CVE-2026-2064

A vulnerability was identified in Portabilis i-Educar up to 2.10. Affected by this vulnerability is an unknown functionality of the file /intranet/meusdadod.php of the component User Data Page. Such manipulation of the argument File leads to cross site scripting. It is possible to launch the atta...

CVE-2021-2064

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core Components. The supported version that is affected is 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via IIOP, T3 to compromise Oracle WebLogic Server...

CVE-2024-2064

A vulnerability has been found in rahman SelectCours 1.0 and classified as problematic. Affected by this vulnerability is the function getCacheNames of the file CacheController.java of the component Template Handler. The manipulation of the argument fragment leads to injection. The attack can be...

CVE-2019-2064

In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-116469592...

CVE-2002-2064

isadmin.php in PhpWebGallery 1.0 allows remote attackers to gain administrative access via by setting the photologin cookie to pseudo...

CVE-2025-2064

A vulnerability, which was classified as critical, has been found in projectworlds Life Insurance Management System 1.0. Affected by this issue is some unknown functionality of the file /deletePayment.php. The manipulation of the argument reciptno leads to sql injection. The attack may be launche...

CVE-2025-2064 projectworlds Life Insurance Management System deletePayment.php sql injection

A vulnerability, which was classified as critical, has been found in projectworlds Life Insurance Management System 1.0. Affected by this issue is some unknown functionality of the file /deletePayment.php. The manipulation of the argument reciptno leads to sql injection. The attack may be launche...

CVE-2025-2064 projectworlds Life Insurance Management System deletePayment.php sql injection

A vulnerability, which was classified as critical, has been found in projectworlds Life Insurance Management System 1.0. Affected by this issue is some unknown functionality of the file /deletePayment.php. The manipulation of the argument reciptno leads to sql injection. The attack may be launche...

CVE-2023-2064

creationtimestamp| type| source ---|---|--- 2025-01-16 15:56:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1964...

CentOS 6 : chromium-browser (RHSA-2020:2064)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2064 advisory. - Type confusion in Blink in Google Chrome prior to 81.0.4044.138 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML...

Huawei EulerOS: Security Advisory for ncurses (EulerOS-SA-2024-2064)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 9 : buildah (RHSA-2024:2064)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:2064 advisory. The buildah package provides command line tool for creating Open Container Initiative OCI Images. Security Fixes: buildah: full container escape at...

CVE-2024-2064

creationtimestamp| type| source ---|---|--- 2024-03-01 15:27:22+00:00| seen| https://t.me/ctinow/197713 2024-03-01 15:31:44+00:00| seen| https://t.me/ctinow/197731...

CVE-2024-2064

A vulnerability has been found in rahman SelectCours 1.0 and classified as problematic. Affected by this vulnerability is the function getCacheNames of the file CacheController.java of the component Template Handler. The manipulation of the argument fragment leads to injection. The attack can be...

CVE-2024-2064

A vulnerability has been found in rahman SelectCours 1.0 and classified as problematic. Affected by this vulnerability is the function getCacheNames of the file CacheController.java of the component Template Handler. The manipulation of the argument fragment leads to injection. The attack can be...

CVE-2024-2064

The CVE-2024-2064 vulnerability affects rahman SelectCours 1.0, specifically the Template Handler’s CacheController.java:getCacheNames. The issue stems from injecting/manipulating an argument fragment, enabling injection. It can be exploited remotely and public exploit details exist (VDB-255379)....

EulerOS Virtualization 2.11.1 : apr-util (EulerOS-SA-2023-2064)

According to the versions of the apr-util package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Integer Overflow or Wraparound vulnerability in aprbase64 functions of Apache Portable Runtime Utility APR-util allows an attack...

Amazon Linux 2 : tar (ALAS-2023-2064)

The version of tar installed on the remote host is prior to 1.26-35. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2064 advisory. paxdecodeheader in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed...

CVE-2023-2064

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Minova Technology eTrace allows SQL Injection. This issue affects eTrace: before 23.05.20...

CVE-2023-2064 SQLi in Minova Technology's eTrace

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Minova Technology eTrace allows SQL Injection. This issue affects eTrace: before 23.05.20...