CVE-2026-3679

A vulnerability was identified in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex. Such manipulation of the argument mitlinktype/PPPOEPassword leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...

CVE-2026-3679 Tenda FH451 QuickIndex formQuickIndex stack-based overflow

A vulnerability was identified in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function formQuickIndex of the file /goform/QuickIndex. Such manipulation of the argument mitlinktype/PPPOEPassword leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...

CVE-2026-3679

creationtimestamp| type| source ---|---|--- 2026-03-06 21:36:12+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116184381636813177 2026-03-07 22:15:47+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-3679 2026-03-13 06:33:11+00:00| seen|...

CVE-2022-3679

The Starter Templates by Kadence WP WordPress plugin before 1.2.17 unserialises the content of an imported file, which could lead to PHP object injection issues when an admin import intentionally or not a malicious file and a suitable gadget chain is present on the blog...

CVE-2020-3679

u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music,...

SUSE-SU-2025:01653-1 Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: - Update to version 0.0.20250515T200012 2025-05-15T20:00:12Z jscPED-11136 GO-2025-3657 GO-2025-3670 GO-2025-3671 GO-2025-3672 GO-2025-3678 GO-2025-3679 GO-2025-3680 GO-2025-3682 GO-2025-3683 GO-2025-3684 GO-2025-3686 GO-2025-3687...

CVE-2025-3679

creationtimestamp| type| source ---|---|--- 2025-04-16 09:55:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12002 2025-04-16 10:43:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmwfus6jat2i 2025-04-16 12:31:18+00:00| published-proof-of-concept|...

CVE-2025-3679 PCMan FTP Server HOST Command buffer overflow

A vulnerability, which was classified as critical, was found in PCMan FTP Server 2.0.7. Affected is an unknown function of the component HOST Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...

CVE-2024-3679

creationtimestamp| type| source ---|---|--- 2024-08-29 16:13:06+00:00| seen| https://t.me/cvedetector/4395...

CVE-2024-3679 Premium SEO Pack – WP SEO Plugin <= 1.6.001 - Unauthenticated Information Exposure

The Premium SEO Pack – WP SEO Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.6.001. This makes it possible for unauthenticated attackers to view limited information from password protected posts through the social meta data...

WordPress Premium SEO Pack Plugin <= 1.6.002 is vulnerable to Sensitive Data Exposure

Software Premium SEO Pack Type Plugin Vulnerable versions = 1.6.002 Fixed in N/A OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-3679 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 98f9e0dd703b Credits Krzysztof Zając Required...

CGA-PH92-WRCC-3679

Bulletin has no description...

CVE-2023-3679

creationtimestamp| type| source ---|---|--- 2023-11-30 08:30:33+00:00| seen| https://t.me/cibsecurity/66772...

CVE-2023-3679

The CVE concerns SourceCodester Lost and Found Information System 1.0. Affected component: the HTTP POST Request Handler, specifically the file /classes/Master.php?f=save_inquiry. The vulnerability arises from manipulating the argument id, leading to SQL injection that can be triggered remotely. ...

K23312037: Intel CPU vulnerability CVE-2018-3679

Security Advisory Description Escalation of privilege in Reference UI in Intel Data Center Manager SDK 5.0 and before may allow an unauthorized remote unauthenticated user to potentially execute code via administrator privileges. CVE-2018-3679 Impact There is no impact; F5 products are not affect...

SUSE CVE-2010-3679

Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service mysqld daemon crash via certain arguments to the BINLOG command, which triggers an access of uninitialized memory, as demonstrated by valgrind...

SUSE CVE-2021-3679

A lack of CPU resource in the Linux kernel tracing module functionality in versions prior to 5.14-rc3 was found in the way user uses trace ring buffer in a specific way. Only privileged local users with CAPSYSADMIN capability could use this flaw to starve the resources causing denial of service...

CVE-2022-3679 Starter Templates by Kadence WP < 1.2.17 - Admin+ PHP Object Injection

The Starter Templates by Kadence WP WordPress plugin before 1.2.17 unserialises the content of an imported file, which could lead to PHP object injection issues when an admin import intentionally or not a malicious file and a suitable gadget chain is present on the blog...

CVE-2022-3679 Starter Templates by Kadence WP < 1.2.17 - Admin+ PHP Object Injection

The Starter Templates by Kadence WP WordPress plugin before 1.2.17 unserialises the content of an imported file, which could lead to PHP object injection issues when an admin import intentionally or not a malicious file and a suitable gadget chain is present on the blog...

CVE-2022-3679

CVE-2022-3679 affects the WordPress plugin Starter Templates by Kadence WP prior to version 1.2.17. The issue arises from unserialising the content of an imported file, enabling PHP object injection when an admin imports a malicious file and a suitable gadget chain exists on the blog. Impact is d...