MINI-G3FF-3964-P7CG

Bulletin has no description...

CVE-2026-3964

A weakness has been identified in OpenAkita up to 1.24.3. This impacts the function run of the file src/openakita/tools/shell.py of the component Chat API Endpoint. Executing a manipulation of the argument Message can lead to os command injection. The attack is restricted to local execution. The...

CVE-2026-3964

creationtimestamp| type| source ---|---|--- 2026-03-11 22:16:01+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-3964...

RHSA-2026:3964 Red Hat Security Advisory: kernel-rt security update

Bulletin has no description...

NewStart CGSL MAIN 6.06 (SP) : motif Vulnerability (NS-SA-2026-0003)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has motif packages installed that are affected by a vulnerability: - Multiple buffer overflows in libUil libUil.so in OpenMotif 2.2.3, and possibly other versions, allows attackers to execute arbitrary code via the 1 diagissuediagnostic...

EUVD-2025-26384

Malicious code in bioql PyPI...

CVE-2025-20705

In monitorhang, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09989078; Issue ID: MSV-3964...

Linux Distros Unpatched Vulnerability : CVE-2022-3964

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZ...

CVE-2023-3964

An issue has been discovered in GitLab affecting all versions starting from 13.2 before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. It was possible for users to access composer packages on public projects that have package registry disable...

CVE-2013-3964

Cross-site scripting XSS vulnerability in Samsung SHR-5162, SHR-5082, and possibly other models, allows remote attackers to inject arbitrary web script or HTML via the PATHINFO...

CVE-2025-3964

A vulnerability, which was classified as problematic, was found in withstars Books-Management-System 1.0. Affected is an unknown function of the file /api/article/del of the component Article Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack...

CVE-2025-3964

withstars Books-Management-System 1.0 is vulnerable in the Article Handler’s /api/article/del endpoint to cross-site request forgery (CSRF). The unknown function of this API is manipulated to trigger CSRF, potentially allowing remote exploitation. Public exploitation is noted in the sources, and ...

CVE-2025-3964 withstars Books-Management-System Article del cross-site request forgery

A vulnerability, which was classified as problematic, was found in withstars Books-Management-System 1.0. Affected is an unknown function of the file /api/article/del of the component Article Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack...

CVE-2025-3964 withstars Books-Management-System Article del cross-site request forgery

A vulnerability, which was classified as problematic, was found in withstars Books-Management-System 1.0. Affected is an unknown function of the file /api/article/del of the component Article Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack...

Debian: Security Advisory (DLA-3964-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] ffmpeg

New ffmpeg packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/ffmpeg-4.4.5-i586-1slack15.0.txz: Upgraded. This update addresses several vulnerabilities in FFmpeg which could result in denial of service, or...

Slackware Linux 15.0 ffmpeg Multiple Vulnerabilities (SSA:2024-235-01)

The version of ffmpeg installed on the remote host is prior to 4.4.5. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-235-01 advisory. New ffmpeg packages are available for Slackware 15.0 to fix security issues. Tenable has extracted the preceding description...

CVE-2024-3964

The Product Enquiry for WooCommerce WordPress plugin before 3.1.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite...

CVE-2024-3964 Product Enquiry for WooCommerce < 3.1.8 - Admin+ Stored XSS

The Product Enquiry for WooCommerce WordPress plugin before 3.1.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite...

openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:3964-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...