CVE-2022-0618

A program using swift-nio-http2 is vulnerable to a denial of service attack, caused by a network peer sending a specially crafted HTTP/2 frame. This vulnerability is caused by a logical error when parsing a HTTP/2 HEADERS or HTTP/2 PUSHPROMISE frame where the frame contains padding information...

CVE-2026-0618

Cross-site Scripting vulnerability in Devolutions PowerShell Universal.This issue affects Powershell Universal: before 4.5.6, before 5.6.13...

CVE-2026-0618

creationtimestamp| type| source ---|---|--- 2026-01-07 19:03:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbu5u6v4q32q 2026-01-07 19:08:58+00:00| seen| Telegram/0Jzl9Q6YMruvhDow6TT000AAv9kgikcEbuH5cbueyHp7zA...

EUVD-2026-0618

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2021-0618

In ape extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561394; Issue ID: ALPS05561394...

CVE-2009-0618

Unspecified vulnerability in the Java agent in Cisco Application Networking Manager ANM before 2.0 Update A allows remote attackers to gain privileges, and cause a denial of service service outage by stopping processes, or obtain sensitive information by reading configuration files...

CVE-1999-0618

The rexec service is running...

CVE-2025-0618

creationtimestamp| type| source ---|---|--- 2025-04-23 07:03:53+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13015 2025-04-23 09:19:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnhuhiqrbs2t 2025-04-23 10:17:58+00:00| seen|...

CVE-2025-0618

A malicious third party could invoke a persistent denial of service vulnerability in FireEye EDR agent by sending a specially-crafted tamper protection event to the HX service to trigger an exception. This exception will prevent any further tamper protection events from being processed, even afte...

Linux Distros Unpatched Vulnerability : CVE-2018-0618

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting vulnerability in Mailman 2.1.26 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified...

RHEL 6 : mailman (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - mailman: CSRF token bypass allows to perform CSRF attacks and account takeover CVE-2021-42097 - mailman:...

CVE-2024-0618

creationtimestamp| type| source ---|---|--- 2024-01-27 07:26:38+00:00| seen| https://t.me/ctinow/174658 2024-02-12 16:46:39+00:00| seen| https://t.me/ctinow/183232...

CVE-2024-0618 Fluent Forms <= 5.1.5 - Authenticated(Administrator+) Stored Cross-Site Scripting via imported form title

The Contact Form Plugin – Fastest Contact Form Builder Plugin for WordPress by Fluent Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via imported form titles in all versions up to, and including, 5.1.5 due to insufficient input sanitization and output escaping. This makes...

WordPress FluentForm Plugin <= 5.1.5 is vulnerable to Cross Site Scripting (XSS)

Software FluentForm Type Plugin Vulnerable versions = 5.1.5 Fixed in 5.1.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0618 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 0f6deb843ce1 Credits Akbar Kustirama Required...

Rocky Linux 8 : stunnel (RLSA-2021:0618)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:0618 advisory. - A flaw was found in stunnel before 5.57, where it improperly validates client certificates when it is configured to use both redirect and verifyChain options...

CVE-2023-0618

CVE-2023-0618 affects TRENDnet TEW-652BRP with version 3.04B01, where the Web Service component’s file cfg_op.ccp contains code likely leading to memory corruption. The vulnerability can be exploited remotely, and the public disclosure indicates practical risk. Connected sources corroborate the s...

Microsoft Windows Server Remote Code Execution (CVE-2019-0618)

A remote code execution vulnerability exists in Microsoft Windows Server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

Backdoor.Win32.Coredoor.10.a MVID-2022-0618 Authentication Bypass

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/49da40a2ac819103da9dc5ed10d08ddb.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Coredoor.10.a Vulnerability: Authentication Bypass Description: The malware...

CVE-2022-0618

CVE-2022-0618 affects the swift-nio-http2 project. A logical error in parsing HTTP/2 HEADERS and PUSH_PROMISE frames containing only padding information can cause a parsing failure, crashing the process and harming availability. The issue affects swift-nio-http2 versions 1.0.0 through 1.19.2 and ...

AlmaLinux 8 : stunnel (ALSA-2021:0618)

The remote AlmaLinux 8 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2021:0618 advisory. - A flaw was found in stunnel before 5.57, where it improperly validates client certificates when it is configured to use both redirect and verifyChain options. Th...