CVE-2026-3705 code-projects Simple Flight Ticket Booking System Adminsearch.php sql injection

A vulnerability was found in code-projects Simple Flight Ticket Booking System 1.0. This issue affects some unknown processing of the file /Adminsearch.php. The manipulation of the argument flightno results in sql injection. It is possible to launch the attack remotely. The exploit has been made...

CVE-2026-3705

CVE-2026-3705 affects code-projects Simple Flight Ticket Booking System 1.0. The vulnerability is an SQL injection in the /Adminsearch.php handling for the flightno parameter, with remote exploitation possible and a public exploit. Multiple connected sources (NVD, Red Hat, EUVD, CVE lists, and PT...

CVE-2026-3705

creationtimestamp| type| source ---|---|--- 2026-03-08 04:16:29+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-3705...

EUVD-2016-10401

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2012-3705

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple iTunes before 10.7, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application...

CVE-2025-3705

A physical attacker with no privileges can gain full control of the affected device due to improper neutralization of special elements used in an OS Command 'OS Command Injection' when loading a config file from a USB drive...

CVE-2025-3705

creationtimestamp| type| source ---|---|--- 2025-07-07 10:00:22+00:00| seen| https://infosec.exchange/users/certvde/statuses/114811366375846832 2025-07-07 10:01:38+00:00| seen| https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3ltejp326l5t2 2025-07-07 11:39:07+00:00| seen|...

Linux Distros Unpatched Vulnerability : CVE-2022-3705

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in vim and classified as problematic. Affected by this issue is the function qfupdatebuffer of the file quickfix.c of the component...

Linux Distros Unpatched Vulnerability : CVE-2016-3705

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The 1 xmlParserEntityCheck and 2 xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 do not properly keep track of the recursion depth, which allows...

Fedora 37 : vim (2022-4bc60c32a2)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-4bc60c32a2 advisory. Security fix for CVE-2022-3705 2139842 - vim upgrade broke :! for displaying terminal output ---- patchlevel 803 ---- The newest upstream commit...

RHEL 5 : libxml2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libxml2: Use after free via namespace node in XPointer ranges CVE-2016-4658 - libxml2: Missing validation...

CVE-2024-3705 Unrestricted Upload of File with Dangerous Type vulnerability in OpenGnsys

Unrestricted file upload vulnerability in OpenGnsys affecting version 1.1.1d Espeto. This vulnerability allows an attacker to send a POST request to the endpoint '/opengnsys/images/MIcons.php' modifying the file extension, due to lack of file extension verification, resulting in a webshell...

Malicious code in wlwz-2312-3705 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 622f15bbb365d08c6076eb998fd3186db4ea48775106c009b58ea35c879a6702 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Dell iDRAC6 Out-of-bounds Write (CVE-2019-3705)

Dell EMC iDRAC6 versions prior to 2.92, iDRAC7/iDRAC8 versions prior to 2.61.60.60, and iDRAC9 versions prior to 3.20.21.20, 3.21.24.22, 3.21.26.22 and 3.23.23.23 contain a stack-based buffer overflow vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerability to...

Rocky Linux 8 : libjpeg-turbo (RLSA-2019:3705)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2019:3705 advisory. - get8bitrow in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service heap-based buffer over-read and...

Ubuntu: Security Advisory (USN-6420-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS : Vim vulnerabilities (USN-6420-1)

The remote Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6420-1 advisory. It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening ...

Oracle Linux 8 : libjpeg-turbo (ELSA-2019-3705)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2019-3705 advisory. - Fix CVE-2018-14498 1687477 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

CVE-2023-3705

The vulnerability exists in CP-Plus NVR due to an improper input handling at the web-based management interface of the affected product. An unauthenticated remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the vulnerable device. Successful exploitation...

CVE-2023-3705

CVE-2023-3705 affects CP-Plus NVR and is caused by improper input handling in the web-based management interface. An unauthenticated remote attacker can send specially crafted HTTP requests to the vulnerable device, potentially exposing sensitive information. The vulnerability is rated HIGH (CVSS...