ECHO-9CD8-21F3-6304

Bulletin has no description...

Fedora 42 : chromium (2026-3675ac2066)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-3675ac2066 advisory. Update to 147.0.7727.101 Critical CVE-2026-6296: Heap buffer overflow in ANGLE Critical CVE-2026-6297: Use after free in Proxy Critical CVE-2026-629...

Security update for chromium (critical)

openSUSE security update: security update for chromium ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20588-1 Rating: critical References: bsc1262174 Cross-References: CVE-2026-6296 CVE-2026-6297 CVE-2026-6298 CVE-2026-6299 CVE-2026-6300...

CVE-2026-6304 vulnerabilities

Vulnerabilities for packages: chromium...

Chromium: CVE-2026-6304 Use after free in Graphite

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

DEBIAN-CVE-2026-6304

Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2026-6304

CVE-2026-6304 covers a use-after-free in Graphite within Google Chrome prior to version 147.0.7727.101 . The issue allows a remote attacker who has already compromised the renderer process to potentially achieve a sandbox escape via a crafted HTML page . The vulnerability affects Chrome’s Graphit...

CVE-2026-6304

creationtimestamp| type| source ---|---|--- 2026-04-15 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260416 2026-04-15 21:04:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjkscgaefg2o 2026-04-15 23:26:33+00:00|...

Linux Distros Unpatched Vulnerability : CVE-2026-6304

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a...

ECHO-8037-DF07-6304

Bulletin has no description...

CVE-2025-6304

A vulnerability was found in code-projects Online Shoe Store 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /cart.php. The manipulation of the argument qty leads to sql injection. The attack may be launched remotely. The exploit has been disclosed...

CVE-2025-6304

creationtimestamp| type| source ---|---|--- 2025-06-20 03:43:25+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18900 2025-06-20 04:32:08+00:00| published-proof-of-concept| Telegram/-mtAxQJOdz-o0G4wjO--3Y9pj8P3DYCKzD3tpLNxcduUGA 2025-06-20 07:43:24+00:00| seen|...

CVE-2025-6304 code-projects Online Shoe Store cart.php sql injection

A vulnerability was found in code-projects Online Shoe Store 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /cart.php. The manipulation of the argument qty leads to sql injection. The attack may be launched remotely. The exploit has been disclosed...

CVE-2025-6304 code-projects Online Shoe Store cart.php sql injection

A vulnerability was found in code-projects Online Shoe Store 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /cart.php. The manipulation of the argument qty leads to sql injection. The attack may be launched remotely. The exploit has been disclosed...

CVE-2025-6304

The CVE-2025-6304 entry concerns code-projects Online Shoe Store 1.0, where the file /cart.php contains a vulnerable parameter qty[] that enables SQL injection. Multiple connected sources (CNVD/CNNVD/NVD etc.) confirm this SQL injection vector can be exploited remotely and that the exploit has be...

CVE-2020-6304

Improper input validation in SAP NetWeaver Internet Communication Manager update provided in KRNL32NUC & KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT KRNL64NUC & KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49 KERNEL 7.21, 7.49, 7.53 allows an attacker to prevent users from accessing its services through a...

Siemens SCALANCE X-200RNA Switch Devices Missing Release of Memory after Effective Lifetime (CVE-2016-6304)

Multiple memory leaks in t1lib.c in OpenSSL before 1.0.1u, 1.0.2 before 1.0.2i, and 1.1.0 before 1.1.0a allow remote attackers to cause a denial of service memory consumption via large OCSP Status Request extensions. This plugin only works with Tenable.ot. Please visit...

CVE-2024-6304

creationtimestamp| type| source ---|---|--- 2025-02-11 02:19:41+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulukh7ca2x...

Malicious code in wlwz-2312-6304 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c6ce8d72afc4c30e965d4fd324307fffbf59f6a993a75245861f2f876589939f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-741 Malicious code in wlwz-2312-6304 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c6ce8d72afc4c30e965d4fd324307fffbf59f6a993a75245861f2f876589939f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...