48 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-6094
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overread in wcPKCS7DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData. This could theoretically be triggered by attacker-supplied data...
DEBIAN-CVE-2026-6094
Heap buffer overread in wcPKCS7DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData. This could theoretically be triggered by attacker-supplied data delivered via S/MIME or CMS...
CVE-2026-6094
Heap buffer overread in wcPKCS7DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData. This could theoretically be triggered by attacker-supplied data delivered via S/MIME or CMS...
RHCOS 4 : OpenShift Container Platform 4.10.28 (RHSA-2022:6094)
The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6094 advisory. - golang: cmd/go: misinterpretation of branch names can lead to incorrect access control CVE-2022-23773 - golang: crypto/elliptic:...
CVE-2025-6094
creationtimestamp| type| source ---|---|--- 2025-06-15 23:37:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18389 2025-06-16 01:38:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrotu6nkfp2s...
CVE-2025-6094
FoxCMS (versions up to 1.2.5) contains a SQL injection in the batchCope function of app/admin/controller/Download.php, triggered by manipulating the ids parameter. The vulnerability allows remote exploitation and has publicly disclosed exploits. Publicly available advisories (e.g., PT-2025-25506)...
CVE-2025-6094 qianfox FoxCMS Download.php batchCope sql injection
A vulnerability, which was classified as critical, has been found in qianfox FoxCMS up to 1.2.5. This issue affects the function batchCope of the file app/admin/controller/Download.php. The manipulation of the argument ids leads to sql injection. The attack may be initiated remotely. The exploit...
CVE-2025-6094 qianfox FoxCMS Download.php batchCope sql injection
A vulnerability, which was classified as critical, has been found in qianfox FoxCMS up to 1.2.5. This issue affects the function batchCope of the file app/admin/controller/Download.php. The manipulation of the argument ids leads to sql injection. The attack may be initiated remotely. The exploit...
CVE-2024-6094
The WP ULike WordPress plugin before 4.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2020-6094
creationtimestamp| type| source ---|---|--- 2024-10-23 16:11:43+00:00| seen| https://t.me/CyberSecurityTechnologies/1078...
CVE-2024-6094
creationtimestamp| type| source ---|---|--- 2024-07-24 09:07:32+00:00| seen| https://t.me/cvedetector/1542...
CVE-2024-6094
The WP ULike WordPress plugin before 4.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-6094 WP ULike < 4.7.1 - Admin+ Stored XSS
The WP ULike WordPress plugin before 4.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
WordPress WP ULike Plugin < 4.7.1 is vulnerable to Cross Site Scripting (XSS)
Software WP ULike Type Plugin Vulnerable versions 4.7.1 Fixed in 4.7.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6094 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 2b5286cbd123 Credits Dmitrii Ignatyev Required privile...
CVE-2023-6094
creationtimestamp| type| source ---|---|--- 2023-12-31 11:26:43+00:00| seen| https://t.me/ctinow/161062 2024-01-01 01:31:34+00:00| seen| https://t.me/cibsecurity/74062...
CVE-2023-6094
A vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. The vulnerability results from lack of protection for sensitive information during transmission. An attacker eavesdropping on the traffic between the web browser and server may obtain sensitive...
CVE-2023-6094
The CVE-2023-6094 entry describes a vulnerability in OnCell G3150A-LTE Series firmware versions prior to v1.3 where sensitive information is transmitted without protection. An attacker could eavesdrop on traffic between a web browser and the device/server to obtain sensitive data. Affected produc...
CVE-2023-6094 OnCell G3150A-LTE Series: Web Server Transmits Cleartext Credentials
A vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. The vulnerability results from lack of protection for sensitive information during transmission. An attacker eavesdropping on the traffic between the web browser and server may obtain sensitive...
SUSE CVE-2012-6094
cups Common Unix Printing System 'Listen localhost:631' option not honored correctly which could provide unauthorized access to the system...
RHEL 7 / 8 : OpenShift Container Platform 4.10.28 (RHSA-2022:6094)
The remote Redhat Enterprise Linux 7 / 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6094 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...