ROOT-OS-DEBIAN-12-CVE-2026-6253 CVE-2026-6253 in rootio-curl - Patched by Root

Root has patched CVE-2026-6253 in the rootio-curl package for Root:Debian:12. Multiple fixed versions available...

MINI-6253-6MVH-M48J

Bulletin has no description...

DEBIAN-CVE-2026-6253

curl might erroneously pass on credentials for a first proxy to a second proxy. This can happen when the following conditions are true: 1. curl is setup to use specific different proxies for different URL schemes 2. the first proxy needs credentials 3. the second proxy uses no credentials 4. whil...

CVE-2026-6253

CVE-2026-6253 concerns curl leaking credentials from the first proxy when a redirect-to a second proxy occurs. The issue arises under multi-proxy configurations where the first proxy requires credentials, the second proxy does not, and a redirect from an http URL to an https URL uses the second p...

SUSE CVE-2026-6253

curl might erroneously pass on credentials for a first proxy to a second proxy. This can happen when the following conditions are true: 1. curl is setup to use specific different proxies for different URL schemes 2. the first proxy needs credentials 3. the second proxy uses no credentials 4. whil...

CVE-2026-6253

curl might erroneously pass on credentials for a first proxy to a second proxy. This can happen when the following conditions are true: 1. curl is setup to use specific different proxies for different URL schemes 2. the first proxy needs credentials 3. the second proxy uses no credentials 4. whil...

UBUNTU-CVE-2026-6253

curl might erroneously pass on credentials for a first proxy to a second proxy. This can happen when the following conditions are true: 1. curl is setup to use specific different proxies for different URL schemes 2. the first proxy needs credentials 3. the second proxy uses no credentials 4. whil...

CVE-2026-6253

creationtimestamp| type| source ---|---|--- 2026-04-29 07:06:00+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mkmjxidnro2m 2026-04-29 07:10:54+00:00| seen| https://mastodon.social/users/bagder/statuses/116486743707813679 2026-04-29 07:11:04+00:00| seen|...

MINI-6253-HRR4-9M47

Bulletin has no description...

CVE-2025-6253

The UiCore Elements – Free Elementor widgets and templates plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.3.0 via the preparetemplate function due to a missing capability check and insufficient controls on the filename specified. This makes it...

CVE-2025-6253

creationtimestamp| type| source ---|---|--- 2025-08-12 08:04:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lw6tz6ymgx2c...

CVE-2025-6253

The UiCore Elements – Free Elementor widgets and templates plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.3.0 via the preparetemplate function due to a missing capability check and insufficient controls on the filename specified. This makes it...

CVE-2015-6253

edx-platform before 2015-08-17 allows XSS in the Studio listing of courses...

CVE-2020-6253

Under certain conditions, SAP Adaptive Server Enterprise Web Services, versions 15.7, 16.0, allows an authenticated user to execute crafted database queries to elevate their privileges, modify database objects, or execute commands they are not otherwise authorized to execute, leading to SQL...

CVE-2024-6253

A vulnerability was found in itsourcecode Online Food Ordering System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /purchase.php. The manipulation of the argument customer leads to sql injection. The attack may be launched remotely. The exploit...

CVE-2024-6253 itsourcecode Online Food Ordering System purchase.php sql injection

A vulnerability was found in itsourcecode Online Food Ordering System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /purchase.php. The manipulation of the argument customer leads to sql injection. The attack may be launched remotely. The exploit...

Fortra Digital Guardian Agent Uninstaller Cross Site Scripting / UninstallKey Cached

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Uninstall Key Caching product: Fortra Digital Guardian Agent Uninstaller Data Loss Prevention vulnerable version: Agent: 7.9.4 fixed version: Agent: 7.9.4 CVE number:...

CVE-2023-6253 Saved Uninstall Key in Digital Guardian Agent Uninstaller

A saved encryption key in the Uninstaller in Digital Guardian's Agent before version 7.9.4 allows a local attacker to retrieve the uninstall key and remove the software by extracting the uninstaller key from the memory of the uninstaller file...

CVE-2023-6253

CVE-2023-6253 affects Digital Guardian Agent prior to version 7.9.4, where an encryption/uninstall key is stored in the uninstaller. A local attacker can retrieve the uninstall key from memory of the uninstaller file and use it to remove the software. Affected component: Agent Uninstaller; root c...

Newly Patched SAP ASE Flaws Could Let Attackers Hack Database Servers

A new set of critical vulnerabilities uncovered in SAP's Sybase database software can grant unprivileged attackers complete control over a targeted database and even the underlying operating system in certain scenarios. The six flaws, disclosed by cybersecurity firm Trustwave today, reside in...