212 matches found
MINI-3776-WHGR-G7R4
Bulletin has no description...
CVE-2026-3776
The application does not validate the presence of required appearance AP data before accessing stamp annotation resources. When a PDF contains a stamp annotation missing its AP entry, the code continues to dereference the associated object without a prior null or validity check, which allows a...
Foxit PDF Editor < 13.2.3 Multiple Vulnerabilities
According to its version, the Foxit PDF Editor application previously named Foxit PhantomPDF installed on the remote Windows host is prior to 13.2.3. It is, therefore affected by multiple vulnerabilities: Note that Nessus has not tested for this issue but has instead relied only on the...
CVE-2026-3776
creationtimestamp| type| source ---|---|--- 2026-03-30 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0382/ 2026-03-31 14:45:08+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mieg3rhqh224...
EUVD-2013-3714
Malware in sbrugna...
EUVD-2025-3776
Malicious code in bioql PyPI...
CVE-2021-3776
showdoc is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2025-3776
The Verification SMS with TargetSMS plugin for WordPress is vulnerable to limited Remote Code Execution in all versions up to, and including, 1.5 via the 'targetvrajaxhandler' function. This is due to a lack of validation on the type of function that can be called. This makes it possible for...
CVE-2025-3776
CVE-2025-3776 affects the WordPress Verification SMS with TargetSMS plugin (versions up to 1.5). The vulnerability is a limited Remote Code Execution via the targetvr_ajax_handler function, caused by lack of validation of the callable function type, allowing unauthenticated attackers to execute a...
CVE-2025-3776 Verification SMS with TargetSMS <= 1.5 - Unauthenticated Limited Remote Code Execution
The Verification SMS with TargetSMS plugin for WordPress is vulnerable to limited Remote Code Execution in all versions up to, and including, 1.5 via the 'targetvrajaxhandler' function. This is due to a lack of validation on the type of function that can be called. This makes it possible for...
CVE-2025-3776 Verification SMS with TargetSMS <= 1.5 - Unauthenticated Limited Remote Code Execution
The Verification SMS with TargetSMS plugin for WordPress is vulnerable to limited Remote Code Execution in all versions up to, and including, 1.5 via the 'targetvrajaxhandler' function. This is due to a lack of validation on the type of function that can be called. This makes it possible for...
CVE-2025-3776
creationtimestamp| type| source ---|---|--- 2025-04-24 01:22:24+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/33958 2025-04-24 09:12:10+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13197 2025-04-24 10:15:17+00:00| seen|...
Exploit for CVE-2025-3776
CVE-2025-3776 - Remote Code Execution in "Verification SMS wit...
WordPress Verification SMS with TargetSMS plugin <= 1.5 - Unauthenticated Limited Remote Code Execution vulnerability
Unauthenticated Limited Remote Code Execution vulnerability discovered by Cheng Liu in WordPress Plugin Verification SMS with TargetSMS versions = 1.5...
SUSE: Security Advisory (SUSE-SU-2023:3391-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-3776
The Restaurant Menu – Food Ordering System – Table Reservation plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.3.1. This is due to missing or incorrect nonce validation on several functions called via AJAX actions such as formsaction, setoption...
Security Bulletin: TSSC/IMC is vulnerable to aritrary code execution due to Linux Kernel
Summary TSSC/IMC is vulnerable to arbitrary code execution due to Linux Kernel. A patch that updates the Kernel library has been provided. CVE-2023-2002, CVE-2023-3090, CVE-2023-3390, CVE-2023-3776, CVE-2023-4004, CVE-2023-20593, CVE-2023-35001, CVE-2023-35788. Vulnerability Details...
CGA-3776-MX8V-8579
Bulletin has no description...
Oracle Linux 6 : kernel (ELSA-2024-1831)
The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-1831 advisory. - net/sched: schqfq: account for stab overhead in qfqenqueue CVE-2023-3611 Orabug: 36517546 - net/sched: clsfw: Fix improper refcount update leads to...
CVE-2024-3776 Netvision airPASS - Reflected XSS
The parameter used in the login page of Netvision airPASS is not properly filtered for user input. An unauthenticated remote attacker can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks...