CVE-2026-3797

creationtimestamp| type| source ---|---|--- 2026-03-09 03:16:00+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-3797...

CVE-2026-3797 Tiandy Video Surveillance System 视频监控平台 CLS_REST_File.java uploadFile unrestricted upload

A security vulnerability has been detected in Tiandy Video Surveillance System 视频监控平台 7.17.0. The impacted element is the function uploadFile of the file /src/com/tiandy/easy7/core/rest/CLSRESTFile.java. The manipulation of the argument fileName leads to unrestricted upload. The attack may be...

CGA-V2W6-QGW5-3797

Bulletin has no description...

SUSE: Security Advisory (SUSE-SU-2025:3797-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-20723

In gnss driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09920033; Issue ID: MSV-3797...

PT-2025-41879

Name of the Vulnerable Software and Affected Versions gnss driver affected versions not specified Description An out-of-bounds write issue exists in the gnss driver due to an incorrect bounds check. Successful exploitation could lead to local escalation of privilege, requiring an attacker to...

CVE-2024-3797

A vulnerability was found in SourceCodester QR Code Bookmark System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /endpoint/delete-bookmark.php?bookmark=1. The manipulation of the argument bookmark leads to sql injection. The attack can be initiated...

CVE-2022-3797

A vulnerability was found in eolinker apinto-dashboard. It has been rated as problematic. This issue affects some unknown processing of the file /login. The manipulation of the argument callback leads to open redirect. The attack may be initiated remotely. The exploit has been disclosed to the...

CVE-2011-3797

ProjectPier 0.8.0.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by public/upgrade/templates/layout.php and certain other files...

CVE-2025-3797

creationtimestamp| type| source ---|---|--- 2025-04-19 08:39:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ln5qctewf42u 2025-04-19 09:02:33+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3ln5rld33x3r2 2025-04-19...

CVE-2025-3797

A vulnerability classified as critical was found in SeaCMS up to 13.3. This vulnerability affects unknown code of the file /admintopic.php?action=delall. The manipulation of the argument eid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public...

CVE-2025-3797 SeaCMS admin_topic.php sql injection

A vulnerability classified as critical was found in SeaCMS up to 13.3. This vulnerability affects unknown code of the file /admintopic.php?action=delall. The manipulation of the argument eid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public...

CGA-G96J-3797-2HRW

Bulletin has no description...

CGA-3797-X2Q6-6F92

Bulletin has no description...

Debian dla-3797 : frr - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3797 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3797-1 [email protected]...

CVE-2024-3797

CVE-2024-3797 affects SourceCodester QR Code Bookmark System 1.0. The issue is an SQL injection in the /endpoint/delete-bookmark.php?bookmark=1 parameter, enabling remote attacker execution via the bookmark argument. There is public disclosure of the exploit. Affected component is the delete-book...

CVE-2023-3797

A vulnerability, which was classified as critical, was found in Gen Technology Four Mountain Torrent Disaster Prevention and Control of Monitoring and Early Warning System up to 20230712. This affects an unknown part of the file /Duty/AjaxHandle/UploadFloodPlanFileUpdate.ashx. The manipulation of...

CVE-2023-3797 Gen Technology Four Mountain Torrent Disaster Prevention and Control of Monitoring and Early Warning System UploadFloodPlanFileUpdate.ashx unrestricted upload

A vulnerability, which was classified as critical, was found in Gen Technology Four Mountain Torrent Disaster Prevention and Control of Monitoring and Early Warning System up to 20230712. This affects an unknown part of the file /Duty/AjaxHandle/UploadFloodPlanFileUpdate.ashx. The manipulation of...

CVE-2023-3797

CVE-2023-3797 affects Gen Technology Four Mountain Torrent Disaster Prevention and Control of Monitoring and Early Warning System up to 20230712. The vulnerability is in /Duty/AjaxHandle/UploadFloodPlanFileUpdate.ashx, where manipulating the Filedata parameter enables unrestricted file upload. Ex...

CVE-2022-3797

creationtimestamp| type| source ---|---|--- 2022-11-01 19:13:48+00:00| seen| https://t.me/cibsecurity/52388...