EUVD-2018-6398

Malware in sbrugna...

ECHO-C54C-6280-670A

Bulletin has no description...

CVE-2025-6280

A vulnerability, which was classified as critical, was found in TransformerOptimus SuperAGI up to 0.0.14. Affected is the function downloadattachment of the file SuperAGI/superagi/helper/reademail.py of the component EmailToolKit. The manipulation of the argument filename leads to path traversal...

CVE-2025-6280 TransformerOptimus SuperAGI EmailToolKit read_email.py download_attachment path traversal

A vulnerability, which was classified as critical, was found in TransformerOptimus SuperAGI up to 0.0.14. Affected is the function downloadattachment of the file SuperAGI/superagi/helper/reademail.py of the component EmailToolKit. The manipulation of the argument filename leads to path traversal...

CVE-2025-6280 TransformerOptimus SuperAGI EmailToolKit read_email.py download_attachment path traversal

A vulnerability, which was classified as critical, was found in TransformerOptimus SuperAGI up to 0.0.14. Affected is the function downloadattachment of the file SuperAGI/superagi/helper/reademail.py of the component EmailToolKit. The manipulation of the argument filename leads to path traversal...

CVE-2024-6280

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/ajax.php?action=savesettings. The manipulation of the argument img leads to unrestricted upload. It is possible to initiate the attack...

CVE-2023-6280

creationtimestamp| type| source ---|---|--- 2024-01-12 23:46:35+00:00| seen| https://t.me/ctinow/167608...

CVE-2023-6280

CVE-2023-6280 describes an XXE (XML External Entity) vulnerability in the 52North Web Processing Service (WPS). The issue affects 52North WPS versions prior to 4.0.0-beta.11, where the WebProcessingService servlet may process external entities, allowing an attacker to retrieve files by issuing HT...

6280.peskarenjebeograd.com Cross Site Scripting vulnerability OBB-3775367

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Ubuntu: Security Advisory (USN-6280-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS : PyPDF2 vulnerability (USN-6280-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6280-1 advisory. It was discovered that PyPDF2 incorrectly handled PDF files with certain markers. If a user or automated system were tricked...

CVE-2020-6280

SAP NetWeaver ABAP Server/ABAP Platform, versions 731, 740, 750, are affected by an information-disclosure vulnerability where an admin user can access restricted files. Root cause described as improper access control; no public exploit details in the provided documents. Workarounds exist: PR not...

Design/Logic Flaw

Osclass 3.7.4 has XSS via the query string to index.php, a different vulnerability than CVE-2014-6280...

UBUNTU-CVE-2017-6280

NVIDIA driver contains a possible out-of-bounds read vulnerability due to a leak which may lead to information disclosure. This issue is rated as moderate. Android: A-63851980...

CVE-2017-6280

The CVE-2017-6280 entry concerns the NVIDIA driver and is described as an out-of-bounds read vulnerability that could disclose information. The public records show an NVIDIA component entry with this CVE, a CVSSv3 base score of 7.5 (HIGH) and a CVSSv2 base score of 5.0 (MEDIUM) from NVD, indicati...

CVE-2012-6280

This CVE entry is rejected/not used.

CVE-2012-6280

...

CVE-2015-6280

Cisco IOS/IOS XE SSHv2 RSA-based user authentication bypass (CVE-2015-6280) allows an unauthenticated, remote attacker who knows a valid RSA username and public key to bypass authentication and log in with the user’s privileges, potentially gaining admin access depending on VTY/user configuration...

CVE-2015-6280

The SSHv2 functionality in Cisco IOS 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.6E before 3.6.3E, 3.7E before 3.7.1E, 3.10S before 3.10.6S, 3.11S before 3.11.4S, 3.12S before 3.12.3S, 3.13S before 3.13.3S, and 3.14S before 3.14.1S does not properly implement RSA authentication, which allows remote...

CVE-2014-6280

CVE-2014-6280 affects OsClass prior to 3.4.2, with multiple XSS vulnerabilities that can be triggered via oc-admin/index.php by manipulating parameters (action, nsextt) and within items_reported action when using nsextt. The vulnerability arises in OsClass before 3.4.2, allowing remote attackers ...