ECHO-72DB-C1B6-3618

Bulletin has no description...

CVE-2026-3618 Columns by BestWebSoft <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'columns' Shortcode 'id' Attribute

The Columns by BestWebSoft plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' shortcode attribute of the printclmns shortcode in all versions up to and including 1.0.3. This is due to insufficient input sanitization and output escaping on the 'id' attribute. The...

MiracleLinux 9 : libtiff-4.4.0-12.el9 (AXSA:2024-8043:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8043:01 advisory. libtiff: infinite loop via a crafted TIFF file CVE-2022-40090 libtiff: segmentation fault in Fax3Encode in libtiff/tiffax3.c CVE-2023-3618 libtiff:...

MiracleLinux 4 : procmail-3.22-25.1.AXS4.1 (AXSA:2014-513:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2014-513:01 advisory. Description : Procmail can be used to create mail-servers, mailing lists, sort your incoming mail into separate folders/files real convenient when subscribing...

RHSA-2024:3618

creationtimestamp| type| source ---|---|--- 2025-07-30 16:46:47+00:00| seen| Telegram/UDN0QHyNz5DHh55Gig1ta7SvJvNsTgD9scj3uks4Mo4aIs...

Advisory ROSA-SA-2025-2895

Software: nginx 1.20.1 OS: rosa-server79 packageevrstring: nginx-1.20.1-22.res7.2 CVE-ID: CVE-2021-3618 BDU-ID: 2022-00351 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the vsftpd FTP server is related to a lack of protection for transmitted data. Exploitation of the vulnerability could allow an...

CVE-2022-3618

creationtimestamp| type| source ---|---|--- 2025-04-29 17:11:58+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13866...

CVE-2025-3618

creationtimestamp| type| source ---|---|--- 2025-04-15 17:55:37+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11872 2025-04-15 18:44:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmuqakz43q24 2025-04-15 21:37:45+00:00| seen| https://t.me/cvedetector/22986 2025-04-29...

CVE-2025-3618 Local Privilege Escalation Vulnerability

A denial-of-service vulnerability exists in the Rockwell Automation ThinManager. The software fails to adequately verify the outcome of memory allocation while processing Type 18 messages. If exploited, a threat actor could cause a denial-of-service on the target software...

CVE-2025-3618

Rockwell Automation ThinManager is affected by CVE-2025-3618. The issue is a denial-of-service vulnerability in ThinManager’s handling of Type 18 messages, caused by inadequate verification of memory-allocation outcomes during processing. The vulnerability targets ThinManager/ThinServer and could...

CVE-2025-3618 Local Privilege Escalation Vulnerability

A denial-of-service vulnerability exists in the Rockwell Automation ThinManager. The software fails to adequately verify the outcome of memory allocation while processing Type 18 messages. If exploited, a threat actor could cause a denial-of-service on the target software...

Linux Distros Unpatched Vulnerability : CVE-2023-3618

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in...

Linux Distros Unpatched Vulnerability : CVE-2021-3618

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, suc...

CVE-2021-3618 affecting package sendmail 8.15.2-46

CVE-2021-3618 affecting package sendmail 8.15.2-46. No patch is available currently...

Photon OS 3.0: Sendmail PHSA-2022-3.0-0382

An update of the sendmail package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-3.0-0382. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 4.0: Libtiff PHSA-2023-4.0-0417

An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0417. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Rocky Linux 8 : kernel update (Moderate) (RLSA-2024:3618)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:3618 advisory. kernel: Marvin vulnerability side-channel leakage in the RSA decryption operation CVE-2023-6240 kernel: Information disclosure in...

RHEL 8 : kernel update (Moderate) (RHSA-2024:3618)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3618 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Marvin vulnerability...

RHEL 9 : nginx (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nginx: memory leak in IPv4 Off Handler CVE-2022-3638 Note that Nessus has not tested for this issue but has instead...

ALSA-2024:2289 Moderate: libtiff security update

The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: infinite loop via a crafted TIFF file CVE-2022-40090 libtiff: segmentation fault in Fax3Encode in libtiff/tiffax3.c CVE-2023-3618 libtiff: integer overflow in tiffcp....