54 matches found
CVE-2025-6217
PEAK-System Driver PCANFDADDFILTERS Time-Of-Check Time-Of-Use Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of PEAK-System Driver. An attacker must first obtain the ability to execute low-privileged code...
CVE-2025-6217
PEAK-System Driver PCANFDADDFILTERS Time-Of-Check Time-Of-Use Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of PEAK-System Driver. An attacker must first obtain the ability to execute low-privileged code...
CVE-2025-6217 PEAK-System Driver PCANFD_ADD_FILTERS Time-Of-Check Time-Of-Use Information Disclosure Vulnerability
PEAK-System Driver PCANFDADDFILTERS Time-Of-Check Time-Of-Use Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of PEAK-System Driver. An attacker must first obtain the ability to execute low-privileged code...
CVE-2025-6217 PEAK-System Driver PCANFD_ADD_FILTERS Time-Of-Check Time-Of-Use Information Disclosure Vulnerability
PEAK-System Driver PCANFDADDFILTERS Time-Of-Check Time-Of-Use Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of PEAK-System Driver. An attacker must first obtain the ability to execute low-privileged code...
CVE-2025-6217
CVE-2025-6217 concerns PEAK-System Driver (PCANFD) with a flaw in the PCANFD_ADD_FILTERS IOCTL. The issue arises from a lack of proper locking when performing operations on an object, enabling Time-Of-Check Time-Of-Use information disclosure. Descriptions state that an attacker who can run low-pr...
CVE-2025-6217
creationtimestamp| type| source ---|---|--- 2025-06-18 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-408/ 2025-06-21 00:45:19+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19095...
CVE-2024-6217 SourceCodester Food Ordering Management System user-router.php sql injection
A vulnerability classified as critical was found in SourceCodester Food Ordering Management System 1.0. Affected by this vulnerability is an unknown functionality of the file user-router.php. The manipulation of the argument 1verified leads to sql injection. The attack can be launched remotely. T...
CVE-2024-6217 SourceCodester Food Ordering Management System user-router.php sql injection
A vulnerability classified as critical was found in SourceCodester Food Ordering Management System 1.0. Affected by this vulnerability is an unknown functionality of the file user-router.php. The manipulation of the argument 1verified leads to sql injection. The attack can be launched remotely. T...
CVE-2023-6217
creationtimestamp| type| source ---|---|--- 2023-12-20 11:41:56+00:00| seen| https://t.me/ctinow/156895...
Progress MOVEit Transfer < 2022.0.9 / 2022.1 < 2022.1.10 / 2023.0 < 2023.0.7 / 2023.1.1 Multiple Vulnerabilities (November 2023)
The version of Progress MOVEit Transfer, formerly Ipswitch MOVEit DMZ, installed on the remote host is prior to 2022.0.9, 2022.1 prior to 2022.1.10, 2023.0 prior to 2023.0.7 or 2023.1.1. It is, therefore, affected by multiple vulnerabilities as referenced in Progress Community article 000246898. ...
CVE-2023-6217
In Progress MOVEit Transfer versions released before 2022.0.9 14.0.9, 2022.1.10 14.1.10, 2023.0.7 15.0.7, a reflected cross-site scripting XSS vulnerability has been identified when MOVEit Gateway is used in conjunction with MOVEit Transfer. An attacker could craft a malicious payload targeting...
CVE-2023-6217
In Progress MOVEit Transfer versions released before 2022.0.9 14.0.9, 2022.1.10 14.1.10, 2023.0.7 15.0.7, a reflected cross-site scripting XSS vulnerability has been identified when MOVEit Gateway is used in conjunction with MOVEit Transfer. An attacker could craft a malicious payload targeting...
CVE-2023-6217 MOVEit Transfer XSS via MOVEit Gateway
In Progress MOVEit Transfer versions released before 2022.0.9 14.0.9, 2022.1.10 14.1.10, 2023.0.7 15.0.7, a reflected cross-site scripting XSS vulnerability has been identified when MOVEit Gateway is used in conjunction with MOVEit Transfer. An attacker could craft a malicious payload targeting...
CVE-2023-6217
CVE-2023-6217 describes a reflected Cross-Site Scripting (XSS) vulnerability in MOVEit Transfer when used with MOVEit Gateway. Affected: MOVEit Transfer versions before 2022.0.9 (14.0.9), before 2022.1.10 (14.1.10), and before 2023.0.7 (15.0.7). Root cause: XSS in a combined MOVEit Gateway/Transf...
Important: Red Hat Security Advisory: Red Hat OpenShift Enterprise security update
Red Hat OpenShift Container Platform low-latency extras release 4.14, which provides an update for cnf-tests-container, dpdk-base-container, NUMA-aware secondary scheduler and numaresources-operator is now available. Red Hat Product Security has rated this update as having a security impact of...
Ubuntu: Security Advisory (USN-6217-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:0511-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-6217
The CVE-2020-6217 entry concerns SAP NetWeaver AS ABAP Business Server Pages Test Application IT00, affected in versions 700–754, with a reflected XSS due to insufficient encoding of user-controlled inputs in the Web UI. The issue is documented across multiple sources (e.g., Red Hat, CNVD, CVE re...
CVE-2017-6217
creationtimestamp| type| source ---|---|--- 2019-07-10 18:35:31+00:00| seen| https://t.me/cibsecurity/5454...
CVE-2017-6217
CVE-2017-6217 impacts the Paypal adaptivepayments-sdk-php package in version 3.9.2, with a reflected XSS in SetPaymentOptions.php that can result in code execution. The connected sources corroborate the vulnerability type but do not provide remediation details or confirmed exploitation status. Th...