Debian: Security Advisory (DSA-6163-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux Distros Unpatched Vulnerability : CVE-2024-6163

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Certain http endpoints of Checkmk in Checkmk 2.3.0p10 2.2.0p31, 2.1.0p46, = 2.0.0p39 allows remote attacker to bypass authentication and access data CVE-2024-61...

CVE-2025-6163

creationtimestamp| type| source ---|---|--- 2025-06-17 05:40:42+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18565 2025-06-17 06:02:00+00:00| published-proof-of-concept| Telegram/iU4ppXSD7ZvfAAYF9ke0MI2-YhaidmuvbOqcw99nNEFXY 2025-06-17 07:37:59+00:00| seen|...

CVE-2025-6163

CVE-2025-6163 affects TOTOLINK A3002RU (3.0.0-B20230809.1615). The /boafrm/formMultiAP endpoint of the HTTP POST Request Handler accepts a manipulated submit-url input leading to a buffer overflow, enabling remote exploitation. Documents indicate the vulnerability is high severity with likely cod...

CVE-2023-6163

The WP Crowdfunding WordPress plugin before 2.1.10 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

Linux Distros Unpatched Vulnerability : CVE-2016-6163

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The rsvgpatternfixfallback function in rsvg-paintserver.c in librsvg2 2.40.2 allows remote attackers to cause a denial of service out-of-bounds read via a craft...

AlmaLinux 9 : python3.9 (ALSA-2024:6163)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:6163 advisory. cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection CVE-2024-6923 Tenable has extracted the preceding...

Oracle Linux 9 : python3.9 (ELSA-2024-6163)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-6163 advisory. - Security fix for CVE-2024-8088 Resolves: RHEL-55968 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. No...

CVE-2024-6163

creationtimestamp| type| source ---|---|--- 2024-07-08 15:44:53+00:00| seen| https://t.me/cvedetector/179...

CVE-2024-6163

Certain http endpoints of Checkmk in Checkmk 2.3.0p10 2.2.0p31, 2.1.0p46, = 2.0.0p39 allows remote attacker to bypass authentication and access data...

CVE-2024-6163 local IP restriction of internal HTTP endpoints

Certain http endpoints of Checkmk in Checkmk 2.3.0p10 2.2.0p31, 2.1.0p46, = 2.0.0p39 allows remote attacker to bypass authentication and access data...

CVE-2024-6163 local IP restriction of internal HTTP endpoints

Certain http endpoints of Checkmk in Checkmk 2.3.0p10 2.2.0p31, 2.1.0p46, = 2.0.0p39 allows remote attacker to bypass authentication and access data...

CVE-2023-6163

creationtimestamp| type| source ---|---|--- 2024-01-15 17:27:29+00:00| seen| https://t.me/ctinow/168472 2024-02-03 14:21:12+00:00| seen| https://t.me/ctinow/178550 2025-06-09 21:32:13+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17794...

CVE-2023-6163

The WP Crowdfunding WordPress plugin before 2.1.10 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2023-6163

CVE-2023-6163 affects the WP Crowdfunding WordPress plugin prior to 2.1.10, where some settings are not sanitised/escaped. This can allow high-privilege users (e.g., admins) to perform Stored XSS, including in multisite environments, via vulnerable settings such as Crowdfunding > Settings >...

CVE-2023-6163 WP Crowdfunding < 2.1.10 - Admin+ Stored XSS

The WP Crowdfunding WordPress plugin before 2.1.10 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2023-6163 WP Crowdfunding < 2.1.10 - Admin+ Stored XSS

The WP Crowdfunding WordPress plugin before 2.1.10 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

RHEL 8 : systemd (RHSA-2022:6163)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:6163 advisory. The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive...

Mageia: Security Advisory (MGASA-2018-0343)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-6163

CVE-2020-6163 affects the WikibaseMediaInfo extension for MediaWiki (version 1.35). The vulnerability arises from improper syntax in the PropertySuggestionsWidget template (templates/search/PropertySuggestionsWidget.mustache+dom), enabling cross-site scripting (XSS). Public references consistentl...