20 matches found
CVE-2026-22611
creationtimestamp| type| source ---|---|--- 2026-01-24 21:26:33+00:00| seen| https://gist.github.com/alon710/325f8e1b40ecea99be8151b391c88d88 2026-01-24 22:41:56+00:00| seen| https://gist.github.com/alon710/ae00337f1e0846f45fb2c7e9268320cf...
CVE-2023-22611
A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure when specific messages are sent to the server over the database server TCP port. Affected Products: EcoStruxure Geo SCADA Expert 2019 - 2021 formerly known as...
CVE-2022-22611
An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, iTunes 12.12.3 for Windows, watchOS 8.5, macOS Monterey 12.3. Processing a maliciously crafted image may lead to arbitrary code execution...
CVE-2024-22611
creationtimestamp| type| source ---|---|--- 2025-04-03 23:36:36+00:00| seen| https://t.me/cvedetector/22034 2026-01-24 21:26:33+00:00| seen| https://gist.github.com/alon710/325f8e1b40ecea99be8151b391c88d88 2026-01-24 22:41:56+00:00| seen|...
CVE-2024-22611
OpenEMR 7.0.2 is vulnerable to SQL Injection via \openemr\library\classes\Pharmacy.class.php, \controllers\CPharmacy.class.php and \openemr\controller.php...
CVE-2024-22611
OpenEMR 7.0.2 is vulnerable to SQL Injection via \openemr\library\classes\Pharmacy.class.php, \controllers\CPharmacy.class.php and \openemr\controller.php...
CVE-2025-22611
creationtimestamp| type| source ---|---|--- 2025-01-24 16:41:35+00:00| seen| https://infosec.exchange/users/cve/statuses/113884325151720224 2025-01-24 17:05:05+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2949 2025-01-24 17:48:31+00:00| seen|...
CVE-2025-22611 Coolify vulnerable to Privilege Escalation resulting in Remote Command Execution (RCE)
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to escalate his or any other team members privileges to any role, including the owner role. He's also able t...
CVE-2025-22611 Coolify vulnerable to Privilege Escalation resulting in Remote Command Execution (RCE)
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to escalate his or any other team members privileges to any role, including the owner role. He's also able t...
CVE-2023-22611
creationtimestamp| type| source ---|---|--- 2023-01-31 20:38:29+00:00| seen| https://t.me/cibsecurity/57227 2024-09-28 11:45:58+00:00| seen| Telegram/hePxK5jCtMku5z87bY0ueLSMzLI3F8p5ErCdFhNT9bQw...
CVE-2023-22611
A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure when specific messages are sent to the server over the database server TCP port. Affected Products: EcoStruxure Geo SCADA Expert 2019 - 2021 formerly known as...
CVE-2023-22611
CVE-2023-22611 describes an information disclosure vulnerability (CWE-200) in EcoStruxure Geo SCADA Expert 2019–2021 (formerly ClearSCADA) where sensitive data could be exposed via specific messages sent to the database server TCP port. The CVSSv3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) yi...
CVE-2022-22611
An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, iTunes 12.12.3 for Windows, watchOS 8.5, macOS Monterey 12.3. Processing a maliciously crafted image may lead to arbitrary code execution...
CVE-2022-22611
An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, iTunes 12.12.3 for Windows, watchOS 8.5, macOS Monterey 12.3. Processing a maliciously crafted image may lead to arbitrary code execution...
CVE-2022-22611
CVE-2022-22611 is an Apple vulnerability in ImageIO where processing a maliciously crafted image triggers an out-of-bounds read, addressed by input validation improvements. Affected products include tvOS, iOS, iPadOS, watchOS, macOS Monterey, and iTunes for Windows; fixed in tvOS 15.4, iOS 15.4, ...
CVE-2022-22611
creationtimestamp| type| source ---|---|--- 2022-03-15 15:50:00+00:00| seen| https://t.me/truesecator/2732 2022-03-18 21:22:44+00:00| seen| https://t.me/cibsecurity/39218 2026-01-24 21:26:33+00:00| seen| https://gist.github.com/alon710/325f8e1b40ecea99be8151b391c88d88 2026-01-24 22:41:56+00:00|...
Apple iTunes < 12.12.3 Multiple Vulnerabilities (uncredentialed check)
The version of Apple iTunes installed on the remote Windows host is prior to 12.12.3. It is, therefore, affected by multiple vulnerabilities as referenced in the HT213188 advisory. - Processing a maliciously crafted image may lead to arbitrary code execution CVE-2022-22611 - Processing a...
About the security content of watchOS 8.5
About the security content of watchOS 8.5 This document describes the security content of watchOS 8.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
KLA12486 Multiple vulnerabilities in Apple iTunes
Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A code execution vulnerability in ImageIO can be exploited via special crafted image to...
boneprice.com XSS vulnerability
Vulnerable URL: http://www.boneprice.com/category.html?q=%22%3E%3Csvg/onload=alert%28/XSSPOSED/%29%3E=%22%3E%3Csvg/onload=alert%28/XSSPOSED/%29%3E=%22%3E%3Csvg/onload=alert%28/XSSPOSED/%29%3E=list Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016...