MiracleLinux 3 : freetype-2.2.1-21.1AXS3 (AXSA:2009-59:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2009-59:01 advisory. The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments...

CVE-2022-0946

Stored XSS viva cshtm file upload in GitHub repository star7th/showdoc prior to v2.10.4...

CVE-2016-0946

creationtimestamp| type| source ---|---|--- 2025-08-31 03:01:22+00:00| seen| MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d 2025-08-31 03:12:55+00:00| seen| MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57...

CVE-2020-0946

An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0937, CVE-2020-0939, CVE-2020-0945, CVE-2020-0947...

CVE-2024-0946

A vulnerability classified as critical was found in 60IndexPage up to 1.8.5. This vulnerability affects unknown code of the file /apply/index.php of the component Parameter Handler. The manipulation of the argument url leads to server-side request forgery. The attack can be initiated remotely. Th...

CVE-2025-0946

creationtimestamp| type| source ---|---|--- 2025-02-01 16:15:47+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lh4vwgqemg27 2025-02-01 17:25:47+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/3772 2025-02-01 17:37:45+00:00| seen|...

CVE-2025-0946

A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file templatedelete.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit...

CVE-2025-0946 itsourcecode Tailoring Management System templatedelete.php sql injection

A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file templatedelete.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit...

CVE-2025-0946 itsourcecode Tailoring Management System templatedelete.php sql injection

A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file templatedelete.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit...

CVE-2025-0946

CVE-2025-0946 affects itsourcecode Tailoring Management System 1.0. Affected component: the file templatedelete.php, where manipulating the id parameter enables SQL injection. Descriptions consistently state remote exploitation and public disclosure of the exploit. Multiple connected sources conf...

CVE-2024-0946

creationtimestamp| type| source ---|---|--- 2024-01-26 22:32:06+00:00| seen| https://t.me/ctinow/174507 2024-02-19 19:56:53+00:00| seen| https://t.me/ctinow/187890...

CVE-2024-0946

60IndexPage up to version 1.8.5 is affected by a server-side request forgery in the Parameter Handler’s /apply/index.php, caused by manipulation of the url argument. This vulnerability can be exploited remotely and impacts confidentiality, integrity, and availability. Public exploit discussion is...

CVE-2024-0946 60IndexPage Parameter index.php server-side request forgery

A vulnerability classified as critical was found in 60IndexPage up to 1.8.5. This vulnerability affects unknown code of the file /apply/index.php of the component Parameter Handler. The manipulation of the argument url leads to server-side request forgery. The attack can be initiated remotely. Th...

Oracle Linux 9 : openssl (ELSA-2023-0946)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-0946 advisory. - Fixed X.509 Name Constraints Read Buffer Overflow Resolves: CVE-2022-4203 - Fixed Timing Oracle in RSA Decryption Resolves: CVE-2022-4304 - Fixed...

CVE-2023-0946

creationtimestamp| type| source ---|---|--- 2023-02-22 00:46:58+00:00| seen| https://t.me/cibsecurity/58641...

CVE-2023-0946 SourceCodester Best POS Management System sql injection

A vulnerability has been found in SourceCodester Best POS Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file billing/index.php?id=9. The manipulation of the argument id leads to sql injection. The attack can be launched remotel...

CVE-2023-0946

The CVE-2023-0946 entry affects SourceCodester Best POS Management System 1.0, specifically the billing/index.php?id=9 parameter. The root cause is input manipulation that enables SQL injection, enabling remote exploitation with impact on confidentiality, integrity, and availability reported as h...

CVE-2021-0946

creationtimestamp| type| source ---|---|--- 2022-08-24 18:23:15+00:00| seen| https://t.me/cibsecurity/48645...

CVE-2021-0946

CVE-2021-0946 concerns a kernel information disclosure in Android via the PowerVR PVRSRVBridgePMRPDumpSymbolicAddr path. The vulnerable sequence allocates a heap buffer (puiMemspaceNameInt), fills it through PMR_PDumpSymbolicAddr, and copies the buffer to userspace. If PMR_PDumpSymbolicAddr fails...

GHSA-WJMF-6X7G-XQ67 ChakraCore RCE Vulnerability

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. This CVE ID is unique from CVE-2018-0945,...