CVE-2022-0643

The Bank Mellat WordPress plugin through 1.3.7 does not sanitize and escape the orderId parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting...

CVE-2026-0643

A flaw has been found in projectworlds House Rental and Property Listing 1.0. Impacted is an unknown function of the file /app/register.php?action=reg of the component Signup. This manipulation of the argument image causes unrestricted upload. Remote exploitation of the attack is possible. The...

CVE-2026-0643

creationtimestamp| type| source ---|---|--- 2026-01-07 03:09:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbsijg7eow2q...

EUVD-2026-0643

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2025-0643

creationtimestamp| type| source ---|---|--- 2025-11-20 17:29:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m63c6um5gs2k...

Photon OS 5.0: Perl PHSA-2025-5.0-0643

An update of the perl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0643. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Linux Distros Unpatched Vulnerability : CVE-2016-0643

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and...

CVE-2013-0643

creationtimestamp| type| source ---|---|--- 2024-09-20 18:10:02+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2025-02-23 02:10:58+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2026-02-02 12:26:28+00:00| exploited|...

RHEL 6 / 7 : rh-mariadb100-mariadb (RHSA-2016:1132)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:1132 advisory. MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. MariaD...

SUSE SLES15 / openSUSE 15 Security Update : nodejs20 (SUSE-SU-2024:0643-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0643-1 advisory. - A vulnerability in the privateDecrypt API of the crypto library, allowed a covert timing side-channel during PKCS1...

CVE-2024-0643

Unrestricted upload of dangerous file types in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to upload different file extensions without any restrictions, resulting in a full system compromise...

CVE-2024-0643

Unrestricted upload of dangerous file types in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to upload different file extensions without any restrictions, resulting in a full system compromise...

CVE-2024-0643 Unrestricted upload of dangerous file types in C21 Live Encoder and Live Mosaic

Unrestricted upload of dangerous file types in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to upload different file extensions without any restrictions, resulting in a full system compromise...

CVE-2024-0643

CVE-2024-0643 affects C21 Live Encoder and Live Mosaic, version 5.3. The issue is an unrestricted upload of dangerous file types in the product, enabling a remote attacker to upload various file extensions without restrictions and potentially achieve full system compromise. Some sources corrobora...

CVE-2024-0643 Unrestricted upload of dangerous file types in C21 Live Encoder and Live Mosaic

Unrestricted upload of dangerous file types in the C21 Live Encoder and Live Mosaic product, version 5.3. This vulnerability allows a remote attacker to upload different file extensions without any restrictions, resulting in a full system compromise...

Rocky Linux 8 : python-pillow (RLSA-2022:0643)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:0643 advisory. - pathgetbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path. CVE-2022-22815 - pathgetbbox in path.c in Pillow before 9.0.0 has ...

SUSE CVE-2013-0643

The Firefox sandbox in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, does not properly restrict privileges, which makes it easier for remote attackers to execute arbitrary code via crafted...

CVE-2023-0643 Improper Handling of Additional Special Element in squidex/squidex

Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0...

CVE-2023-0643 Improper Handling of Additional Special Element in squidex/squidex

Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0...

CVE-2023-0643

CVE-2023-0643 affects squidex/squidex prior to 7.4.0. The issue is described as improper handling of an additional special element in the GitHub repository, enabling potential HTML injection in activity-related contexts (as per CNNVD/Red Hat/NVD family entries). The vulnerability impact is framed...