112 matches found
CVE-2026-3778
The application does not detect or guard against cyclic PDF object references while handling JavaScript in PDF. When pages and annotations are crafted that reference each other in a loop, passing the document to APIs e.g., SOAP that perform deep traversal can cause uncontrolled recursion, stack...
Foxit PDF Editor < 13.2.3 Multiple Vulnerabilities
According to its version, the Foxit PDF Editor application previously named Foxit PhantomPDF installed on the remote Windows host is prior to 13.2.3. It is, therefore affected by multiple vulnerabilities: Note that Nessus has not tested for this issue but has instead relied only on the...
CVE-2026-3778
creationtimestamp| type| source ---|---|--- 2026-03-30 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0382/ 2026-03-31 14:45:08+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mieg3rhqh224...
GHSA-X288-3778-4HHX
creationtimestamp| type| source ---|---|--- 2026-02-26 01:40:19+00:00| seen| https://gist.github.com/alon710/53d0a446648e9dbad6bc94a3baf5290b...
CGA-3778-G26C-46XX
Bulletin has no description...
CVE-2024-3778
CVE-2024-3778 affects Ai3 QbiBot due to an unrestricted file upload weakness. The issue allows remote attackers with administrator privileges to upload files of dangerous types containing malicious code through the file upload functionality. Affected release range is before 8.0.4; upgrading to 8....
CVE-2024-3778 Ai3 QbiBot - Unrestricted File Upload
The file upload functionality of Ai3 QbiBot does not properly restrict types of uploaded files, allowing remote attackers with administrator privilege to upload files with dangerous type containing malicious code...
CVE-2012-3778
Rejected reason: This candidate is unused by its CNA...
BELL-CVE-2021-3778 CVE-2021-3778 does not affect BellSoft software
Bulletin has no description...
Advisory ROSA-SA-2023-2214
Software: vim 8.0.1763 OS: ROSA Virtualization 2.1 packageevrstring: vim-8.0.1763-19.rv3.4.src.rpm CVE-ID: CVE-2021-3796 BDU-ID: 2021-05417 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the nvreplace function of the VIM text editor is related to memory usage after it has been freed. Exploitation o...
SUSE CVE-2007-3778
The G/PGP GPG Plugin 2.0, and 2.1dev before 20060912, for Squirrelmail allows remote attackers to execute arbitrary commands via shell metacharacters in the messageSignedText parameter to the gpgchecksignpgpmime function in gpghookfunctions.php. NOTE: a parameter value can be set in the contents ...
CVE-2022-3778
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...
CVE-2019-3778
creationtimestamp| type| source ---|---|--- 2022-06-29 18:43:49+00:00| seen| https://t.me/cibsecurity/45366...
CVE-2020-26877
ApiFest OAuth 2.0 Server 0.3.1 does not validate the redirect URI in accordance with RFC 6749 and is susceptible to an open redirector attack. Specifically, it directly sends an authorization code to the redirect URI submitted with the authorization request, without checking whether the redirect...
Authorization
ApiFest OAuth 2.0 Server 0.3.1 does not validate the redirect URI in accordance with RFC 6749 and is susceptible to an open redirector attack. Specifically, it directly sends an authorization code to the redirect URI submitted with the authorization request, without checking whether the redirect...
EulerOS Virtualization 2.10.0 : vim (EulerOS-SA-2022-1415)
According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - vim is vulnerable to Heap-based Buffer Overflow CVE-2021-3778, CVE-2021-3872, CVE-2021-3875, CVE-2021-3903, CVE-2021-3927,...
EulerOS Virtualization 2.10.1 : vim (EulerOS-SA-2022-1389)
According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - vim is vulnerable to Heap-based Buffer Overflow CVE-2021-3778, CVE-2021-3872, CVE-2021-3875, CVE-2021-3903, CVE-2021-3927,...
SUSE SLED15 / SLES15 Security Update : vim (SUSE-SU-2022:0736-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0736-1 advisory. - CVE-2022-0318: Fixed heap-based buffer overflow bsc1195004. - CVE-2021-3796: Fixed use-after-free in nvrepla...
SUSE: Security Advisory (SUSE-SU-2022:0736-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for vim (openSUSE-SU-2022:0736-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...