CVE-2024-1606

Lack of input sanitization in BMC Control-M branches 9.0.20 and 9.0.21 allows logged-in users for manipulation of generated web pages via injection of HTML code. This might lead to a successful phishing attack for example by tricking users into using a hyperlink pointing to a website controlled b...

CVE-2023-0607

Cross-site Scripting XSS - Stored in GitHub repository projectsend/projectsend prior to r1606...

CVE-2013-1606

Buffer overflow in the ubnt-streamer RTSP service on the Ubiquiti UBNT AirCam with airVision firmware before 1.1.6 allows remote attackers to execute arbitrary code via a long rtsp: URI in a DESCRIBE request...

Linux Distros Unpatched Vulnerability : CVE-2015-1606

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The keyring DB in GnuPG before 2.1.2 does not properly handle invalid packets, which allows remote attackers to cause a denial of service invalid read and...

CVE-2025-1606

creationtimestamp| type| source ---|---|--- 2025-02-24 00:21:34+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5111 2025-02-24 02:04:20+00:00| seen| https://t.me/cvedetector/18760 2025-02-24 14:08:41+00:00| seen| Telegram/q6HEQqzrrEFTNaV7wPczbVzSNJRo2zqgyeYvrpZvP9C2sX...

CVE-2025-1606

A vulnerability classified as problematic was found in SourceCodester Best Employee Management System 1.0. This vulnerability affects unknown code of the file /admin/backup/backups.php. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...

CVE-2025-1606

The CVE-2025-1606 entry affects SourceCodester Best Employee Management System 1.0, specifically the file /admin/backup/backups.php, where manipulation leads to information disclosure. Documents consistently state remote exploitation and that the public exploit is disclosed; vendor response is no...

CVE-2025-1606 SourceCodester Best Employee Management System backups.php information disclosure

A vulnerability classified as problematic was found in SourceCodester Best Employee Management System 1.0. This vulnerability affects unknown code of the file /admin/backup/backups.php. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...

RHEL 7 : sensu (RHSA-2018:1606)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2018:1606 advisory. Sensu is a monitoring framework that aims to be simple, malleable, and scalable. Security fixes: Sensu's redaction function fails to handle the...

CVE-2024-1606

creationtimestamp| type| source ---|---|--- 2024-03-18 11:34:38+00:00| seen| https://t.me/ctinow/210394 2024-03-18 11:34:43+00:00| seen| https://t.me/ctinow/210397...

CVE-2024-1606 HTML injection in BMC Control-M

Lack of input sanitization in BMC Control-M branches 9.0.20 and 9.0.21 allows logged-in users for manipulation of generated web pages via injection of HTML code. This might lead to a successful phishing attack for example by tricking users into using a hyperlink pointing to a website controlled b...

CVE-2024-1606 HTML injection in BMC Control-M

Lack of input sanitization in BMC Control-M branches 9.0.20 and 9.0.21 allows logged-in users for manipulation of generated web pages via injection of HTML code. This might lead to a successful phishing attack for example by tricking users into using a hyperlink pointing to a website controlled b...

CVE-2024-1606

CVE-2024-1606 describes a lack of input sanitization in BMC Control-M branches 9.0.20 and 9.0.21 that allows logged-in users to manipulate generated web pages by injecting HTML code, potentially enabling phishing via malicious links. The issue affects the web/UI layer and is caused by insufficien...

CVE-2015-1606

creationtimestamp| type| source ---|---|--- 2024-02-23 22:21:33+00:00| seen| https://t.me/ctinow/192215...

Malicious code in wlwz-2312-1606 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1366d4dedf8f475cb0fa7dcf9a7dfa3039f31d30a21e82b0a0a2e3b86c5c6e94 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1606)

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to insufficient validation of arguments passed to certain CLI commands. An attacker coul...

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2023-1606)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-1606

CVE-2023-1606 affects novel-plus 3.6.2. The vulnerability is a SQL injection in an unknown function within DictController.java caused by manipulation of the orderby argument, allowing remote exploitation. Public exploits are reported. The trait shows high-severity impact across confidentiality, i...

PT-2023-16397 · Unknown · Projectsend

Name of the Vulnerable Software and Affected Versions: projectsend/projectsend versions prior to r1606 Description: The issue is related to Cross-site Scripting XSS - Stored, which affects the GitHub repository projectsend/projectsend. This type of attack involves injecting malicious scripts into...

CVE-2022-1606

Incorrect privilege assignment in M-Files Server versions before 22.3.11164.0 and before 22.3.11237.1 allows user to read unmanaged objects...