uDraw <3.3.3 - Local File Inclusion

uDraw before 3.3.3 does not validate the url parameter in its udrawconverturltobase64 AJAX action available to both unauthenticated and authenticated users before using it in the filegetcontents function and returning its content base64 encoded in the response. As a result, unauthenticated users...

CVE-2026-0656

creationtimestamp| type| source ---|---|--- 2026-01-07 08:23:56+00:00| seen| https://gist.github.com/Darkcrai86/4000d364bc9ebc5d554e17b3968dd895 2026-01-07 09:49:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbt6vbxh2b2e 2026-01-07 10:49:00+00:00| seen|...

EUVD-2026-0656

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2004-0656

creationtimestamp| type| source ---|---|--- 2025-10-07 21:02:25+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3m2mzlc2i4w2g...

CVE-1999-0656 vulnerabilities

Vulnerabilities for packages: linux-qemu, linux-qemu-rc, linux-vmware...

Azure Linux 3.0 Security Update: kernel (CVE-1999-0656)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-1999-0656 advisory. - The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying...

CBL Mariner 2.0 Security Update: kernel (CVE-1999-0656)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-1999-0656 advisory. - The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying...

CVE-1999-0656 affecting package kernel for versions less than 6.6.35.1-4

CVE-1999-0656 affecting package kernel for versions less than 6.6.35.1-4. A patched version of the package is available...

Important Photon OS Security Update - PHSA-2024-4.0-0656

Updates of 'suricata' packages of Photon OS have been released...

CVE-2024-0656

creationtimestamp| type| source ---|---|--- 2024-03-08 14:21:59+00:00| seen| https://t.me/ctinow/203335...

CVE-2024-0656

CVE-2024-0656 affects the Password Protected – Ultimate Plugin to Password Protect Your WordPress Content with Ease for WordPress, all versions up to 2.6.6. It enables Stored XSS via the Google Captcha Site Key due to insufficient input sanitization/output escaping. Exploitation requires administ...

WordPress Password Protected Plugin <= 2.6.6 is vulnerable to Cross Site Scripting (XSS)

Software Password Protected Type Plugin Vulnerable versions = 2.6.6 Fixed in 2.6.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0656 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7a68f344cd36 Credits Felipe Restrepo...

Alert: Over 178,000 SonicWall Firewalls Potentially Vulnerable to Exploits - Act Now

Over 178,000 SonicWall firewalls exposed over the internet are exploitable to at least one of the two security flaws that could be potentially exploited to cause a denial-of-service DoS condition and remote code execution RCE. "The two issues are fundamentally the same but exploitable at differen...

CVE-2023-0656

creationtimestamp| type| source ---|---|--- 2023-03-03 00:44:38+00:00| seen| https://t.me/cibsecurity/59348 2023-03-06 13:00:08+00:00| seen| https://t.me/truesecator/4134 2023-04-05 11:03:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8061 2024-01-16 10:54:08+00:00|...

CVE-2023-0656

A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service DoS, which could cause an impacted firewall to crash...

CVE-2023-0656

CVE-2023-0656 is a stack-based buffer overflow in the SonicOS web management interface of SonicWall firewalls. The vulnerability can be exploited remotely by an unauthenticated attacker via crafted HTTP requests to overflow a stack buffer, potentially causing a Denial of Service (DoS) and a crash...

CVE-2023-0656

A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service DoS, which could cause an impacted firewall to crash...

SUSE CVE-2010-0656

WebKit before r51295, as used in Google Chrome before 4.0.249.78, presents a directory-listing page in response to an XMLHttpRequest for a file:/// URL that corresponds to a directory, which allows attackers to obtain sensitive information or possibly have unspecified other impact via a crafted...

Backdoor.Win32.Quux MVID-2022-0656 Hardcoded Credential

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/13ce53de9ca4c4e6c58f990b442cb419.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Quux Vulnerability: Weak Hardcoded Credentials Family: Quux Type: PE32 MD5:...

CVE-1999-0656 affecting package kernel for versions less than 5.10.78.1-1

CVE-1999-0656 affecting package kernel for versions less than 5.10.78.1-1. A patched version of the package is available...