CVE-2025-6027

creationtimestamp| type| source ---|---|--- 2025-11-05 07:41:10+00:00| seen| https://gist.github.com/Darkcrai86/3a46e532eb6b7f8d0db806c67f60f0d9...

CVE-2006-6027

creationtimestamp| type| source ---|---|--- 2025-09-09 21:02:25+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lygmjfdn4f2o...

CVE-2019-6027

Cross-site request forgery CSRF vulnerability in WP Spell Check 7.1.9 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...

CVE-2024-6027

The Themify – WooCommerce Product Filter plugin for WordPress is vulnerable to time-based SQL Injection via the ‘conditions’ parameter in all versions up to, and including, 1.4.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

RHEL 8 : git (RHSA-2024:6027)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6027 advisory. Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a...

CVE-2024-6027

The Themify – WooCommerce Product Filter plugin for WordPress is vulnerable to time-based SQL Injection via the ‘conditions’ parameter in all versions up to, and including, 1.4.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

CVE-2024-6027 Themify - WooCommerce Product Filter <= 1.4.9 - Unauthenticated SQL Injection via conditions Parameter

The Themify – WooCommerce Product Filter plugin for WordPress is vulnerable to time-based SQL Injection via the ‘conditions’ parameter in all versions up to, and including, 1.4.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

CVE-2024-6027 Themify - WooCommerce Product Filter <= 1.4.9 - Unauthenticated SQL Injection via conditions Parameter

The Themify – WooCommerce Product Filter plugin for WordPress is vulnerable to time-based SQL Injection via the ‘conditions’ parameter in all versions up to, and including, 1.4.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

WordPress Themify – WooCommerce Product Filter Plugin <= 1.4.9 is vulnerable to SQL Injection

Software Themify – WooCommerce Product Filter Type Plugin Vulnerable versions = 1.4.9 Fixed in 1.5.0 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-6027 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 0ec8ecf4ef08 Credits Arkadiusz Hydzik Required...

CVE-2019-6027

creationtimestamp| type| source ---|---|--- 2024-03-17 10:16:16+00:00| seen| https://t.me/ctinow/209839...

CVE-2023-6027

creationtimestamp| type| source ---|---|--- 2023-12-21 08:37:46+00:00| seen| https://t.me/ctinow/157531...

CVE-2023-6027

CVE-2023-6027 affects elijaa/phpmemcachedadmin v1.3.0 with a stored XSS due to improper encoding of user-controlled entries in "/pmcadmin/configure.php". Connected sources corroborate a cross-site scripting vulnerability in PHPMemcachedAdmin, enabling injection of JavaScript payloads via that par...

Ubuntu: Security Advisory (USN-6027-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6027-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6027-1 advisory. It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local...

CVE-2019-6027

The CVE-2019-6027 entry concerns the WordPress WP Spell Check plugin (versions ≤ 7.1.9). A CSRF vulnerability allows an attacker to cause actions on behalf of an authenticated admin when a user views a malicious page, per multiple connected sources. Impact is described as hijacking administrator ...

CVE-2019-6027

Cross-site request forgery CSRF vulnerability in WP Spell Check 7.1.9 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...

CVE-2018-14264

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Type confusion

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2018-14264

CVE-2018-14264 is a type confusion remote-code-execution vulnerability in Foxit Reader (importAnFDF method). Exploitation requires user interaction (visiting a malicious page or opening a malicious file) and can execute code in the current process. Affected products include Foxit Reader versions ...

CVE-2014-6027

CVE-2014-6027 affects TorrentFlux 2.4 with multiple cross-site scripting (XSS) vulnerabilities. An attacker can craft torrent content or links to torrent details to inject arbitrary script/HTML in a victim’s browser. Descriptions across multiple sources (NVD/CNVD/Ubuntu CVE page) confirm two vect...