MINI-Q3G8-3485-J6H8

Bulletin has no description...

@solidjs-email/dev-server (=2.0.0), @tanstack/solid-start (>=1.20.3-alpha.1 <=1.167.62) potentially affected by unknown CVE via @tanstack/solid-start-client (>=1.121.0-alpha.28 <=1.166.5)

@tanstack/solid-start-client NPM version =1.121.0-alpha.28, =1.20.3-alpha.1, =1.167.62 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3485...

CVE-2026-3485

CVE-2026-3485 affects the D-Link DIR-868L, specifically the SSDP Service’s function sub_1BF84. Manipulation of the ST argument causes an OS command injection. The vulnerability is remotely exploitable and, per the provided PT-2026-22824 entry, the exploit has been published. The affected devices ...

CVE-2026-3485

A flaw has been found in D-Link DIR-868L 110b03. This affects the function sub1BF84 of the component SSDP Service. This manipulation of the argument ST causes os command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. This vulnerability...

CVE-2026-3485

creationtimestamp| type| source ---|---|--- 2026-03-03 19:49:12+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116166973956093459 2026-03-03 21:59:51+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg6rdczzne2t 2026-03-03 22:03:11+00:00| seen|...

EUVD-2026-3485

A weakness has been identified in CRMEB up to 5.6.3. The impacted element is the function remoteRegister of the file crmeb/app/services/user/LoginServices.php of the component JSON Token Handler. Executing a manipulation of the argument uid can lead to improper authentication. The attack may be...

EUVD-2024-3485

Malicious code in bioql PyPI...

CVE-2025-3485

Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementati...

CVE-2025-3485

CVE-2025-3485 describes a directory traversal in Allegra’s extractFileFromZip that fails to validate a user-supplied path before file operations, enabling remote code execution in the current process with network access. Authentication is required to exploit. Root cause: improper path validation ...

CVE-2025-3485 Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability

Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementati...

CVE-2013-3485

Multiple untrusted search path vulnerabilities in Soda PDF 5.1.183.10520 allow local users to gain privileges via a Trojan horse 1 dwmapi.dll or 2 api-ms-win-core-localregistry-l1-1-0.dll file in the current working directory...

CVE-2025-3485

creationtimestamp| type| source ---|---|--- 2025-04-24 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-254/...

CGA-3485-8HWF-QG35

Bulletin has no description...

CVE-2024-3485

Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure...

CVE-2024-3485 Server-Side Request Forgery vulnerability in iManager

Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure...

CVE-2024-3485

The CVE-2024-3485 entry describes a Server-Side Request Forgery in OpenText iManager 3.2.6.0200. Affected software: OpenText iManager (version 3.2.6.0200). Issue: SSRF in the iManager component that could lead to disclosure of sensitive information. Documented exploit characteristics include CVSS...

CVE-2024-3485 Server-Side Request Forgery vulnerability in iManager

Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure...

CVE-2023-3485

creationtimestamp| type| source ---|---|--- 2023-06-30 22:15:22+00:00| seen| https://t.me/cibsecurity/65823...

CVE-2023-3485 vulnerabilities

Vulnerabilities for packages: tctl...

CVE-2023-3485 Insecure Default Authorization in Temporal Server

Insecure defaults in open-source Temporal Server before version 1.20 on all platforms allows an attacker to craft a task token with access to a namespace other than the one specified in the request. Creation of this task token must be done outside of the normal Temporal server flow. It requires t...