content into the custom CSS field which is persisted on the device and later returned via the login page and error page...

CVE-2025-3464

creationtimestamp| type| source ---|---|--- 2025-06-16 09:37:56+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18427 2025-06-16 13:18:04+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114693235260086964 2025-06-16 13:30:10+00:00| seen|...

CVE-2025-3464

A race condition vulnerability exists in Armoury Crate. This vulnerability arises from a Time-of-check Time-of-use issue, potentially leading to authentication bypass. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory for more information...

Asus Armoury Crate AsIO3.sys authorization bypass vulnerability

Talos Vulnerability Report TALOS-2025-2150 Asus Armoury Crate AsIO3.sys authorization bypass vulnerability June 16, 2025 CVE Number CVE-2025-3464 SUMMARY An authorization bypass vulnerability exists in the AsIO3.sys functionality of Asus Armoury Crate 5.9.13.0. A specially crafted hard link can...

CVE-2023-3464

A vulnerability was found in SimplePHPscripts Classified Ads Script 1.8. It has been classified as problematic. Affected is an unknown function of the file /preview.php of the component URL Parameter Handler. The manipulation of the argument p leads to cross site scripting. It is possible to laun...

Debian dla-3464 : libxmltooling-dev - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3464 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3464-1 [email protected] https://www.debian.org/lts/security/...

CGA-MWJ8-H3FR-3464

Bulletin has no description...

RHEL 8 : glibc (RHSA-2024:3464)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3464 advisory. The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name...

CVE-2024-3464

SourceCodester Laundry Management System 1.0 contains a SQL injection in the laporan_filter function (file /application/controller/Pelanggan.php) via the jeniskelamin parameter. This allows remote exploitation with impact on confidentiality, integrity, and availability (CVE-2024-3464). Exploitati...

CVE-2024-3464 SourceCodester Laundry Management System Pelanggan.php laporan_filter sql injection

A vulnerability was found in SourceCodester Laundry Management System 1.0 and classified as critical. This issue affects the function laporanfilter of the file /application/controller/Pelanggan.php. The manipulation of the argument jeniskelamin leads to sql injection. The attack may be initiated...

CVE-2024-3464 SourceCodester Laundry Management System Pelanggan.php laporan_filter sql injection

A vulnerability was found in SourceCodester Laundry Management System 1.0 and classified as critical. This issue affects the function laporanfilter of the file /application/controller/Pelanggan.php. The manipulation of the argument jeniskelamin leads to sql injection. The attack may be initiated...

Oracle Linux 8 : virt-manager (ELSA-2019-3464)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-3464 advisory. 2.2.1-2.0.1 - Add OL release support to virt-install for OL KVM guest creation Orabug: 26135782 2.2.1-2 - man: virt-install: Fix a couple of launchSecurity...

CVE-2023-3464

creationtimestamp| type| source ---|---|--- 2023-06-30 01:59:33+00:00| seen| https://t.me/cibsecurity/65770...

CVE-2023-3464

CVE-2023-3464 affects SimplePHPscripts Classified Ads Script 1.8. The vulnerability is in the URL Parameter Handler for the file /preview.php, where manipulating the parameter p enables cross-site scripting. Exploitation is possible remotely. The issue is tied to an unknown function in /preview.p...

MariaDB 5.5.0 < 5.5.55 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 5.5.55. It is, therefore, affected by multiple vulnerabilities as referenced in the 5.5.55 advisory. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: DDL. Supported versions that are affected are...

CVE-2022-3464

creationtimestamp| type| source ---|---|--- 2022-10-12 14:26:36+00:00| seen| https://t.me/cibsecurity/51258...

CVE-2022-3464

PuppyCMS