74 matches found
ECHO-3471-FA59-EEB3
Bulletin has no description...
Mattermost Desktop < 5.13.5 / < 6.0.2 / < 6.1.1 Multiple Vulnerabilities (MMSA-2026-00618 / MMSA-2026-00633)
"The version of Mattermost Desktop installed on the remote host is affected by multiple vulnerabilities as referenced in the MMSA-2026-00618 and MMSA-2026-00633 advisories. - Mattermost Desktop App fails to prevent an invalid URL from loading in a pop-up window which allows a malicious server own...
CVE-2026-3471
Mattermost Desktop App versions =6.1 6.0.1 5.4.13.0 fail to prevent an invalid URL from loading in a pop-up window in the Mattermost Desktop App which allows a malicious server owner to repeated crash the application via calling window.open'javascript:alert';. Mattermost Advisory ID: MMSA-2026-00...
EUVD-2026-3471
Not used...
CVE-2010-3471
Session fixation vulnerability in the Workplace aka WP component in IBM FileNet P8 Application Engine P8AE 4.0.2.x before 4.0.2.7-P8AE-FP007 allows remote attackers to hijack web sessions via unspecified vectors...
WordPress SureForms plugin < 1.4.4 - Contributor+ Settings Update vulnerability
Contributor+ Settings Update vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin SureForms versions 1.4.4...
CVE-2025-3471
creationtimestamp| type| source ---|---|--- 2025-04-30 06:14:16+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13984 2025-04-30 09:33:17+00:00| seen| https://t.me/cvedetector/24071 2025-04-30 10:00:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnzjxxjeh32k...
CVE-2025-3471 SureForms < 1.4.4 - Contributor+ Settings Update
The SureForms WordPress plugin before 1.4.4 does not have proper authorisation check when updating its settings via the REST API, which could allow Contributor and above roles to perform such action...
Linux Distros Unpatched Vulnerability : CVE-2014-3471
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in hw/pci/pcie.c in QEMU aka Quick Emulator allows local guest OS users to cause a denial of service QEMU instance crash via hotplu...
Linux Distros Unpatched Vulnerability : CVE-2016-3471
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL 5.5.45 and earlier and 5.6.26 and earlier allows local users to affect confidentiality, integrity, and availability vi...
MAL-2025-3471 Malicious code in story-mcp-hub (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e663c654e00b0eb9bdfecb5446b4c56d8f8799ef600619c3f0577bd30863476b Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
RHEL 6 : mysql55-mysql (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - mysql: unspecified vulnerability in subcomponent: Server: Option CPU July 2016 CVE-2016-3471 - mysql:...
RHEL 5 : mysql (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - mysql: generallog can write to configuration files, leading to privilege escalation CPU Oct 2016...
CVE-2024-3471
The Button Generator WordPress plugin before 3.0 does not have CSRF check in place when bulk deleting, which could allow attackers to make a logged in admin delete buttons via a CSRF attack...
CVE-2024-3471 Button Generator < 3.0 - Button Deletion via CSRF
The Button Generator WordPress plugin before 3.0 does not have CSRF check in place when bulk deleting, which could allow attackers to make a logged in admin delete buttons via a CSRF attack...
RHEL 7 : qemu-kvm-rhev (RHSA-2017:3471)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:3471 advisory. KVM Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provi...
CVE-2011-3471
Rejected reason: This candidate is unused by its CNA...
CVE-2023-3471
creationtimestamp| type| source ---|---|--- 2023-09-06 12:17:57+00:00| seen| https://t.me/cibsecurity/69972...
CVE-2023-3471
Buffer overflow vulnerability in Panasonic KW Watcher versions 1.00 through 2.82 may allow attackers to execute arbitrary code...
CVE-2023-3471
Panasonic KW Watcher contains a local buffer overflow (CWE-119) in versions 1.00–2.82 that can lead to arbitrary code execution. According to JVN/CT data, attack requires local access with user interaction and can impact confidentiality, integrity, and availability. Root cause: improper bounds ch...