MINI-6288-6R3G-7J2R

Bulletin has no description...

CVE-2024-6288

creationtimestamp| type| source ---|---|--- 2025-07-01 18:08:56+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/20065...

CVE-2025-6288

creationtimestamp| type| source ---|---|--- 2025-06-23 19:47:05+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19258...

CVE-2025-6288

A vulnerability, which was classified as problematic, has been found in PHPGurukul Bus Pass Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php of the component Profile Page. The manipulation of the argument profile name leads to cross...

CVE-2025-6288

A vulnerability, which was classified as problematic, has been found in PHPGurukul Bus Pass Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php of the component Profile Page. The manipulation of the argument profile name leads to cross...

CVE-2025-6288

The CVE-2025-6288 entry affects PHPGurukul Bus Pass Management System v1.0, specifically the Profile Page component: /admin/admin-profile.php. The vulnerability arises from improper handling of the profile name argument, leading to cross-site scripting (XSS). Documents indicate this can be exploi...

CVE-2025-6288 PHPGurukul Bus Pass Management System Profile Page admin-profile.php cross site scripting

A vulnerability, which was classified as problematic, has been found in PHPGurukul Bus Pass Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/admin-profile.php of the component Profile Page. The manipulation of the argument profile name leads to cross...

CVE-2024-6288

The Conversios – Google Analytics 4 GA4, Meta Pixel & more Via Google Tag Manager For WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tiktokuserid’ parameter in all versions up to, and including, 7.1.0 due to insufficient input sanitization and output...

CVE-2020-6288

SAP Business Objects Business Intelligence Platform Web Intelligence HTML interface allows an attacker with edit document rights to upload any file including script files without proper file format validation leading to Unrestricted upload of file with dangerous type vulnerability. The attacker c...

CVE-2019-6288

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCUSHELL URI...

Linux Distros Unpatched Vulnerability : CVE-2016-6288

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The phpurlparseex function in ext/standard/url.c in PHP before 5.5.38 allows remote attackers to cause a denial of service buffer over-read or possibly have...

CVE-2023-6288

creationtimestamp| type| source ---|---|--- 2023-12-30 09:36:42+00:00| seen| https://t.me/ctinow/160828...

CVE-2023-6288

The CVE-2023-6288 vulnerability affects Devolutions Remote Desktop Manager on macOS (versions 2023.3.9.3 and earlier). The issue is a code injection flaw triggered by the DYLIB_INSERT_LIBRARIES environment variable, enabling a local attacker to execute code. The available references describe the ...

Ubuntu: Security Advisory (USN-6288-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : MySQL vulnerabilities (USN-6288-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6288-1 advisory. Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has...

K34985231: PHP vulnerabilities CVE-2016-6288 and CVE-2016-6289

Security Advisory Description CVE-2016-6288 The phpurlparseex function in ext/standard/url.c in PHP before 5.5.38 allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via vectors involving the smartstr data type. CVE-2016-6289 Integer...

Edgecore ECS2020 Command Injection (CVE-2019-6288)

A command injection vulnerability exists in Edgecore ECS2020. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

CVE-2019-6288

creationtimestamp| type| source ---|---|--- 2021-09-22 20:29:01+00:00| seen| https://t.me/cibsecurity/29240...

CVE-2019-6288

CVE-2019-6288 affects Edgecore ECS2020 firmware (1.0.0.0). The vulnerability allows unauthenticated command injection via the HTTP header command1 to the /EXCU_SHELL URI, as described in multiple sources. This corresponds to a network-exposed impact with potential high-severity consequences; CVSS...

SUSE: Security Advisory (SUSE-SU-2016:2408-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...