CVE-2026-6035

creationtimestamp| type| source ---|---|--- 2026-04-10 10:33:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mj54ohahsu23...

TencentOS Server 4: gimp (TSSA-2025:0607)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0607 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

Debian: Security Advisory (DSA-6043-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Medium: gimp

Issue Overview: A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug-in. The issue occurs due to unchecked multiplication of image dimensions, such as width, height, and bytes-per-pixel imgbpp, which can result in allocating insufficient memory and...

openSUSE Security Advisory (SUSE-SU-2025:02367-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : gimp (SUSE-SU-2025:02367-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02367-1 advisory. - CVE-2025-6035: Fixed Integer Overflow or Wraparound in GIMP Despeckle Filter bsc1244536. Tenable has...

Security update for gimp

This update for gimp fixes the following issues: CVE-2025-6035: Fixed Integer Overflow or Wraparound in GIMP Despeckle Filter bsc1244536. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can r...

OESA-2025-1834 gimp security update

The GIMP is an image composition and editing program, which can be used for creating logos and other graphics for Web pages. The GIMP offers many tools and filters, and provides a large image manipulation toolbox, including channel operations and layers, effects, subpixel imaging and antialiasing...

OESA-2025-1832 gimp security update

The GIMP is an image composition and editing program, which can be used for creating logos and other graphics for Web pages. The GIMP offers many tools and filters, and provides a large image manipulation toolbox, including channel operations and layers, effects, subpixel imaging and antialiasing...

CVE-2025-6035

A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug-in. The issue occurs due to unchecked multiplication of image dimensions, such as width, height, and bytes-per-pixel imgbpp, which can result in allocating insufficient memory and subsequently performi...

CVE-2025-6035

A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug-in. The issue occurs due to unchecked multiplication of image dimensions, such as width, height, and bytes-per-pixel imgbpp, which can result in allocating insufficient memory and subsequently performi...

CVE-2025-6035

creationtimestamp| type| source ---|---|--- 2025-06-13 15:36:36+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18300 2025-06-13 16:08:29+00:00| seen| Telegram/Fw0XBy1WaCOjxg2mWHXnG8lWV81E0IbizYC1ykRJG5IGg 2025-06-13 18:00:34+00:00| seen|...

CVE-2025-6035

A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug-in. The issue occurs due to unchecked multiplication of image dimensions, such as width, height, and bytes-per-pixel imgbpp, which can result in allocating insufficient memory and subsequently performi...

CVE-2024-6035

A Stored Cross-Site Scripting XSS vulnerability exists in gaizhenbiao/chuanhuchatgpt version 20240410. This vulnerability allows an attacker to inject malicious JavaScript code into the chat history file. When a victim uploads this file, the malicious script is executed in the victim's browser...

CVE-2024-6035

creationtimestamp| type| source ---|---|--- 2024-07-11 14:08:20+00:00| seen| https://t.me/cvedetector/654...

CVE-2024-6035

A Stored Cross-Site Scripting XSS vulnerability exists in gaizhenbiao/chuanhuchatgpt version 20240410. This vulnerability allows an attacker to inject malicious JavaScript code into the chat history file. When a victim uploads this file, the malicious script is executed in the victim's browser...

CVE-2019-6035

creationtimestamp| type| source ---|---|--- 2024-03-17 10:16:24+00:00| seen| https://t.me/ctinow/209846...

CVE-2023-6035

creationtimestamp| type| source ---|---|--- 2024-01-01 14:31:26+00:00| seen| https://t.me/ctinow/161313...

WordPress EazyDocs Plugin < 2.3.4 is vulnerable to SQL Injection

Software EazyDocs Type Plugin Vulnerable versions 2.3.4 Fixed in 2.3.4 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-6035 Patch priority High CVSS severity High 8.5 Developer Claim ownership PSID 6ad682fb44ae Credits Dao Xuan Hieu Required privilege Subscriber Published 19...

CVE-2023-6035

Summary (CVE-2023-6035) : The EazyDocs WordPress plugin (versions prior to 2.3.4) contains a SQL Injection vulnerability in the AJAX endpoint that uses the tainted “data” parameter without proper sanitization/escaping. This could allow any authenticated user (e.g., subscribers) to perform SQL inj...