CVE-2026-3514

creationtimestamp| type| source ---|---|--- 2026-06-02 09:33:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mncc22cyky27 2026-06-04 09:01:06+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnhb6gfwns2p...

EUVD-2022-35084

Malicious code in bioql PyPI...

Alibaba Cloud Linux 3 : 0045: 389-ds:1.4 (ALINUX3-SA-2021:0045)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2021:0045 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-3514: When using a syncrepl client in...

CVE-2025-3514

The SureForms WordPress plugin before 1.4.4 does not sanitise and escape some of its Form settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2025-3514

creationtimestamp| type| source ---|---|--- 2025-05-02 06:15:13+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14442 2025-05-02 08:00:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo6e7paniy2e 2025-05-02 09:15:13+00:00| seen| https://t.me/cvedetector/24332...

CVE-2025-3514 SureForms < 1.4.4 - Admin+ Stored XSS

The SureForms WordPress plugin before 1.4.4 does not sanitise and escape some of its Form settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

Linux Distros Unpatched Vulnerability : CVE-2012-3514

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OCaml Xml-Light Library before r234 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent...

RHEL 6 : ocaml-xml-light (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - ocaml-xml-light: hash table collisions CPU usage DoS CVE-2012-3514 Note that Nessus has not tested for this issue b...

RHEL 8 : redhat-ds:11 (RHSA-2021:3955)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3955 advisory. Red Hat Directory Server is an LDAPv3-compliant directory server. The suite of packages includes the Lightweight Directory Access Protocol...

RHEL 8 : redhat-ds:11.3 (RHSA-2022:0952)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0952 advisory. Red Hat Directory Server is an LDAPv3-compliant directory server. The suite of packages includes the Lightweight Directory Access Protocol...

CVE-2024-3514

...

CVE-2024-3514

...

GitLab 6.6 < 15.5.7 / 15.6 < 15.6.4 / 15.7 < 15.7.2 (CVE-2022-3514)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions starting from 6.6 before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. An...

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : 389 Directory Server vulnerabilities (USN-5231-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5231-1 advisory. It was discovered that 389 Directory Server presented to users, during authentication, an error message which could be used to...

CVE-2023-3514

Improper Privilege Control in RazerCentralSerivce Named Pipe in Razer RazerCentral =7.11.0.558 on Windows allows a malicious actor with local access to gain SYSTEM privilege via communicating with the named pipe as a low-privilege user and calling "AddModule" or "UninstallModules" command to...

CVE-2023-3514 RazerCentralSerivce Unsafe Named Pipe Permission Escalation of Privilege Vulnerability

Improper Privilege Control in RazerCentralSerivce Named Pipe in Razer RazerCentral =7.11.0.558 on Windows allows a malicious actor with local access to gain SYSTEM privilege via communicating with the named pipe as a low-privilege user and calling "AddModule" or "UninstallModules" command to...

CVE-2023-3514

CVE-2023-3514 αφορά RazerCentralService Named Pipe en Windows. Vulnerabilidad de control de privilegios: un actor local con acceso puede, usando el Named Pipe como usuario de bajo privilege, ejecutar AddModule o UninstallModules para lanzar archivos ejecutables arbitrarios y ganar privilegios SYS...

Debian dla-3399 : 389-ds - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3399 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3399-1 [email protected]...

[SECURITY] [DLA 3399-1] 389-ds-base security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3399-1 [email protected] https://www.debian.org/lts/security/ Anton Gladky April 24, 2023 https://wiki.debian.org/LTS -...

Ubuntu: Security Advisory (USN-5231-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...