EPSON Printers Uncontrolled Search Path Element (CVE-2020-6091)

An exploitable authentication bypass vulnerability exists in the ESPON Web Control functionality of Epson EB-1470Ui MAIN: 98009273ESWWV107 MAIN2: 8X7325WWV303. A specially crafted series of HTTP requests can cause authentication bypass resulting in information disclosure. An attacker can send an...

EUVD-2009-4187

Malware in sbrugna...

CVE-2015-6091

creationtimestamp| type| source ---|---|--- 2025-08-31 03:12:54+00:00| seen| MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57...

CVE-2025-6091

creationtimestamp| type| source ---|---|--- 2025-06-15 06:26:03+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114685952859543578 2025-06-15 17:00:58+00:00| published-proof-of-concept| Telegram/l6IIPTgPw1cq3xrnAKjqR-N4ZgNd2ZJV8jxOJjAPtB1Rm4 2025-06-15 17:36:02+00:00|...

CVE-2012-6091

ZendXmlRpc Class in Magento before 1.7.0.2 contains an information disclosure vulnerability...

CVE-2024-6091

creationtimestamp| type| source ---|---|--- 2024-09-11 16:10:39+00:00| seen| https://t.me/cvedetector/5351 2024-09-17 08:55:56+00:00| seen| https://t.me/CyberBulletin/745 2024-09-17 09:50:03+00:00| seen| https://t.me/CyberBulletin/25587 2024-09-18 09:07:11+00:00| published-proof-of-concept|...

autoxx (>=0.0.11 <=0.0.13), vuln-demo-math-ops (=1.0.0) potentially affected by CVE-2024-6091 via agpt (=0.2.2)

agpt PYPI version =0.2.2 is affected by a known vulnerability. The following packages have a transitive dependency on agpt and may be impacted: - autoxx =0.0.11, =0.0.13 - vuln-demo-math-ops =1.0.0 Source cves: CVE-2024-6091 Source advisory: OSV:GHSA-G84Q-54HF-36RG...

CVE-2024-6091 Shell Command Denylist Bypass in significant-gravitas/autogpt

A vulnerability in significant-gravitas/autogpt version 0.5.1 allows an attacker to bypass the shell commands denylist settings. The issue arises when the denylist is configured to block specific commands, such as 'whoami' and '/bin/whoami'. An attacker can circumvent this restriction by executin...

CVE-2023-6091

Unrestricted Upload of File with Dangerous Type vulnerability in mndpsingh287 Theme Editor.This issue affects Theme Editor: from n/a through 2.7.1...

CVE-2023-6091

CVE-2023-6091 affects the WordPress Theme Editor plugin (mndpsingh287) and its “Theme Editor” component, with vulnerable versions &lt;= 2.7.1. The issue is an Unrestricted Upload of File with Dangerous Type that could enable an attacker with Administrator privileges to upload arbitrary files to t...

WordPress Theme Editor Plugin <= 2.7.1 is vulnerable to Arbitrary File Upload

Software Theme Editor Type Plugin Vulnerable versions = 2.7.1 Fixed in 2.8 OWASP Top 10 A4: Insecure Design Classification Arbitrary File Upload CVE CVE-2023-6091 Patch priority Low CVSS severity Low 7.2 Developer Claim ownership PSID e6961ec7faba Credits Dateoljo of BoB 12th Required privilege...

Ubuntu: Security Advisory (USN-6091-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2018-6091

Service Workers can intercept any request made by an or tag in Fetch API in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

Mageia: Security Advisory (MGASA-2018-0268)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-6091

CVE-2020-6091 affects Epson EB-1470Ui via the ESPON Web Control feature. Affected: MAIN: 98009273ESWWV107 and MAIN2: 8X7325WWV303. A specially crafted sequence of HTTP requests can bypass authentication, leading to information disclosure. Multiple sources (Talos, Tenable OT plugin, Red Hat, CNVD,...

CVE-2012-6091

CVE-2012-6091 : Magento prior to 1.7.0.2 has an information disclosure vulnerability in the Zend_XmlRpc implementation (Magento’s XML-RPC handling). The weakness affects the Zend_XmlRpc_Server/XmlRpc handling and can allow a remote attacker to view sensitive information. Affected product is Magen...

CVE-2018-6091

Service Workers can intercept any request made by an or tag in Fetch API in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2018-6091

Service Workers can intercept any request made by an or tag in Fetch API in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2018-6091

CVE-2018-6091 corresponds to a Chrome/Chromium vulnerability where Service Workers incorrectly handle plugins. The connected documentation links this CVE to the Chrome/Chromium 66.0.3359.117 line, with advisories noting affected releases and urging upgrades. Affected product: Google Chrome (Chrom...

Fedora 28 : chromium (2018-94e1bc8c23)

Update to 66.0.3359.181. Security fix for CVE-2018-6085 CVE-2018-6086 CVE-2018-6087 CVE-2018-6088 CVE-2018-6089 CVE-2018-6090 CVE-2018-6091 CVE-2018-6092 CVE-2018-6093 CVE-2018-6094 CVE-2018-6095 CVE-2018-6096 CVE-2018-6097 CVE-2018-6098 CVE-2018-6099 CVE-2018-6100 CVE-2018-6101 CVE-2018-6102...