CVE-2024-2047

creationtimestamp| type| source ---|---|--- 2026-04-08 20:00:16+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3miz3gn3by32q...

MiracleLinux 9 : gimp-3.0.4-1.el9_7.4 (AXSA:2026-311:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-311:03 advisory. gimp: GIMP: Remote code execution via heap-based buffer overflow in ICNS file parsing CVE-2026-2047 gimp: GIMP: Remote Code Execution via uninitializ...

Security Bulletin: Due to the use of jetty IBM webMethods BPM is vulnerable to multiple vulnerabilities

Summary IBM webMethods BPM is dependant on jetty which is affected by known vulnerabilities CVE-2020-27223, CVE-2021-28169, CVE-2022-2047, CVE-2023-26049, CVE-2023-36478, CVE-2023-40167 Vulnerability Details CVEID:CVE-2020-27223 DESCRIPTION: In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114...

AlmaLinux 9 : gimp (ALSA-2026:4173)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:4173 advisory. gimp: GIMP: Remote code execution via heap-based buffer overflow in ICNS file parsing CVE-2026-2047 gimp: GIMP: Remote Code Execution via uninitialized...

RHEL 9 : gimp (RHSA-2026:4173)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:4173 advisory. The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox,...

gimp security update

2:3.0.4-1.4 - fix CVE-2026-0797 - fix CVE-2026-2044 - fix CVE-2026-2045 - fix CVE-2026-2047 - fix CVE-2026-2048...

Oracle Linux 9 : gimp (ELSA-2026-4173)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-4173 advisory. - fix CVE-2026-0797 - fix CVE-2026-2044 - fix CVE-2026-2045 - fix CVE-2026-2047 Tenable has extracted the preceding description block directly from the...

CVE-2026-2047

A flaw was found in GIMP. This heap-based buffer overflow vulnerability in the ICNS file parsing component allows a remote attacker to execute arbitrary code. Exploitation requires user interaction, where the target must open a specially crafted malicious file or visit a malicious page. This issu...

CVE-2026-2047

The CVE-2026-2047 issue is a heap-based buffer overflow in GIMP’s ICNS file parsing that allows remote code execution. It stems from insufficient validation of the length of user-supplied data before copying to a heap buffer. Exploitation requires user interaction (target visits a malicious page ...

CVE-2026-2047

creationtimestamp| type| source ---|---|--- 2026-02-19 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-120/ 2026-02-21 00:00:21+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfdcwo4yyx2u 2026-02-25 00:20:09+00:00| seen|...

EUVD-2006-6348

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2022-2047

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI...

CVE-2023-2047

A vulnerability was found in Campcodes Advanced Online Voting System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument voter leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2021-2047

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core Components. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via IIOP, T3 to...

CVE-2012-2047

Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2012-2043, CVE-2012-2044, CVE-2012-2045, and CVE-2012-2046...

CVE-2002-2047

The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript EPS file...

CVE-2025-2047

creationtimestamp| type| source ---|---|--- 2025-03-07 01:33:19+00:00| seen| https://t.me/cvedetector/19761 2025-03-07 01:55:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljqvowibsp2f 2025-03-07 20:40:33+00:00| published-proof-of-concept|...

CVE-2025-2047 PHPGurukul Art Gallery Management System search.php cross site scripting

A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /search.php. The manipulation of the argument search leads to cross site scripting. It is possible to initiate the attack remotely. The exploi...

CVE-2025-2047

CVE-2025-2047 affects PHPGurukul Art Gallery Management System 1.0. A cross-site scripting vulnerability exists in the /search.php parameter search due to inadequate input filtering/escaping. Exploitation is remote and the public disclosure is noted. Other sources corroborate a reflected XSS risk...

CVE-2025-2047 PHPGurukul Art Gallery Management System search.php cross site scripting

A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /search.php. The manipulation of the argument search leads to cross site scripting. It is possible to initiate the attack remotely. The exploi...