58 matches found
CVE-2026-6059
creationtimestamp| type| source ---|---|--- 2026-05-24 22:00:00+00:00| seen| https://jvn.jp/en/jp/JVN69049186 2026-06-20 22:58:54+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3moqxh6mqnc25...
CVE-2025-6059
creationtimestamp| type| source ---|---|--- 2025-06-14 02:37:33+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18349 2025-06-14 07:13:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrkfmipwxd2u...
CVE-2025-6059 Seraphinite Accelerator <= 2.27.21 - Cross-Site Request Forgery to Multiple Administrative Actions
The Seraphinite Accelerator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.27.21. This is due to missing or incorrect nonce validation on the 'OnAdminApiCacheOpBegin' function. This makes it possible for unauthenticated attackers to perfor...
CVE-2024-6059
A vulnerability, which was classified as problematic, has been found in Ingenico Estate Manager 2023. This issue affects some unknown processing of the file /emgui/rest/ums/messages of the component News Feed. The manipulation of the argument message leads to cross site scripting. The attack may ...
CVE-2024-6059 Ingenico Estate Manager News Feed messages cross site scripting
A vulnerability, which was classified as problematic, has been found in Ingenico Estate Manager 2023. This issue affects some unknown processing of the file /emgui/rest/ums/messages of the component News Feed. The manipulation of the argument message leads to cross site scripting. The attack may ...
RHEL 8 : Red Hat OpenShift Pipelines Client tkn for 1.12.1 (RHSA-2023:6059)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6059 advisory. Red Hat OpenShift Pipelines Client, tkn for the 1.12.1 release, provides a CLI tool to interact with the Pipelines and Triggers components...
Oracle Linux 7 : mod_auth_openidc (ELSA-2019-2112)
The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2019-2112 advisory. - Resolves: rhbz1626297 - CVE-2017-6413 modauthopenidc: OIDCCLAIM and OIDCAuthNHeader not skipped in an 'AuthType oauth20' configuration rhel-7 Tenable...
Ubuntu: Security Advisory (USN-6059-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 20.04 LTS / 22.04 LTS : Erlang vulnerability (USN-6059-1)
The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6059-1 advisory. It was discovered that Erlang did not properly implement TLS client certificate validation during the TLS handshake. A remote attacker could use this...
SUSE CVE-2012-5597
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-6059. Reason: This candidate is a reservation duplicate of CVE-2012-6059. Notes: All CVE users should reference CVE-2012-6059 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental...
CVE-2018-6059
CVE-2018-6059 is a reservation/duplicate of CVE-2017-11225 and has been superseded; the description explicitly states this candidate should reference CVE-2017-11225 and that all references/descriptions for 2018-6059 were removed to prevent usage. The connected CVE-2017-11225 entry describes a use...
CVE-2018-6059
...
CVE-2020-6059
Mini-SNMPD 1.4 is affected by an exploitable out-of-bounds read in the SNMP packet decoder (decode_int). The flaw can lead to disclosure of sensitive information and a denial of service when a specially crafted SNMP request is processed, due to improper handling of length fields that may read pas...
Vulnerability Spotlight: Denial-of-service, information leak bugs in Mini-SNMPD
Aleksandar Nikolic of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw. Multiple vulnerabilities exist in Mini-SNMPD, a lightweight implementation of a Simple Network Management Protocol server. An attacker can exploit these bugs by providing a specially crafted SNMPD request to...
CVE-2014-6059
WordPress Advanced Access Manager Plugin before 2.8.2 has an Arbitrary File Overwrite Vulnerability...
Fedora 29 : mod_auth_openidc (2019-23638d42f3)
Upgrade to latest upstream which fixes some CVEs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C...
Fedora 30 : mod_auth_openidc (2019-7b06f18a10)
Upgrade to latest upstream which fixes some CVEs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C...
Amazon Linux 2 : mod_auth_openidc (ALAS-2019-1329)
A text injection flaw was found in how modauthopenidc handled error pages. An attacker could potentially use this flaw to conduct content spoofing and phishing attacks by tricking users into opening specially crafted URLs.CVE-2017-6059 It was found that modauthopenidc did not properly sanitize HT...
Medium: mod_auth_openidc
Issue Overview: A text injection flaw was found in how modauthopenidc handled error pages. An attacker could potentially use this flaw to conduct content spoofing and phishing attacks by tricking users into opening specially crafted URLs.CVE-2017-6059 It was found that modauthopenidc did not...
Medium: mod24_auth_openidc
Issue Overview: A text injection flaw was found in how modauthopenidc handled error pages. An attacker could potentially use this flaw to conduct content spoofing and phishing attacks by tricking users into opening specially crafted URLs. CVE-2017-6059 It was found that modauthopenidc did not...