CVE-2026-1616

creationtimestamp| type| source ---|---|--- 2026-01-29 14:27:13+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdkynkoqtv2o...

CVE-2026-1616 osim: Path Traversal via query parameters in Nginx configuration

The $uri$args concatenation in nginx configuration file present in Open Security Issue Management OSIM prior v2025.9.0 allows path traversal attacks via query parameters...

EUVD-2018-5746

Malware in sbrugna...

EUVD-2013-0670

Malware in sbrugna...

EUVD-2018-5744

Malware in sbrugna...

EUVD-2018-5745

Malware in sbrugna...

EUVD-2018-1616

Malware in sbrugna...

CVE-2023-1616

A vulnerability was found in XiaoBingBy TeaCMS up to 2.0.2. It has been classified as problematic. Affected is an unknown function of the component Article Title Handler. The manipulation with the input leads to cross site scripting. It is possible to launch the attack remotely. The exploit has...

CVE-2018-13810

A vulnerability has been identified in CP 1604 All versions, CP 1616 All versions. The integrated configuration web server of the affected CP devices could allow a Cross-Site Request Forgery CSRF attack if an unsuspecting user is tricked into accessing a malicious link. Successful exploitation...

CVE-2018-13809

A vulnerability has been identified in CP 1604 All versions, CP 1616 All versions. The integrated web server of the affected CP devices could allow Cross-Site Scripting XSS attacks if unsuspecting users are tricked into following a malicious link. User interaction is required for a successful...

CVE-2018-13808

A vulnerability has been identified in CP 1604 All versions, CP 1616 All versions. An attacker with network access to port 23/tcp could extract internal communication data or cause a Denial-of-Service condition. Successful exploitation requires network access to a vulnerable device. At the time o...

CVE-2009-1616

Cross-site scripting XSS vulnerability in docs/showdoc.php in Coppermine Photo Gallery CPG before 1.4.22 allows remote attackers to inject arbitrary web script or HTML via the css parameter, a different vector than CVE-2008-0505...

Linux Distros Unpatched Vulnerability : CVE-2022-1616

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in appendcommand in GitHub repository vim/vim prior to 8.2.4895. This vulnerability is capable of crashing software, Bypass Protection Mechanism,...

CVE-2025-1616

A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU GPON RP2511. Affected by this issue is some unknown functionality of the component Diagnosis. The manipulation of the argument Destination Address leads to os command injection. The attack may be launche...

CVE-2025-1616

creationtimestamp| type| source ---|---|--- 2025-02-24 04:21:45+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5124 2025-02-24 06:15:09+00:00| seen| https://t.me/cvedetector/18775 2025-02-24 14:08:42+00:00| seen| Telegram/NEA3MC5jAjQxUYKwMIV4zJTXa0gW1e3ounGPnshffzH2FUaZ...

CVE-2025-1616 FiberHome AN5506-01A ONU GPON Diagnosis os command injection

A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU GPON RP2511. Affected by this issue is some unknown functionality of the component Diagnosis. The manipulation of the argument Destination Address leads to os command injection. The attack may be launche...

Rocky Linux 8 : irssi (RLSA-2020:1616)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2020:1616 advisory. - Irssi before 1.0.8, 1.1.x before 1.1.3, and 1.2.x before 1.2.1, when SASL is enabled, has a use after free when sending SASL login to the server. CVE-2019-1304...

CVE-2023-37194

A vulnerability has been identified in SIMATIC CP 1604 All versions, SIMATIC CP 1616 All versions, SIMATIC CP 1623 All versions, SIMATIC CP 1626 All versions, SIMATIC CP 1628 All versions. The kernel memory of affected devices is exposed to user-mode via direct memory access DMA which could allow...

Oracle Linux 8 : irssi (ELSA-2020-1616)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-1616 advisory. 1.1.1-3 - Fixed use after free when sending SASL login to server Resolves: CVE-2019-13045 Tenable has extracted the preceding description block directly from th...

Cisco NX-OS Software Cisco Fabric Services Denial of Service (CVE-2019-1616)

A vulnerability in the Cisco Fabric Services component of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a buffer overflow, resulting in a denial of service DoS condition. The vulnerability is due to insufficient validation of Cisco Fabric Services packets. An...