CVE-2026-2666

A flaw has been found in mingSoft MCMS 6.1.1. The affected element is an unknown function of the file /ms/file/uploadTemplate.do of the component Template Archive Handler. Executing a manipulation of the argument File can lead to unrestricted upload. The attack can be launched remotely. The explo...

net.mingsoft:ms-mweixin (=1.0.7) potentially affected by CVE-2026-2666 via net.mingsoft:ms-mcms (=6.1.1)

net.mingsoft:ms-mcms MAVEN version =6.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on net.mingsoft:ms-mcms and may be impacted: - net.mingsoft:ms-mweixin =1.0.7 Source cves: CVE-2026-2666 Source advisory: OSV:GHSA-R9WP-QQ53-QVJX...

net.mingsoft:ms-mweixin (=1.0.7) potentially affected by CVE-2026-2666 via net.mingsoft:ms-mcms (=6.1.1)

net.mingsoft:ms-mcms MAVEN version =6.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on net.mingsoft:ms-mcms and may be impacted: - net.mingsoft:ms-mweixin =1.0.7 Source cves: CVE-2026-2666 Source advisory: SNYK:JAVA-NETMINGSOFT-15323728...

CVE-2026-2666

A flaw has been found in mingSoft MCMS 6.1.1. The affected element is an unknown function of the file /ms/file/uploadTemplate.do of the component Template Archive Handler. Executing a manipulation of the argument File can lead to unrestricted upload. The attack can be launched remotely. The explo...

EUVD-2021-0851

Malware in sbrugna...

CVE-2023-2666

Allocation of Resources Without Limits or Throttling in GitHub repository froxlor/froxlor prior to 2.0.16...

CVE-2012-2666

golang/go in 1.0.2 fixes all.bash on shared machines. dotest in src/pkg/debug/gosym/pclntabtest.go creates a temporary file with predicable name and executes it as shell script...

CVE-2023-2666

creationtimestamp| type| source ---|---|--- 2025-01-24 16:04:35+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2915...

Amazon Linux 2 : qt5-qtsensors (ALAS-2024-2666)

The version of qt5-qtsensors installed on the remote host is prior to 5.15.3-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2666 advisory. An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before 6.5.7, and 6.6.x throug...

CVE-2024-2666

The Premium Addons for Elementor plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the plugin's Bullet List Widget in all versions up to, and including, 4.10.24 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

CVE-2023-2666 Allocation of Resources Without Limits or Throttling in froxlor/froxlor

Allocation of Resources Without Limits or Throttling in GitHub repository froxlor/froxlor prior to 2.0.16...

CVE-2023-2666 Allocation of Resources Without Limits or Throttling in froxlor/froxlor

Allocation of Resources Without Limits or Throttling in GitHub repository froxlor/froxlor prior to 2.0.16...

CVE-2023-2666

Froxlor (versions prior to 2.0.16) has a resource management vulnerability described as Allocation of Resources Without Limits or Throttling. The issue, a resource-management error in Froxlor, can lead to denial of service. This is corroborated by multiple sources (NVD, Red Hat, CNVD/CNNVD, OSV, ...

CVE-2023-2666 Allocation of Resources Without Limits or Throttling in froxlor/froxlor

Allocation of Resources Without Limits or Throttling in GitHub repository froxlor/froxlor prior to 2.0.16...

SUSE CVE-2012-2666

golang/go in 1.0.2 fixes all.bash on shared machines. dotest in src/pkg/debug/gosym/pclntabtest.go creates a temporary file with predicable name and executes it as shell script...

CVE-2022-2666

CVE-2022-2666 affects SourceCodester Loan Management System, specifically the login.php code path. The vulnerability is a SQL injection triggered by manipulating the username parameter, allowing remote exploitation. The issue is described as critical, with exploitation disclosed publicly (VDB-205...

CVE-2022-2666 SourceCodester Loan Management System login.php sql injection

A vulnerability has been found in SourceCodester Loan Management System and classified as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed...

CVE-2012-2666

golang/go in 1.0.2 fixes all.bash on shared machines. dotest in src/pkg/debug/gosym/pclntabtest.go creates a temporary file with predicable name and executes it as shell script...

CVE-2012-2666

CVE-2012-2666 concerns the Go project. According to connected sources, the root cause is that dotest() in src/pkg/debug/gosym/pclntab_test.go creates a temporary file with a predictable name and then executes it as a shell script. The practical implication is potential arbitrary code execution if...

RHEL 8 : kernel (RHSA-2021:2666)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2666 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free in...