CVE-2023-3827

A vulnerability was found in Bug Finder Listplace Directory Listing Platform 3.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /listplace/user/ticket/create of the component HTTP POST Request Handler. The manipulation of the argument message leads...

CVE-2025-3827

creationtimestamp| type| source ---|---|--- 2025-04-20 16:01:35+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12616 2025-04-20 18:48:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnbctya4jb2h 2025-04-20 19:34:27+00:00| seen|...

CVE-2025-3827 PHPGurukul Men Salon Management System forgot-password.php sql injection

A vulnerability has been found in PHPGurukul Men Salon Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit...

CVE-2024-3827

creationtimestamp| type| source ---|---|--- 2024-08-02 09:00:02+00:00| seen| https://t.me/cvedetector/2329...

CVE-2024-3827 Spectra Pro <= 1.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Block IDs

The Spectra Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via block ids in all versions up to, and including, 1.1.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with...

WordPress Spectra Pro Plugin <= 1.1.4 is vulnerable to Cross Site Scripting (XSS)

Software Spectra Pro Type Plugin Vulnerable versions = 1.1.4 Fixed in 1.1.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3827 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8933f875d04c Credits Ngô Thiên An ancorn Required...

Debian: Security Advisory (DLA-3827-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AlmaLinux 9 : buildah (ALSA-2024:3827)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:3827 advisory. golang: net/http: memory exhaustion in Request.ParseMultipartForm CVE-2023-45290 jose-go: improper handling of highly compressed data CVE-2024-28180...

Rocky Linux 9 : buildah (RLSA-2024:3827)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:3827 advisory. golang: net/http: memory exhaustion in Request.ParseMultipartForm CVE-2023-45290 jose-go: improper handling of highly compressed data CVE-2024-28180...

Oracle Linux 9 : buildah (ELSA-2024-3827)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3827 advisory. 1.33.7-2.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.33.7-2 - update to the latest content of...

RHEL 9 : buildah (RHSA-2024:3827)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3827 advisory. The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a...

openSUSE: Security Advisory for python (SUSE-SU-2023:3827-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 8 : libtiff (CESA-2023:3827)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:3827 advisory. - processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow e.g., WRITE of size 307203 via a crafted TIFF image...

CVE-2021-3827

creationtimestamp| type| source ---|---|--- 2024-01-28 02:38:37+00:00| seen| https://t.me/arpsyndicate/3168...

Rocky Linux 8 : libtiff (RLSA-2023:3827)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:3827 advisory. - processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow e.g., WRITE of size 307203 via a crafted TIFF image...

CVE-2023-3827

creationtimestamp| type| source ---|---|--- 2023-07-22 12:24:15+00:00| seen| https://t.me/cibsecurity/67114...

CVE-2023-3827

A vulnerability was found in Bug Finder Listplace Directory Listing Platform 3.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /listplace/user/ticket/create of the component HTTP POST Request Handler. The manipulation of the argument message leads...

CVE-2023-3827

CVE-2023-3827 affects Bug Finder Listplace Directory Listing Platform 3.0. The vulnerability is in the HTTP POST Request Handler, specifically the /listplace/user/ticket/create endpoint, where manipulating the message argument leads to cross-site scripting. The attack is described as potentially ...

RHEL 8 : libtiff (RHSA-2023:3827)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:3827 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: heap-based buffer...

CVE-2022-3827

A vulnerability was found in centreon. It has been declared as critical. This vulnerability affects unknown code of the file formContactGroup.php of the component Contact Groups Form. The manipulation of the argument cgid leads to sql injection. The attack can be initiated remotely. The name of t...