CVE-2026-6031

creationtimestamp| type| source ---|---|--- 2026-04-10 09:17:39+00:00| published-proof-of-concept| Telegram/6sW88BjwOE3AHA0v9w1zrWgG5EAJrhgxrYoPay5W7gN4tNI 2026-04-10 10:42:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mj5573ea2f2d...

CVE-2026-6031 code-projects Simple IT Discussion Forum add-category-function.php sql injection

A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. This affects an unknown function of the file /add-category-function.php. Such manipulation of the argument Category leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the...

MiracleLinux 9 : python3.11-3.11.2-2.el9.1 (AXSA:2023-6031:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6031:01 advisory. python: urllib.parse url blocklisting bypass CVE-2023-24329 Tenable has extracted the preceding description block directly from the MiracleLinux security...

EUVD-2025-24595

Malicious code in bioql PyPI...

cflow-1.8-2.1 on GA media (moderate)

cflow-1.8-2.1 on GA media Announcement ID: openSUSE-SU-2025:15459-1 Rating: moderate Cross-References: CVE-2023-6031 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the cflow-1.8-2.1 package o...

CVE-2025-34153

Hyland OnBase versions prior to 17.0.2.87 other versions may be affected are vulnerable to unauthenticated remote code execution via insecure deserialization on the .NET Remoting TCP channel. The service registers a listener on port 6031 with the URI endpoint TimerServer, implemented in...

CVE-2025-34153

Hyland OnBase versions prior to 17.0.2.87 other versions may be affected are vulnerable to unauthenticated remote code execution via insecure deserialization on the .NET Remoting TCP channel. The service registers a listener on port 6031 with the URI endpoint TimerServer, implemented in...

CVE-2025-34153

Hyland OnBase versions prior to 17.0.2.87 other versions may be affected are vulnerable to unauthenticated remote code execution via insecure deserialization on the .NET Remoting TCP channel. The service registers a listener on port 6031 with the URI endpoint TimerServer, implemented in...

CVE-2025-34153 Hyland OnBase < 17.0.2.87 .NET Remoting TCP Channel Unauthenticated RCE

Hyland OnBase versions prior to 17.0.2.87 other versions may be affected are vulnerable to unauthenticated remote code execution via insecure deserialization on the .NET Remoting TCP channel. The service registers a listener on port 6031 with the URI endpoint TimerServer, implemented in...

CVE-2025-34153

CVE-2025-34153 affects Hyland OnBase versions prior to 17.0.2.87. The vulnerability arises from insecure deserialization on the .NET Remoting TCP channel, where a listener on port 6031 (TimerServer, Hyland.Core.Timers.dll) deserializes untrusted input via BinaryFormatter, allowing unauthenticated...

CVE-2025-6031 Insecure device pairing in end of life Amazon Cloud Cam

Amazon Cloud Cam is a home security camera that was deprecated on December 2, 2022, is end of life, and is no longer actively supported. When a user powers on the Amazon Cloud Cam, the device attempts to connect to a remote service infrastructure that has been deprecated due to end-of-life status...

CVE-2025-6031

CVE-2025-6031 concerns the now-deprecated Amazon Cloud Cam. The vulnerability arises from the device’s default pairing state, which can allow an arbitrary user to bypass SSL pinning and associate the camera with any network, enabling interception and modification of network traffic. Affected prod...

CVE-2025-6031 Insecure device pairing in end of life Amazon Cloud Cam

Amazon Cloud Cam is a home security camera that was deprecated on December 2, 2022, is end of life, and is no longer actively supported. When a user powers on the Amazon Cloud Cam, the device attempts to connect to a remote service infrastructure that has been deprecated due to end-of-life status...

CVE-2024-6031

creationtimestamp| type| source ---|---|--- 2025-04-30 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-261/ 2025-04-30 20:14:23+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14148 2025-04-30 21:55:55+00:00| seen|...

CVE-2015-6031

creationtimestamp| type| source ---|---|--- 2024-11-18 03:26:15+00:00| seen| https://infosec.exchange/users/cve/statuses/113501822965987817 2024-11-18 03:29:37+00:00| seen| https://infosec.exchange/users/cve/statuses/113501836193686265...

Huawei Datacard Information Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'base64' class MetasploitModule /./i, 'Serial Number' = /./i, 'IMEI' = /./i, 'IMSI' = /./i, 'ICCID' = /./i, 'Hardware Version' = /./i, 'Software Version' = /./i,...

CVE-2019-6031

creationtimestamp| type| source ---|---|--- 2024-03-17 10:16:19+00:00| seen| https://t.me/ctinow/209842...

SUSE CVE-2023-6031

unknown...

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6031-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6031-1 advisory. It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker...

CVE-2019-6031

Kinza browser (Windows, v5.9.2 and earlier; Mac, v5.0.0 and earlier) is affected by a cross-site scripting vulnerability (CWE-79) in the RSS reader, allowing an attacker to inject arbitrary web script or HTML. The available sources indicate that exploitation is feasible if Content Security Policy...