RHCOS 4 : OpenShift Container Platform 4.10.28 (RHSA-2022:6094)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6094 advisory. - golang: cmd/go: misinterpretation of branch names can lead to incorrect access control CVE-2022-23773 - golang: crypto/elliptic:...

CVE-2025-6094

creationtimestamp| type| source ---|---|--- 2025-06-15 23:37:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18389 2025-06-16 01:38:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrotu6nkfp2s...

CVE-2025-6094 qianfox FoxCMS Download.php batchCope sql injection

A vulnerability, which was classified as critical, has been found in qianfox FoxCMS up to 1.2.5. This issue affects the function batchCope of the file app/admin/controller/Download.php. The manipulation of the argument ids leads to sql injection. The attack may be initiated remotely. The exploit...

CVE-2025-6094

FoxCMS (versions up to 1.2.5) contains a SQL injection in the batchCope function of app/admin/controller/Download.php, triggered by manipulating the ids parameter. The vulnerability allows remote exploitation and has publicly disclosed exploits. Publicly available advisories (e.g., PT-2025-25506)...

CVE-2025-6094 qianfox FoxCMS Download.php batchCope sql injection

A vulnerability, which was classified as critical, has been found in qianfox FoxCMS up to 1.2.5. This issue affects the function batchCope of the file app/admin/controller/Download.php. The manipulation of the argument ids leads to sql injection. The attack may be initiated remotely. The exploit...

CVE-2024-6094

The WP ULike WordPress plugin before 4.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2020-6094

creationtimestamp| type| source ---|---|--- 2024-10-23 16:11:43+00:00| seen| https://t.me/CyberSecurityTechnologies/1078...

CVE-2024-6094

creationtimestamp| type| source ---|---|--- 2024-07-24 09:07:32+00:00| seen| https://t.me/cvedetector/1542...

CVE-2024-6094

The WP ULike WordPress plugin before 4.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-6094 WP ULike < 4.7.1 - Admin+ Stored XSS

The WP ULike WordPress plugin before 4.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

WordPress WP ULike Plugin < 4.7.1 is vulnerable to Cross Site Scripting (XSS)

Software WP ULike Type Plugin Vulnerable versions 4.7.1 Fixed in 4.7.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6094 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 2b5286cbd123 Credits Dmitrii Ignatyev Required privile...

CVE-2023-6094

creationtimestamp| type| source ---|---|--- 2023-12-31 11:26:43+00:00| seen| https://t.me/ctinow/161062 2024-01-01 01:31:34+00:00| seen| https://t.me/cibsecurity/74062...

CVE-2023-6094

A vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. The vulnerability results from lack of protection for sensitive information during transmission. An attacker eavesdropping on the traffic between the web browser and server may obtain sensitive...

CVE-2023-6094 OnCell G3150A-LTE Series: Web Server Transmits Cleartext Credentials

A vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. The vulnerability results from lack of protection for sensitive information during transmission. An attacker eavesdropping on the traffic between the web browser and server may obtain sensitive...

CVE-2023-6094

The CVE-2023-6094 entry describes a vulnerability in OnCell G3150A-LTE Series firmware versions prior to v1.3 where sensitive information is transmitted without protection. An attacker could eavesdrop on traffic between a web browser and the device/server to obtain sensitive data. Affected produc...

SUSE CVE-2012-6094

cups Common Unix Printing System 'Listen localhost:631' option not honored correctly which could provide unauthorized access to the system...

RHEL 7 / 8 : OpenShift Container Platform 4.10.28 (RHSA-2022:6094)

The remote Redhat Enterprise Linux 7 / 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6094 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...

Mageia: Security Advisory (MGASA-2018-0268)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-6094

The vulnerability CVE-2020-6094 affects Accusoft ImageGear 19.4–19.6 (igcore19d.dll). A TIFF file can cause an out-of-bounds write in fill_in_raster due to an integer overflow in compute_size_from_bibitWidth_operations, which computes heap_buffer size from SamplesPerPixel and biWidth. An attacker...

CVE-2012-6094

creationtimestamp| type| source ---|---|--- 2019-12-20 18:43:04+00:00| seen| https://t.me/cibsecurity/8808 2024-03-16 09:22:05+00:00| seen| https://t.me/ctinow/209428...