CVE-2020-12067

In Pilz PMC programming tool 3.x before 3.5.17 based on CODESYS Development System, a user's password may be changed by an attacker without knowledge of the current password...

CVE-2025-12067

creationtimestamp| type| source ---|---|--- 2026-01-06 09:00:15+00:00| seen| Telegram/9ppSVQvHBcmeJhqKXkJcdK8KPKpC4HJwrZFvIW3FQvkAE8c 2026-01-06 10:34:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbqqwpe2te2m...

WordPress Table Field Add-on for ACF and SCF plugin <= 1.3.30 - Authenticated (Contributor+) Stored Cross-Site Scripting via Table Cell Content vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Table Cell Content vulnerability discovered by shark3y in WordPress Plugin Table Field Add-on for ACF and SCF versions = 1.3.30...

Linux Distros Unpatched Vulnerability : CVE-2019-12067

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ahcicommitbuf function in ide/ahci.c in QEMU allows attackers to cause a denial of service NULL dereference when the command header 'ad-curcmd' is null...

CVE-2024-12067 WP Travel – Ultimate Travel Booking System, Tour Management Engine <= 10.0.0 - Authenticated (Subscriber+) SQL Injection

The WP Travel – Ultimate Travel Booking System, Tour Management Engine plugin for WordPress is vulnerable to SQL Injection via the 'bookingitinerary' parameter of the 'wptravelgetbookingdata' function in all versions up to, and including, 10.0.0 due to insufficient escaping on the user supplied...

CVE-2024-12067

CVE-2024-12067 affects the WordPress plugin pair WP Travel – Ultimate Travel Booking System, Tour Management Engine, with vulnerable versions up to 10.0.0. The vulnerability is an SQL Injection in the wptravel_get_booking_data function caused by insufficient escaping of the booking_itinerary para...

CVE-2019-12067

creationtimestamp| type| source ---|---|--- 2023-11-15 16:53:03+00:00| published-proof-of-concept| https://t.me/BABATATASASA/5977 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/...

SUSE CVE-2019-12067

The ahcicommitbuf function in ide/ahci.c in QEMU allows attackers to cause a denial of service NULL dereference when the command header 'ad-curcmd' is null...

CVE-2020-12067

creationtimestamp| type| source ---|---|--- 2022-12-26 22:41:03+00:00| seen| https://t.me/cibsecurity/55369 2025-04-14 16:53:46+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11650 2026-03-17 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01...

CVE-2020-12067

In Pilz PMC programming tool 3.x before 3.5.17 based on CODESYS Development System, a user's password may be changed by an attacker without knowledge of the current password...

CVE-2020-12067

Pilz PMC programming tool up to v3.5.16 is affected (based on CODESYS Development System). The issue allows a password change by an attacker without knowing the current password. Remediation: upgrade to version 3.5.17 or later. Public exploitation status is not detailed in the provided sources; o...

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-2533)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 2.9.0 : qemu (EulerOS-SA-2022-1619)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The ahcicommitbuf function in ide/ahci.c in QEMU allows attackers to cause a denial of service NULL dereference when the command...

EulerOS Virtualization 2.9.1 : qemu (EulerOS-SA-2022-1596)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The ahcicommitbuf function in ide/ahci.c in QEMU allows attackers to cause a denial of service NULL dereference when the command...

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-1596)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2017-0280)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-1014)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES11 Security Update : xen (SUSE-SU-2019:14199-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2019:14199-1 advisory. - The ahcicommitbuf function in ide/ahci.c in QEMU allows attackers to cause a denial of service NULL dereference when the command header...

CVE-2019-12067

The ahcicommitbuf function in ide/ahci.c in QEMU allows attackers to cause a denial of service NULL dereference when the command header 'ad-curcmd' is null...

CVE-2019-12067

CVE-2019-12067 affects QEMU’s AHCI emulation: the ahci_commit_buf function in ide/ahci.c can dereference a NULL ad-&gt;cur_cmd, causing a denial of service (host QEMU process denial). Public docs (NVD entry) confirm the vulnerability and impact (availability) with local access required; EulerOS/N...