Geo Vision EoL Devices Improper Neutralization of Special Elements used in an OS Command (CVE-2024-6047)

Certain EOL GeoVision devices fail to properly filter user input for the specific functionality. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device. This plugin only works with Tenable.ot. Please visit...

CVE-2024-6047

creationtimestamp| type| source ---|---|--- 2024-06-18 20:43:16+00:00| published-proof-of-concept| https://t.me/HackingInsights/2885 2025-05-06 16:02:21+00:00| seen| https://bsky.app/profile/hackingne.ws/post/3lojayxpqgp2g 2025-05-06 16:34:32+00:00| seen|...

CVE-2024-6047

Certain EOL GeoVision devices fail to properly filter user input for the specific functionality. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device...

CVE-2024-6047 GeoVision EOL device - OS Command Injection

Certain EOL GeoVision devices fail to properly filter user input for the specific functionality. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device...

CVE-2024-6047 GeoVision EOL device - OS Command Injection

Certain EOL GeoVision devices fail to properly filter user input for the specific functionality. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device...

CVE-2023-6047

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Algoritim E-commerce Software allows Reflected XSS. This issue affects E-commerce Software: before 3.9.2...

CVE-2023-6047

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Algoritim E-commerce Software allows Reflected XSS. This issue affects E-commerce Software: before 3.9.2...

CVE-2023-6047 Reflected XSS in Algoritim E-commerce Software

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Algoritim E-commerce Software allows Reflected XSS. This issue affects E-commerce Software: before 3.9.2...

CVE-2023-6047 Reflected XSS in Algoritim E-commerce Software

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Algoritim E-commerce Software allows Reflected XSS. This issue affects E-commerce Software: before 3.9.2...

CVE-2023-6047

CVE-2023-6047 describes a Reflected XSS in Algoritim E-commerce Software (pre-3.9.2) caused by improper neutralization of user input during web page generation. Affected software is specified as Algoritim E-commerce Software before version 3.9.2. The primary impact is cross-site scripting, enabli...

Ubuntu: Security Advisory (USN-6047-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : Linux kernel vulnerability (USN-6047-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-6047-1 advisory. It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel did not properly perform filter deactivation i...

CVE-2017-6047

creationtimestamp| type| source ---|---|--- 2019-04-03 00:31:42+00:00| seen| https://t.me/cibsecurity/3496...

CVE-2017-6047

Detcon SiteWatch Gateway (all non-cellular versions) has a plaintext password exposure: passwords are stored in a file accessible without authentication. This CVE-2017-6047 is documented in multiple sources (NVD entry and ICS-CERT-related advisory context) and indicates an authentication weakness...

CVE-2017-6047

Detcon Sitewatch Gateway, all versions without cellular, Passwords are presented in plaintext in a file that is accessible without authentication...

UBUNTU-CVE-2018-6047

Insufficient policy enforcement in WebGL in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user redirect URL via a crafted HTML page...

CVE-2018-6047

Insufficient policy enforcement in WebGL in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user redirect URL via a crafted HTML page...

CVE-2018-6047

Removed by vendor...

CVE-2018-6047

Google Chrome WebGL vulnerability CVE-2018-6047 involves insufficient policy enforcement in WebGL that could leak a user’s redirect URL via a crafted page. Affected product: Google Chrome (WebGL component). Root cause: policy enforcement issue in WebGL. Impact: potential information disclosure of...

CVE-2014-6047

CVE-2014-6047 affects phpMyFAQ prior to 2.8.13. The vulnerability exists in the download attachments path (phpmyfaq/attachment.php) due to incorrect permission checks, enabling remote authenticated users with some rights (e.g., add/delete attachments) to read arbitrary attachments they should not...