Lucene search
K

46 matches found

Circl
Circl
added 2025/07/23 6:53 a.m.3 views

CVE-2025-6190

creationtimestamp| type| source ---|---|--- 2025-07-23 06:53:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lumgpfya2f2w...

8.8CVSS4.8AI score0.00437EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/23 2:24 a.m.4 views

CVE-2025-6190 Realty Portal – Agent <= 0.3.9 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation via rp_user_profile() Function

The Realty Portal – Agent plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization within the rpuserprofile AJAX handler in versions 0.1.0 through 0.3.9. The handler reads the client-supplied meta key and value pairs from $POST and passes them directly to...

8.8CVSS6.1AI score0.00437EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/07/22 10:24 p.m.7 views

WordPress Realty Portal – Agent plugin <= 0.3.9 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation via rp_user_profile() Function vulnerability

Missing Authorization to Authenticated Subscriber+ Privilege Escalation via rpuserprofile Function vulnerability discovered by theviper17y in WordPress Plugin Realty Portal – Agent versions = 0.3.9...

8.8CVSS6.7AI score0.00437EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 2:51 a.m.6 views

CVE-2024-6190

A vulnerability was found in itsourcecode Farm Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched...

9.8CVSS7.4AI score0.00627EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/12/04 12:0 a.m.8 views

Cisco Unified IP Phone Exposure of Sensitive Information to an Unauthorized Actor (CVE-2007-6190)

The HTTP daemon in the Cisco Unified IP Phone, when the Extension Mobility feature is enabled, allows remote authenticated users of other phones associated with the same CUCM server to eavesdrop on the physical environment via a CiscoIPPhoneExecute message containing a URL attribute of an...

3.5CVSS5.8AI score0.01036EPSS
Exploits0References15
OSV
OSV
added 2024/06/20 3:15 p.m.1 views

CVE-2024-6190

A vulnerability was found in itsourcecode Farm Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched...

9.8CVSS5.7AI score0.00627EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/06/20 2:31 p.m.19 views

CVE-2024-6190 itsourcecode Farm Management System Login index.php sql injection

A vulnerability was found in itsourcecode Farm Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched...

7.5CVSS0.00627EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/06/20 2:31 p.m.13 views

CVE-2024-6190 itsourcecode Farm Management System Login index.php sql injection

A vulnerability was found in itsourcecode Farm Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched...

7.5CVSS7.6AI score0.00627EPSS
Exploits1References4
Circl
Circl
added 2023/12/27 4:26 p.m.5 views

CVE-2023-6190

creationtimestamp| type| source ---|---|--- 2023-12-27 16:26:26+00:00| seen| https://t.me/ctinow/159678 2024-01-19 15:16:31+00:00| seen| https://t.me/ctinow/170230...

9.8CVSS8.7AI score0.00764EPSS
Exploits0References2
NVD
NVD
added 2023/12/27 3:15 p.m.8 views

CVE-2023-6190

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in İzmir Katip Çelebi University University Information Management System allows Absolute Path Traversal. This issue affects University Information Management System: before 30.11.2023...

9.8CVSS0.00764EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/12/27 2:36 p.m.19 views

CVE-2023-6190 Authenicated Path Traversal in İzmir Katip Çelebi University

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in İzmir Katip Çelebi University University Information Management System allows Absolute Path Traversal. This issue affects University Information Management System: before 30.11.2023...

9.8CVSS9.6AI score0.00764EPSS
Exploits0References2
CVE
CVE
added 2023/12/27 2:36 p.m.38 views

CVE-2023-6190

CVE-2023-6190 is an authentication-relevant path traversal vulnerability in İzmir Katip Çelebi University University Information Management System, caused by improper limitation of a pathname to a restricted directory (absolute path traversal). The NVD entry notes impact across confidentiality, i...

9.8CVSS8.4AI score0.00764EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/27 2:36 p.m.7 views

CVE-2023-6190 Authenicated Path Traversal in İzmir Katip Çelebi University

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in İzmir Katip Çelebi University University Information Management System allows Absolute Path Traversal. This issue affects University Information Management System: before 30.11.2023...

9.8CVSS7.3AI score0.00764EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/30 12:0 a.m.29 views

RHEL 8 : firefox (RHSA-2023:6190)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:6190 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to versi...

7.5CVSS7.5AI score0.01936EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/09/26 12:0 a.m.16 views

Ubuntu: Security Advisory (USN-6190-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.8AI score0.0033EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/09/25 12:0 a.m.32 views

Ubuntu 16.04 ESM / 18.04 ESM : AccountsService vulnerability (USN-6190-2)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6190-2 advisory. USN-6190-1 fixed a vulnerability in AccountsService. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu...

8.1CVSS7.6AI score0.0033EPSS
Exploits1References2
NVD
NVD
added 2020/02/12 8:15 p.m.15 views

CVE-2020-6190

Certain vulnerable endpoints in SAP NetWeaver AS Java Heap Dump Application, versions 7.30, 7.31, 7.40, 7.50, provide valuable information about the system like hostname, server node and installation path that could be misused by an attacker leading to Information Disclosure...

5.8CVSS5.4AI score0.00896EPSS
Exploits0References2
CVE
CVE
added 2020/02/12 7:46 p.m.76 views

CVE-2020-6190

CVE-2020-6190 affects SAP NetWeaver AS Java (Heap Dump Application). Vulnerable endpoints in versions 7.30, 7.31, 7.40, 7.50 can disclose system information such as hostname, server node, and installation path. The underlying impact is information disclosure. The provided documents describe the a...

5.8CVSS5.4AI score0.00896EPSS
Exploits0References2Affected Software1
Lenovo
Lenovo
added 2020/02/08 10:51 p.m.87 views

Multi-Vendor Desktop & WorkStation BIOS Security Vulnerabilities - Lenovo Support US

Lenovo Security Advisory: LEN-28078 Potential Impact: Escalation of Privilege, Denial of Service, Information Disclosure Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2019-6190 Summary Description: When possible, Lenovo consolidates multiple BIOS security fixes and enhancement...

2.1CVSS2.3AI score0.00283EPSS
Exploits0
OpenVAS
OpenVAS
added 2019/03/11 12:0 a.m.24 views

SOGo < 2.3.12, 3.x < 3.1.1 Multiple Vulnerabilities

SOGo is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:alinto:sogo"; if description...

4.7AI score
Exploits0References2
Rows per page
Query Builder