RHCOS 3 : openvswitch (RHSA-2016:0615)

The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2016:0615 advisory. - openvswitch: MPLS buffer overflow vulnerability CVE-2016-2074 Note that Nessus has not tested for this issue but has instead relied only on...

CVE-2026-2074

A vulnerability was identified in O2OA up to 9.0.0. This impacts an unknown function of the file /xprogramcenter/jaxrs/mpweixin/check of the component HTTP POST Request Handler. The manipulation leads to xml external entity reference. It is possible to initiate the attack remotely. The exploit is...

CVE-2026-2074

CVE-2026-2074 affects O2OA versions up to 9.0.0, impacting the HTTP POST Request Handler at the path /x_program_center/jaxrs/mpweixin/check. The issue is an XML External Entity (XXE) reference due to a manipulated input, enabling remote initiation of the attack. Public exploit is available and ha...

MiracleLinux 3 : w3m-0.5.1-17.AXS3 (AXSA:2010-392:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2010-392:01 advisory. The w3m program is a pager or text file viewer that can also be used as a text-mode Web browser. W3m features include the following: when reading an HTML...

EUVD-2026-2074

Authenticated command injection vulnerabilities exist in the web-based management interface of mobility conductors running AOS-8 operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a privileged user on the underlying operating...

CVE-2019-2074

In libxaac there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-116617847...

CVE-2009-2074

Cross-site scripting XSS vulnerability in Nodequeue 5.x before 5.x-2.7 and 6.x before 6.x-2.2, a module for Drupal, allows remote authenticated users with administer taxonomy permissions to inject arbitrary web script or HTML via vocabulary names...

CVE-2025-2074

creationtimestamp| type| source ---|---|--- 2025-03-28 08:27:37+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9291 2025-03-28 11:53:30+00:00| seen| https://t.me/cvedetector/21390...

Linux Distros Unpatched Vulnerability : CVE-2013-2074

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an internal server erro...

RHEL 7 : openvswitch (RHSA-2016:0537)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2016:0537 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Security Fixe...

RHEL 6 : kdelibs (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - kdelibs: prints passwords contained in HTTP URLs in error messages CVE-2013-2074 - kf5-kio, kdelibs:...

RHEL 5 : kdelibs (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - kdelibs: kssl incorrect verification of SSL certificate with NUL in subjectAltName CVE-2009-2702 - kf5-ki...

CVE-2024-2074

creationtimestamp| type| source ---|---|--- 2024-03-01 19:31:31+00:00| seen| https://t.me/ctinow/197929 2024-03-01 19:31:36+00:00| seen| https://t.me/ctinow/197934...

CVE-2024-2074

CVE-2024-2074 affects Mini-Tmall (versions up to 20231017). The vulnerability is a SQL injection caused by manipulation of the orderBy parameter in the endpoint implemented as “?r=tmall/admin/user/1/1”. Evidence across Red Hat, NVD, CVE lists, and security feeds describes remote exploitation and ...

Rocky Linux 9 : emacs (RLSA-2023:2074)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:2074 advisory. - org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name...

AlmaLinux 9 : emacs (ALSA-2023:2074)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:2074 advisory. - org-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file name or directory name...

RHEL 9 : emacs (RHSA-2023:2074)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:2074 advisory. GNU Emacs is a powerful, customizable, self-documenting text editor. It provides special code editing features, a scripting language elisp, and the...

CVE-2023-2074

creationtimestamp| type| source ---|---|--- 2023-04-15 00:26:17+00:00| seen| https://t.me/cibsecurity/62192...

CVE-2023-2074

A vulnerability was found in Campcodes Online Traffic Offense Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /classes/Master.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

CVE-2023-2074

CVE-2023-2074 affects Campcodes Online Traffic Offense Management System v1.0, with a vulnerability in /classes/Master.php where unsanitized id parameter leads to SQL injection. The issue is exploitable remotely and has been publicly disclosed (VDB-226052). Impact is described as potentially high...