49 matches found
CVE-2026-6107 1Panel-dev MaxKB ChatHeadersMiddleware chat_headers_middleware.py cross site scripting
A flaw has been found in 1Panel-dev MaxKB up to 2.6.1. This issue affects some unknown processing of the file apps/common/middleware/chatheadersmiddleware.py of the component ChatHeadersMiddleware. This manipulation of the argument Name causes cross site scripting. Remote exploitation of the atta...
CVE-2026-6107
creationtimestamp| type| source ---|---|--- 2026-04-11 16:16:16+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-6107 2026-04-12 03:57:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjbhjij4jm2x...
RHSA-2023:6107
creationtimestamp| type| source ---|---|--- 2025-10-09 12:11:13+00:00| seen| Telegram/qxGu8k6nAfibDWvWNAcTz9A0m6a2PFLS0-ME0SuXxJZTZI...
Linux Distros Unpatched Vulnerability : CVE-2024-6107
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to insufficient verification, an attacker could use a malicious client to bypass authentication checks and run RPC commands in a region. This has been...
CVE-2024-6107
Due to insufficient verification, an attacker could use a malicious client to bypass authentication checks and run RPC commands in a region. This has been addressed in MAAS and updated in the corresponding snaps...
CVE-2024-6107
creationtimestamp| type| source ---|---|--- 2025-07-21 12:47:16+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114891295026271258 2025-07-22 01:09:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lujczizuvj2t 2025-09-09 20:56:44+00:00| seen|...
CVE-2025-6107
A vulnerability was found in comfyanonymous comfyui 0.3.40. It has been classified as problematic. Affected is the function setattr of the file /comfy/utils.py. The manipulation leads to dynamically-determined object attributes. It is possible to launch the attack remotely. The complexity of an...
CVE-2025-6107
creationtimestamp| type| source ---|---|--- 2025-06-16 05:37:08+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18415 2025-06-16 07:33:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrphpgzxej2r...
CVE-2025-6107
A vulnerability was found in comfyanonymous comfyui 0.3.40. It has been classified as problematic. Affected is the function setattr of the file /comfy/utils.py. The manipulation leads to dynamically-determined object attributes. It is possible to launch the attack remotely. The complexity of an...
CVE-2025-6107 comfyanonymous comfyui utils.py set_attr dynamically-determined object attributes
A vulnerability was found in comfyanonymous comfyui 0.3.40. It has been classified as problematic. Affected is the function setattr of the file /comfy/utils.py. The manipulation leads to dynamically-determined object attributes. It is possible to launch the attack remotely. The complexity of an...
CVE-2025-6107
CVE-2025-6107 affects comfyanonymous comfyui 0.3.40. The vulnerability is in the function set_attr of /comfy/utils.py, enabling manipulation of dynamically-determined object attributes. The issue can be triggered remotely with high attack complexity and no privileges required; PoC exploits have b...
CVE-2025-6107 comfyanonymous comfyui utils.py set_attr dynamically-determined object attributes
A vulnerability was found in comfyanonymous comfyui 0.3.40. It has been classified as problematic. Affected is the function setattr of the file /comfy/utils.py. The manipulation leads to dynamically-determined object attributes. It is possible to launch the attack remotely. The complexity of an...
Malicious code in wlwz-2312-6107 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7495afd91e3ecba3ef1eede78227095124832a71cdc60e582ac4c233e4aa63fc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-726 Malicious code in wlwz-2312-6107 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7495afd91e3ecba3ef1eede78227095124832a71cdc60e582ac4c233e4aa63fc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2023-6107
Rejected reason: Accidental Request...
Ubuntu: Security Advisory (USN-6107-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2023-14249 · Aruba · Aruba Clearpass Policy Manager
Name of the Vulnerable Software and Affected Versions: Aruba ClearPass Policy Manager versions 6.10.7 and below Aruba ClearPass Policy Manager versions 6.9.12 and below Description: The issue allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitati...
NewStart CGSL MAIN 6.02 : dbus Multiple Vulnerabilities (NS-SA-2022-0093)
The remote NewStart CGSL host, running version MAIN 6.02, has dbus packages installed that are affected by multiple vulnerabilities: - Unspecified vulnerability in the matchruleequal function in bus/signals.c in D-Bus before 1.0.2 allows local applications to remove match rules for other...
Mageia: Security Advisory (MGASA-2018-0268)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-202101-26 : f2fs-tools: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202101-26 f2fs-tools: Multiple vulnerabilities Multiple vulnerabilities have been discovered in f2fs-tools. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for...