58 matches found
CVE-2026-6215
A weakness has been identified in DbGate up to 7.1.4. The impacted element is the function apiServerUrl1 of the file packages/rest/src/openApiDriver.ts of the component REST/GraphQL. This manipulation causes server-side request forgery. The attack may be initiated remotely. The exploit has been...
CVE-2026-6215
A weakness has been identified in DbGate up to 7.1.4. The impacted element is the function apiServerUrl1 of the file packages/rest/src/openApiDriver.ts of the component REST/GraphQL. This manipulation causes server-side request forgery. The attack may be initiated remotely. The exploit has been...
CVE-2023-6215
creationtimestamp| type| source ---|---|--- 2025-10-07 15:07:44+00:00| seen| Telegram/SnScpFOxqsY2RO8KNDdB-OflfN5UHCWNIvm2kaRTUUWfi40...
CVE-2023-6215 HP Sure Start IFD Protection - BIOS Security Update
A potential security vulnerability has been identified in HP Sure Startās protection of the Intel Flash Descriptor in certain HP PC products, which might allow security bypass, arbitrary code execution, loss of integrity or confidentiality, or denial of service. HP is releasing BIOS updates to...
CVE-2023-6215
The CVE relates to HP Sure Startās protection of the Intel Flash Descriptor on certain HP PC models. The underlying issue is a vulnerability in that protection mechanism that could enable security bypass, arbitrary code execution, or loss of integrity/confidentiality, and possibly denial of servi...
EUVD-2019-6215
Malware in sbrugna...
EUVD-2018-6221
Malware in sbrugna...
WordPress Omnishop plugin <= 1.0.9 - Missing Registration Restriction to Unauthenticated Account Creation via /users/register REST Endpoint vulnerability
Missing Registration Restriction to Unauthenticated Account Creation via /users/register REST Endpoint vulnerability discovered by ch4r0n in WordPress Plugin Omnishop versions = 1.0.9...
CVE-2025-6215
The Omnishop plugin for WordPress is vulnerable to Unauthenticated Registration Bypass in all versions up to, and including, 1.0.9. Its /users/register endpoint is exposed to the public permissioncallback always returns true and invokes wpcreateuser unconditionally, ignoring the siteās...
CVE-2024-6215
A vulnerability was found in SourceCodester Food Ordering Management System up to 1.0. It has been rated as critical. This issue affects some unknown processing of the file view-ticket-admin.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...
CVE-2024-6215
A vulnerability was found in SourceCodester Food Ordering Management System up to 1.0. It has been rated as critical. This issue affects some unknown processing of the file view-ticket-admin.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...
CVE-2024-6215 SourceCodester Food Ordering Management System view-ticket-admin.php sql injection
A vulnerability was found in SourceCodester Food Ordering Management System up to 1.0. It has been rated as critical. This issue affects some unknown processing of the file view-ticket-admin.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...
CVE-2024-6215 SourceCodester Food Ordering Management System view-ticket-admin.php sql injection
A vulnerability was found in SourceCodester Food Ordering Management System up to 1.0. It has been rated as critical. This issue affects some unknown processing of the file view-ticket-admin.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...
SAP Application Server ABAP Open Redirection
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Open Redirect in BSP Test Application it00 Bypass for CVE-2020-6215 Patch product: SAPĀ® Application Server ABAP and ABAPĀ® Platform SAPBASIS vulnerable version: see sectio...
Ubuntu 18.04 ESM / 20.04 LTS : dwarves vulnerabilities (USN-6215-1)
The remote Ubuntu 18.04 ESM / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6215-1 advisory. It was discovered that dwarves incorrectly handled certain memory operations under certain circumstances. An attacker could possibly use this...
Apple Safari Type Confusion (CVE-2019-6215)
A type confusion vulnerability exists in Apple Safari. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
SUSE: Security Advisory (SUSE-SU-2019:0511-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-6215
CVE-2020-6215 affects SAP NetWeaver AS ABAP with the BSP Test Application IT00. The issue is an open URL redirection caused by insufficient input/URL validation, enabling attackers to redirect users to a malicious site and potentially steal credentials. Affected versions cover SAP NetWeaver ABAP ...
CVE-2020-6215
SAP NetWeaver AS ABAP Business Server Pages Test Application IT00, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, allows an attacker to redirect users to a malicious site due to insufficient URL validation and steal credentials of the victim, leading to URL Redirection...
About the security content of iTunes 12.9.3 for Windows - Apple Support
About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...