Lucene search
K

150 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.3 views

Azure Linux 3.0 Security Update: edk2 (CVE-2022-3996)

The version of edk2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-3996 advisory. - If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write...

7.5CVSS7.4AI score0.01629EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 1:59 a.m.9 views

CVE-2023-3996

The ARMember Lite - Membership Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 4.0.16 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.8CVSS6AI score0.00456EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:20 p.m.3 views

CVE-2012-3996

TikiWiki CMS/Groupware 8.3 and earlier allows remote attackers to obtain the installation path via a direct request to 1 admin/includecalendar.php, 2 tiki-rsserror.php, or 3 tiki-watershedservice.php...

5CVSS7AI score0.04586EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/05/19 1:24 a.m.9 views

WordPress Post Grid, Post Carousel, & List Category Posts plugin < 2.4.28 - Editor+ Stored XSS vulnerability

Editor+ Stored XSS vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Post Grid, Post Carousel, & List Category Posts – by Smart Post Show versions 2.4.28...

3.5CVSS6AI score0.00271EPSS
Exploits1References1Affected Software1
Circl
Circl
added 2025/05/15 8:33 p.m.4 views

CVE-2024-3996

creationtimestamp| type| source ---|---|--- 2025-05-15 20:33:43+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16561...

3.5CVSS4.8AI score0.00271EPSS
Exploits1References1
NVD
NVD
added 2025/05/15 8:15 p.m.8 views

CVE-2024-3996

The Smart Post Show WordPress plugin before 2.4.28 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

3.5CVSS0.00271EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/15 8:9 p.m.14 views

CVE-2024-3996 Post Grid, Post Carousel, & List Category Posts < 2.4.28 - Editor+ Stored XSS

The Smart Post Show WordPress plugin before 2.4.28 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

0.00271EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/15 8:9 p.m.5 views

CVE-2024-3996 Post Grid, Post Carousel, & List Category Posts < 2.4.28 - Editor+ Stored XSS

The Smart Post Show WordPress plugin before 2.4.28 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.7AI score0.00271EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/30 2:15 a.m.15 views

CVE-2025-3996

A vulnerability was found in TOTOLINK N150RT 3.4.0-B20190525. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /home.htm of the component MAC Filtering Page. The manipulation of the argument Comment leads to cross site scripting. The attack may be...

4.8CVSS6.2AI score0.00307EPSS
Exploits1References1
Circl
Circl
added 2025/04/28 3:45 a.m.9 views

CVE-2025-3996

creationtimestamp| type| source ---|---|--- 2025-04-28 03:45:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lntu45ij662b 2025-04-28 07:22:21+00:00| seen| https://t.me/cvedetector/23881...

4.8CVSS3.9AI score0.00307EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/04/28 2:0 a.m.15 views

CVE-2025-3996 TOTOLINK N150RT MAC Filtering Page home.htm cross site scripting

A vulnerability was found in TOTOLINK N150RT 3.4.0-B20190525. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /home.htm of the component MAC Filtering Page. The manipulation of the argument Comment leads to cross site scripting. The attack may be...

4.8CVSS0.00307EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/04/28 2:0 a.m.5 views

CVE-2025-3996 TOTOLINK N150RT MAC Filtering Page home.htm cross site scripting

A vulnerability was found in TOTOLINK N150RT 3.4.0-B20190525. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /home.htm of the component MAC Filtering Page. The manipulation of the argument Comment leads to cross site scripting. The attack may be...

4.8CVSS3.5AI score0.00307EPSS
Exploits1References5
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.54 views

CVE-2021-3996 affecting package util-linux 2.32.1-7

CVE-2021-3996 affecting package util-linux 2.32.1-7. This CVE either no longer is or was never applicable...

5.5CVSS5.9AI score0.00634EPSS
Exploits3
Oracle linux
Oracle linux
added 2024/11/22 12:0 a.m.49 views

edk2 security update

Mon Sep 09 2024 Aaron Young - Create new 20240909 release for OL9 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access Orabug: 36990130 CVE-2024-1298 - EDK...

7.5CVSS7.4AI score0.95764EPSS
Exploits28
CBLMariner
CBLMariner
added 2024/08/14 8:42 p.m.18 views

CVE-2022-3996 affecting package edk2 for versions less than 20240223gitedc6681206c1-2

CVE-2022-3996 affecting package edk2 for versions less than 20240223gitedc6681206c1-2. A patched version of the package is available...

7.5CVSS7.7AI score0.0123EPSS
Exploits0
Circl
Circl
added 2024/03/15 7:6 a.m.6 views

CVE-2019-3996

creationtimestamp| type| source ---|---|--- 2024-03-15 07:06:48+00:00| seen| https://t.me/ctinow/208442...

7.5CVSS6.3AI score0.05879EPSS
Exploits1References1
Circl
Circl
added 2023/10/20 12:41 p.m.3 views

CVE-2023-3996

creationtimestamp| type| source ---|---|--- 2023-10-20 12:41:29+00:00| seen| https://t.me/cibsecurity/72685...

4.8CVSS4.9AI score0.00456EPSS
Exploits0References1
CVE
CVE
added 2023/10/20 7:29 a.m.66 views

CVE-2023-3996

CVE-2023-3996 affects the WordPress plugin “ARMember Lite – Membership”. The vulnerability is a Stored Cross-Site Scripting due to insufficient input sanitization and output escaping in admin settings. It requires authenticated attackers with administrator-level permissions (and above) to inject ...

4.8CVSS6AI score0.00456EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.18 views

Oracle Linux 7 : libxml2 (ELSA-2020-3996)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-3996 advisory. - Fix CVE-2019-19956 1793000 - Fix CVE-2019-20388 1810057 - Fix CVE-2020-7595 1810073 Tenable has extracted the preceding description block directly fr...

7.5CVSS7.1AI score0.07836EPSS
Exploits0References4
OSV
OSV
added 2023/08/31 12:13 p.m.1 views

BELL-CVE-2022-3996 CVE-2022-3996 does not affect BellSoft software

Bulletin has no description...

7.5CVSS5.8AI score0.0123EPSS
Exploits0References1
Rows per page
Query Builder