CVE-2026-3871

creationtimestamp| type| source ---|---|--- 2026-06-02 05:03:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnbsxh4jly2j...

@antv/dipper-widgets (=0.2.1) potentially affected by unknown CVE via @antv/dipper-hooks (=0.2.1)

@antv/dipper-hooks NPM version =0.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/dipper-hooks and may be impacted: - @antv/dipper-widgets =0.2.1 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3871...

EUVD-2026-3871

Unrestricted Upload of File with Dangerous Type vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows Upload a Web Shell to a Web Server.This issue affects Xpro Elementor Addons: from n/a through = 1.4.19.1...

MiracleLinux 7 : httpd24-httpd-2.4.34-23.el7.5 (AXSA:2022-3871:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3871:03 advisory. httpd: modsed: Read/write beyond bounds CVE-2022-23943 httpd: Request splitting via HTTP/2 method injection and modproxy CVE-2021-33193 httpd: NULL...

MiracleLinux 7 : kernel-3.10.0-957.12.1.el7 (AXSA:2019-3871:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-3871:03 advisory. Kernel: KVM: potential use-after-free via kvmioctlcreatedevice CVE-2019-6974 Kernel: KVM: nVMX: use-after-free of the hrtimer for emulation of the...

CVE-2024-3871

creationtimestamp| type| source ---|---|--- 2025-11-20 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-324-06 2025-11-27 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-1026/ 2025-12-01 05:00:00+00:00| seen|...

Linux Distros Unpatched Vulnerability : CVE-2019-3871

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in PowerDNS Authoritative Server before 4.0.7 and before 4.1.7. An insufficient validation of data coming from the user when building ...

GO-2025-3871 Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions in github.com/mattermost/mattermost-plugin-confluence

Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions in github.com/mattermost/mattermost-plugin-confluence...

CVE-2025-3871

creationtimestamp| type| source ---|---|--- 2025-07-16 14:16:41+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114863335052305850 2025-09-09 20:56:45+00:00| seen| MISP/2bceffac-02c3-4c54-a709-6e253b38ec76...

CVE-2025-3871 Broken Access Control Leads to Limited Denial of Service in GoAnywhere MFT 7.8.0 and earlier

Broken access control in Fortra's GoAnywhere MFT prior to 7.8.1 allows an attacker to create a denial of service situation when configured to use GoAnywhere One-Time Password GOTP email two-factor authentication 2FA and the user has not set an email address. In this scenario, the attacker may ent...

CVE-2020-3871

A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.3. An application may be able to execute arbitrary code with kernel privileges...

CVE-2024-3871

The Delta Electronics DVW-W02W2-E2 devices expose a web administration interface to users. This interface implements multiple features that are affected by command injections and stack overflows vulnerabilities. Successful exploitation of these flaws would allow remote unauthenticated attackers t...

CVE-2024-3871

CVE-2024-3871 affects Delta Electronics DVW-W02W2-E2 web administration interface, with versions up to 2.5.2. The issue stems from command injections and stack overflows in the web UI, enabling remote attackers to achieve remote code execution with elevated privileges. The NVD entry states this c...

CVE-2024-3871 Authenticated Remote Command Injection in Delta Electronics DVW

The Delta Electronics DVW-W02W2-E2 devices expose a web administration interface to users. This interface implements multiple features that are affected by command injections and stack overflows vulnerabilities. Successful exploitation of these flaws would allow remote unauthenticated attackers t...

CVE-2024-3871 Authenticated Remote Command Injection in Delta Electronics DVW

The Delta Electronics DVW-W02W2-E2 devices expose a web administration interface to users. This interface implements multiple features that are affected by command injections and stack overflows vulnerabilities. Successful exploitation of these flaws would allow remote unauthenticated attackers t...

CVE-2023-3871

creationtimestamp| type| source ---|---|--- 2023-07-25 02:26:18+00:00| seen| https://t.me/cibsecurity/67190...

CVE-2023-3871

CVE-2023-3871 affects Campcodes Beauty Salon Management System 1.0. The vulnerability is in an unknown part of /admin/edit_category.php where manipulation of the id parameter enables SQL injection. Exploitation can be performed remotely, and public disclosures exist. Connected documents corrobora...

CVE-2021-3871

CVE-2021-3871 is rejected and does not represent an active vulnerability entry.

CentOS 8 : kernel (CESA-2019:3871)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:3871 advisory. - hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write CVE-2019-0155 Note that Nessus has not tested for this issue but has instead...

CVE-2020-3871

CVE-2020-3871 is a memory corruption vulnerability in macOS that may allow an application to execute arbitrary code with kernel privileges. The official Apple advisory for macOS Catalina 10.15.3 notes the issue was fixed in that release (and notes the impact as potentially enabling kernel-level c...