CVE-2026-3511

Improper Restriction of XML External Entity Reference vulnerability in XMLUtils.java in Slovensko.Digital Autogram allows remote unauthenticated attacker to conduct SSRF Server Side Request Forgery attacks and obtain unauthorized access to local files on filesystems running the vulnerable...

CVE-2026-3511

creationtimestamp| type| source ---|---|--- 2026-03-19 12:49:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhfzziy5xz2u 2026-03-19 20:00:53+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhgs5dak452s...

CVE-2026-3511

Improper Restriction of XML External Entity Reference vulnerability in XMLUtils.java in Slovensko.Digital Autogram allows remote unauthenticated attacker to conduct SSRF Server Side Request Forgery attacks and obtain unauthorized access to local files on filesystems running the vulnerable...

CVE-2026-3511

Improper Restriction of XML External Entity Reference vulnerability in XMLUtils.java in Slovensko.Digital Autogram allows remote unauthenticated attacker to conduct SSRF Server Side Request Forgery attacks and obtain unauthorized access to local files on filesystems running the vulnerable...

MiracleLinux 4 : java-1.7.0-openjdk-1.7.0.141-2.6.10.1.AXS4 (AXSA:2017-1643:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1643:02 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2017-3509 Vulnerability in the Java SE, Java SE Embedded component of...

MiracleLinux 7 : java-1.7.0-openjdk-1.7.0.141-2.6.10.0.0.1.el7.AXS7 (AXSA:2017-1653:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1653:02 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2017-3509 Vulnerability in the Java SE, Java SE Embedded component of...

MiracleLinux 4 : openssl-1.0.1e-16.AXS4.15 (AXSA:2014-494:04)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-494:04 advisory. Description : The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and...

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.131-2.b11.el7 (AXSA:2017-1623:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1623:02 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2017-3509 RESERVED This candidate has been reserved by an organization...

EUVD-2019-3511

Malware in sbrugna...

CVE-2016-3511 vulnerabilities

Vulnerabilities for packages: openjdk-8-openj9, openjdk-17-openj9, openjdk-21-openj9, openjdk-11-openj9...

CVE-2024-3511

An incorrect authorization vulnerability exists in multiple WSO2 products that allows unauthorized access to versioned files stored in the registry. Due to flawed authorization logic, a malicious actor with access to the management console can exploit a specific bypass method to retrieve versione...

CVE-2024-3511

creationtimestamp| type| source ---|---|--- 2025-06-23 09:44:46+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19193...

CVE-2024-3511 Incorrect Authorization in Multiple WSO2 Products Allows Unauthorized Access to Registry Versioned Files

An incorrect authorization vulnerability exists in multiple WSO2 products that allows unauthorized access to versioned files stored in the registry. Due to flawed authorization logic, a malicious actor with access to the management console can exploit a specific bypass method to retrieve versione...

CVE-2024-3511 Incorrect Authorization in Multiple WSO2 Products Allows Unauthorized Access to Registry Versioned Files

An incorrect authorization vulnerability exists in multiple WSO2 products that allows unauthorized access to versioned files stored in the registry. Due to flawed authorization logic, a malicious actor with access to the management console can exploit a specific bypass method to retrieve versione...

CVE-2024-3511

CVE-2024-3511 concerns an incorrect authorization flaw affecting multiple WSO2 products that allows unauthorized access to versioned files stored in the registry. The root cause is flawed authorization logic that enables bypass via the management console to retrieve versioned files without proper...

CVE-2022-3511

The Awesome Support WordPress plugin before 6.1.2 does not ensure that the exported tickets archive to be downloaded belongs to the user making the request, allowing a low privileged user, such as subscriber to download arbitrary exported tickets via an IDOR vector...

CVE-2021-3511

Disclosure of sensitive information to an unauthorized user vulnerability in Buffalo broadband routers BHR-4GRV firmware Ver.1.99 and prior, DWR-HP-G300NH firmware Ver.1.83 and prior, HW-450HP-ZWE firmware Ver.1.99 and prior, WHR-300HP firmware Ver.1.99 and prior, WHR-300 firmware Ver.1.99 and...

CVE-2013-3511

Open redirect vulnerability in the NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...

CVE-2025-3511

Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric Corporation CC-Link IE TSN Remote I/O module, CC-Link IE TSN Analog-Digital Converter module, CC-Link IE TSN Digital-Analog Converter module, CC-Link IE TSN FPGA module, CC-Link IE TSN Remote Station...

CVE-2025-3511

creationtimestamp| type| source ---|---|--- 2025-04-25 05:42:35+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lnmiyyaostr2 2025-04-25 06:10:57+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13384 2025-04-25 09:09:11+00:00| seen|...