CVE-2026-3528 Calculation Fields - Moderately critical - Cross-site Scripting - SA-CONTRIB-2026-023

Improper Neutralization of Input During Web Page Generation "Cross-site Scripting" vulnerability in Drupal Calculation Fields allows Cross-Site Scripting XSS.This issue affects Calculation Fields: from 0.0.0 before 1.0.4...

CVE-2025-3528

creationtimestamp| type| source ---|---|--- 2025-05-09 12:26:49+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15715 2025-05-09 12:41:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3loqh7e4kk52l 2025-05-09 12:53:16+00:00| seen|...

CVE-2025-3528

A flaw was found in the Mirror Registry. The quay-app container shipped as part of the Mirror Registry for OpenShift has write access to the /etc/passwd. This flaw allows a malicious actor with access to the container to modify the passwd file and elevate their privileges to the root user within...

CVE-2025-3528 Mirror-registry: local privilege escalation due to incorrect permissions in mirror-registry

A flaw was found in the Mirror Registry. The quay-app container shipped as part of the Mirror Registry for OpenShift has write access to the /etc/passwd. This flaw allows a malicious actor with access to the container to modify the passwd file and elevate their privileges to the root user within...

CVE-2025-3528 Mirror-registry: local privilege escalation due to incorrect permissions in mirror-registry

A flaw was found in the Mirror Registry. The quay-app container shipped as part of the Mirror Registry for OpenShift has write access to the /etc/passwd. This flaw allows a malicious actor with access to the container to modify the passwd file and elevate their privileges to the root user within...

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20250318T181448 2025-03-18T18:14:48Z jscPED-11136: GO-2025-3448 GHSA-23qp-3c2m-xx6w GO-2025-3516 GHSA-47ww-ff84-4jrg GO-2025-3517 GHSA-4wf3-5qj9-368v GO-2025-3525 GHSA-93mq-9ffx-83m2 GO-2025-3527...

Linux Distros Unpatched Vulnerability : CVE-2014-3528

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Subversion 1.0.0 through 1.7.x before 1.7.17 and 1.8.x before 1.8.10 uses an MD5 hash of the URL and authentication realm to store cached credentials,...

CVE-2024-3528

creationtimestamp| type| source ---|---|--- 2025-02-19 22:21:29+00:00| seen| Telegram/WPVmY2QdyvheSL2lRVumyWSYYgld-uk9NkZlwr-6qYp8oq...

CVE-2024-3528 Campcodes Complete Online Student Management System units_view.php cross site scripting

A vulnerability was found in Campcodes Complete Online Student Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file unitsview.php. The manipulation of the argument FirstRecord leads to cross site scripting. The attack may be launche...

openSUSE: Security Advisory for php7 (SUSE-SU-2023:3528-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-3528

creationtimestamp| type| source ---|---|--- 2023-07-06 22:20:30+00:00| seen| https://t.me/cibsecurity/66152...

CVE-2023-3528

A vulnerability was found in ThinuTech ThinuCMS 1.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file /category.php. The manipulation of the argument catid leads to sql injection. The attack may be launched remotely. The identifier of this...

CVE-2022-3528

creationtimestamp| type| source ---|---|--- 2022-10-16 22:42:16+00:00| seen| https://t.me/cibsecurity/51536...

CVE-2022-3528

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

Mageia: Security Advisory (MGASA-2014-0338)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2021:3528-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Moderate: Red Hat Security Advisory: Red Hat OpenShift Container Storage 4.7.0 security, bug fix, and enhancement update

Updated images which include numerous security fixes, bug fixes, and enhancements are now available for Red Hat OpenShift Container Storage 4.7.0 on Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring...

CVE-2021-3528

CVE-2021-3528 affects noobaa-operator (versions before 5.7.0). The root cause is leakage of internal RPC AuthTokens between the noobaa operator and the noobaa core into log files. An attacker with access to those logs could use the leaked AuthToken to gain additional access to the noobaa deployme...

CVE-2020-3528

CVE-2020-3528 describes a DoS vulnerability in the OSPFv2 implementation of Cisco ASA and Firepower Threat Defense (FTD) software. The issue arises from incomplete input validation when processing certain OSPFv2 packets with Link-Local Signaling (LLS) data, which could allow an unauthenticated, r...

Denial Of Service (DoS)

Subversion SVN is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of all changes. The moddavsvn module is used with the Apache HTTP Server to allow access to Subversion...