CVE-2026-11674

An use after free flaw was found in the Guest View component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=516910450...

Linux Distros Unpatched Vulnerability : CVE-2026-11674

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Guest View in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML...

CVE-2026-11674

CVE-2026-11674 affects Google Chrome (Guest View) on Chromium-based builds prior to 149.0.7827.103. The issue is a use-after-free in Guest View, enabling a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. Affected product/version: Google Chrome (before 149.0.7...

CVE-2026-11674

creationtimestamp| type| source ---|---|--- 2026-06-08 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260609...

CVE-2025-11674

SOOP-CLM developed by PiExtract has a Server-Side Request Forgery vulnerability, allowing privileged remote attackers to read server files or probe internal network information...

CVE-2025-11674

creationtimestamp| type| source ---|---|--- 2025-10-13 08:13:31+00:00| seen| Telegram/RIayYYpqEbpaXIfhOJUuOMs4gvaKFhzKSprZPWeXYgqDhUs...

CVE-2024-11674

A vulnerability, which was classified as critical, was found in CodeAstro Hospital Management System 1.0. Affected is an unknown function of the file /backend/doc/hisdocupdate-account.php. The manipulation of the argument docdpic leads to unrestricted upload. It is possible to launch the attack...

CVE-2024-11674

creationtimestamp| type| source ---|---|--- 2024-11-25 23:37:49+00:00| seen| https://infosec.exchange/users/cve/statuses/113546223243794169...

CVE-2024-11674

CodeAstro Hospital Management System 1.0 is affected by CVE-2024-11674 due to an unrestricted file upload in the /backend/doc/his_doc_update-account.php function when manipulating the doc_dpic parameter. The vulnerability can be triggered remotely, and public exploitation details have been disclo...

CVE-2024-11674 CodeAstro Hospital Management System his_doc_update-account.php unrestricted upload

A vulnerability, which was classified as critical, was found in CodeAstro Hospital Management System 1.0. Affected is an unknown function of the file /backend/doc/hisdocupdate-account.php. The manipulation of the argument docdpic leads to unrestricted upload. It is possible to launch the attack...

CVE-2019-11674

Man-in-the-middle vulnerability in Micro Focus Self Service Password Reset, affecting all versions prior to 4.4.0.4. The vulnerability could exploit invalid certificate validation and may result in a man-in-the-middle attack...

CVE-2019-11674

CVE-2019-11674 affects Micro Focus Self Service Password Reset prior to version 4.4.0.4. The issue is a certificate validation flaw enabling potential man-in-the-middle attacks. The description across connected records confirms the root cause as invalid certificate validation and implies exploita...

CVE-2017-11674

CVE-2017-11674 affects Reporter.exe in Acunetix 8. A malformed PRE file triggers a Read Access Violation in reporter!madTraceProcess, leading to an application crash and DoS. Exploitation details, affected versions beyond Acunetix 8, and remediation are not provided in the connected documents. No...

TWiki - Search Function Arbitrary Command Execution (Metasploit)

$Id: twikisearch.rb 9671 2010-07-03 06:21:31Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

TWiki Search Function Arbitrary Command Execution

This module exploits a vulnerability in the search component of TWiki. By passing a 'search' parameter containing shell metacharacters to the 'WebSearch' script, an attacker can execute arbitrary OS commands. This module requires Metasploit: https://metasploit.com/download Current source:...

TWiki Search.pm shell command injection

Added: 04/06/2006 CVE: CVE-2004-1037 BID: 11674 OSVDB: 11714 Background TWiki is a web-based collaboration platform written in PERL. Problem The Search.pm module does not sufficiently check search strings for illegal characters, allowing remote attackers to execute commands using search strings...