46 matches found
CVE-2025-6190
creationtimestamp| type| source ---|---|--- 2025-07-23 06:53:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lumgpfya2f2w...
CVE-2025-6190 Realty Portal – Agent <= 0.3.9 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation via rp_user_profile() Function
The Realty Portal – Agent plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization within the rpuserprofile AJAX handler in versions 0.1.0 through 0.3.9. The handler reads the client-supplied meta key and value pairs from $POST and passes them directly to...
WordPress Realty Portal – Agent plugin <= 0.3.9 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation via rp_user_profile() Function vulnerability
Missing Authorization to Authenticated Subscriber+ Privilege Escalation via rpuserprofile Function vulnerability discovered by theviper17y in WordPress Plugin Realty Portal – Agent versions = 0.3.9...
CVE-2024-6190
A vulnerability was found in itsourcecode Farm Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched...
Cisco Unified IP Phone Exposure of Sensitive Information to an Unauthorized Actor (CVE-2007-6190)
The HTTP daemon in the Cisco Unified IP Phone, when the Extension Mobility feature is enabled, allows remote authenticated users of other phones associated with the same CUCM server to eavesdrop on the physical environment via a CiscoIPPhoneExecute message containing a URL attribute of an...
CVE-2024-6190
A vulnerability was found in itsourcecode Farm Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched...
CVE-2024-6190 itsourcecode Farm Management System Login index.php sql injection
A vulnerability was found in itsourcecode Farm Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched...
CVE-2024-6190 itsourcecode Farm Management System Login index.php sql injection
A vulnerability was found in itsourcecode Farm Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched...
CVE-2023-6190
creationtimestamp| type| source ---|---|--- 2023-12-27 16:26:26+00:00| seen| https://t.me/ctinow/159678 2024-01-19 15:16:31+00:00| seen| https://t.me/ctinow/170230...
CVE-2023-6190
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in İzmir Katip Çelebi University University Information Management System allows Absolute Path Traversal. This issue affects University Information Management System: before 30.11.2023...
CVE-2023-6190 Authenicated Path Traversal in İzmir Katip Çelebi University
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in İzmir Katip Çelebi University University Information Management System allows Absolute Path Traversal. This issue affects University Information Management System: before 30.11.2023...
CVE-2023-6190
CVE-2023-6190 is an authentication-relevant path traversal vulnerability in İzmir Katip Çelebi University University Information Management System, caused by improper limitation of a pathname to a restricted directory (absolute path traversal). The NVD entry notes impact across confidentiality, i...
CVE-2023-6190 Authenicated Path Traversal in İzmir Katip Çelebi University
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in İzmir Katip Çelebi University University Information Management System allows Absolute Path Traversal. This issue affects University Information Management System: before 30.11.2023...
RHEL 8 : firefox (RHSA-2023:6190)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:6190 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to versi...
Ubuntu: Security Advisory (USN-6190-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 ESM / 18.04 ESM : AccountsService vulnerability (USN-6190-2)
The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6190-2 advisory. USN-6190-1 fixed a vulnerability in AccountsService. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu...
CVE-2020-6190
Certain vulnerable endpoints in SAP NetWeaver AS Java Heap Dump Application, versions 7.30, 7.31, 7.40, 7.50, provide valuable information about the system like hostname, server node and installation path that could be misused by an attacker leading to Information Disclosure...
CVE-2020-6190
CVE-2020-6190 affects SAP NetWeaver AS Java (Heap Dump Application). Vulnerable endpoints in versions 7.30, 7.31, 7.40, 7.50 can disclose system information such as hostname, server node, and installation path. The underlying impact is information disclosure. The provided documents describe the a...
Multi-Vendor Desktop & WorkStation BIOS Security Vulnerabilities - Lenovo Support US
Lenovo Security Advisory: LEN-28078 Potential Impact: Escalation of Privilege, Denial of Service, Information Disclosure Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2019-6190 Summary Description: When possible, Lenovo consolidates multiple BIOS security fixes and enhancement...
SOGo < 2.3.12, 3.x < 3.1.1 Multiple Vulnerabilities
SOGo is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:alinto:sogo"; if description...