Linux Distros Unpatched Vulnerability : CVE-2012-3659

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application...

Linux Distros Unpatched Vulnerability : CVE-2015-3659

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The SQLite authorizer in the Storage functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8...

CVE-2023-3659

A vulnerability has been found in SourceCodester AC Repair and Services System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file admin/?page=user/manageuser. The manipulation of the argument firstname/middlename leads to cross site scripting...

CVE-2025-3659

Improper authentication handling was identified in a set of HTTP POST requests affecting the following product families: Digi PortServer TS - prior to and including 82000747AA, build date 06/17/2022 Digi One SP/Digi One SP IA/Digi One IA - prior to and including 82000774Z, build date 10/19/2020...

CVE-2025-3659

creationtimestamp| type| source ---|---|--- 2025-05-12 20:45:06+00:00| seen| https://bsky.app/profile/potato.software/post/3loytm2lzxx2g 2025-05-12 21:29:36+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16050 2025-05-12 21:38:52+00:00| seen|...

CVE-2025-3659

CVE-2025-3659 affects Digi PortServer TS (up to 82000747_AA, build 06/17/2022), Digi One SP/SP IA/IA (up to 82000774_Z, build 10/19/2020), and Digi One IAP (up to 82000770_Z, build 10/19/2020). Root cause: improper authentication handling in a set of HTTP POST requests to the device web interface...

CVE-2025-3659 Improper authentication handling for Digi PortServer TS; Digi One SP, SP IA, IA; Digi One IAP

Improper authentication handling was identified in a set of HTTP POST requests affecting the following product families: Digi PortServer TS - prior to and including 82000747AA, build date 06/17/2022 Digi One SP/Digi One SP IA/Digi One IA - prior to and including 82000774Z, build date 10/19/2020...

CVE-2024-3659

creationtimestamp| type| source ---|---|--- 2024-08-08 16:24:07+00:00| seen| https://t.me/cvedetector/2790...

CVE-2024-3659 Command injection in KAON AR2140 routers

Firmware in KAON AR2140 routers, prior to versions 3.2.50 and 4.2.16, is vulnerable to a shell command injection via sending a crafted request to one of the endpoints. In order to exploit this vulnerability, one has to have access to the administrative portal of the router...

CVE-2024-3659 Command injection in KAON AR2140 routers

Firmware in KAON AR2140 routers, prior to versions 3.2.50 and 4.2.16, is vulnerable to a shell command injection via sending a crafted request to one of the endpoints. In order to exploit this vulnerability, one has to have access to the administrative portal of the router...

AlmaLinux 8 : booth (ALSA-2024:3659)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:3659 advisory. booth: specially crafted hash can lead to invalid HMAC being accepted by Booth server CVE-2024-3049 Tenable has extracted the preceding description block directly...

RHEL 8 : booth (RHSA-2024:3659)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3659 advisory. The Booth cluster ticket manager is a component to bridge high availability clusters spanning multiple sites, in particular, to provide decision inpu...

hk4tutor.com Cross Site Scripting vulnerability OBB-3844711

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2023-3659

creationtimestamp| type| source ---|---|--- 2023-07-13 14:55:17+00:00| seen| https://t.me/cibsecurity/66654...

CVE-2023-3659

CVE-2023-3659 affects SourceCodester AC Repair and Services System 1.0. The vulnerability is a cross-site scripting (XSS) issue in the admin/?page=user/manage_user endpoint, triggered by manipulating the firstname/middlename parameters. Documents consistently describe remote-access capable XSS vi...

CVE-2023-3659 SourceCodester AC Repair and Services System cross site scripting

A vulnerability has been found in SourceCodester AC Repair and Services System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file admin/?page=user/manageuser. The manipulation of the argument firstname/middlename leads to cross site scripting...

Ubuntu 16.04 ESM : Linux kernel vulnerabilities (USN-6014-1)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6014-1 advisory. Xuewei Feng, Chuanpu Fu, Qi Li, Kun Sun, and Ke Xu discovered that the TCP implementation in the Linux kernel did not properly handle IPID assignment. A...

Security fix for the ALT Linux 10 package yandex-browser-stable version 23.1.2.1033-alt1

23.1.2.1033-alt1 built April 4, 2023 Yandex Browser Team in task 317282 March 20, 2023 Yandex Browser Team - browser updated to 23.1.2 + High CVE-2022-4436: Use after free in Blink Media. + High CVE-2022-4437: Use after free in Mojo IPC. + High CVE-2022-4438: Use after free in Blink Frames. + Hig...

Debian: Security Advisory (DLA-560-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2022-0419)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...