CVE-2026-11062

creationtimestamp| type| source ---|---|--- 2026-06-05 13:24:00+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116697713800926918...

CVE-2026-11062

Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. Chromium security severity: Medium...

RockyLinux 8 : python3.11 (RLSA-2026:11062)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:11062 advisory. python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules CVE-2026-6100 python: cpython: Python:...

CVE-2025-11062

creationtimestamp| type| source ---|---|--- 2025-09-27 14:12:46+00:00| seen| https://gist.github.com/Darkcrai86/db03d75c2cc737593026de5d6033ab55...

CVE-2025-11062 Campcodes Online Learning Management System save_student.php sql injection

A vulnerability was determined in Campcodes Online Learning Management System 1.0. This vulnerability affects unknown code of the file /admin/savestudent.php. Executing manipulation of the argument classid can lead to sql injection. The attack may be performed from remote. The exploit has been...

Linux Distros Unpatched Vulnerability : CVE-2020-11062

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GLPI after 0.68.1 and before 9.4.6, multiple reflexive XSS occur in Dropdown endpoints due to an invalid Content-Type. This has been fixed in version 9.4.6...

CVE-2016-11062

An issue was discovered in Mattermost Server before 3.5.1. E-mail address verification can be bypassed...

CVE-2024-11062

creationtimestamp| type| source ---|---|--- 2024-11-11 07:35:49+00:00| seen| https://infosec.exchange/users/cve/statuses/113463168111780659 2024-11-11 10:15:09+00:00| seen| https://t.me/cvedetector/10487 2024-11-13 12:21:24+00:00| seen| https://t.me/truesecator/6423...

CVE-2024-11062 D-Link DSL6740C - OS Command Injection

The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...

CVE-2024-11062 D-Link DSL6740C - OS Command Injection

The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...

ezXML out-of-bounds write vulnerability (CNVD-2021-11062)

ezXML is a C library for parsing XML documents . An out-of-bounds write vulnerability exists in the ezxmltoxml function in ezXML 0.8.6 and earlier. An attacker can exploit this vulnerability to cause an out-of-bounds write when opening an XML file after the memory pool has been exhausted...

CVE-2016-11062

creationtimestamp| type| source ---|---|--- 2020-06-20 01:55:15+00:00| seen| https://t.me/cibsecurity/12957...

CVE-2016-11062

Mattermost Server prior to 3.5.1 is affected by CVE-2016-11062, where email address verification can be bypassed. This vulnerability is described across multiple sources (NVD, Red Hat, CNVD, OSV, etc.). The available documents do not provide concrete exploitation details, impact specifics beyond ...

CVE-2020-11062

In GLPI after 0.68.1 and before 9.4.6, multiple reflexive XSS occur in Dropdown endpoints due to an invalid Content-Type. This has been fixed in version 9.4.6...

CVE-2020-11062

Summary (CVE-2020-11062) : In GLPI, versions after 0.68.1 and before 9.4.6 are affected by multiple reflexive XSS in Dropdown endpoints caused by an invalid Content-Type. This could enable client-side script execution within the affected web UI. The issue has been fixed in version 9.4.6. Remediat...

CVE-2019-11062 SUNNET WMPro v5.0 and v5.1 has OS Command Injection

The SUNNET WMPro v5.0 and v5.1 for eLearning system has OS Command Injection via "/teach/course/doajaxfileupload.php". The target server can be exploited without authentication...

CVE-2019-11062

The CVE-2019-11062 entry affects SUNNET WMPro v5.0 and v5.1 for the eLearning system. Affected component: the API endpoint /teach/course/doajaxfileupload.php, where OS Command Injection is possible. Root cause described as unauthenticated remote command execution on the target server. Impact is h...

CVE-2018-11062 Dell EMC Integrated Data Protection Appliance Undocumented Accounts Vulnerability

Integrated Data Protection Appliance versions 2.0, 2.1, and 2.2 contain undocumented accounts named 'support' and 'admin' that are protected with default passwords. These accounts have limited privileges and can access certain system files only. A malicious user with the knowledge of the default...

CVE-2018-11062

Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1, and 2.2 contain undocumented accounts named ‘support’ and ‘admin’ protected by default passwords. These accounts have limited privileges but can access certain system files, enabling a potential attacker with knowledge of the...

CVE-2017-11062

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, currently attributes are not validated in wlanhddcfg80211doacs which can potentially lead to a buffer overread...