Fedora 42 : chromium (2026-3675ac2066)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-3675ac2066 advisory. Update to 147.0.7727.101 Critical CVE-2026-6296: Heap buffer overflow in ANGLE Critical CVE-2026-6297: Use after free in Proxy Critical CVE-2026-629...

Security update for chromium (critical)

openSUSE security update: security update for chromium ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20588-1 Rating: critical References: bsc1262174 Cross-References: CVE-2026-6296 CVE-2026-6297 CVE-2026-6298 CVE-2026-6299 CVE-2026-6300...

DEBIAN-CVE-2026-6312

Insufficient policy enforcement in Passwords in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

CVE-2026-6312

creationtimestamp| type| source ---|---|--- 2026-04-15 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260416 2026-04-19 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities20260420 2026-04-27...

ECHO-6925-A7E5-6312

Bulletin has no description...

CVE-2025-6312

creationtimestamp| type| source ---|---|--- 2025-06-20 06:31:32+00:00| published-proof-of-concept| Telegram/Lsxkp67itTa1h5mACVQNiU5Bk8pr3DRiHX80nXnZXGxgJw 2025-06-20 10:07:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrzs5cge372o 2025-06-20 19:43:50+00:00|...

CVE-2025-6312

A vulnerability has been found in Campcodes Sales and Inventory System 1.0 and classified as critical. This vulnerability affects unknown code of the file /pages/cashtransaction.php. The manipulation of the argument cid leads to sql injection. The attack can be initiated remotely. The exploit has...

CVE-2025-6312 Campcodes Sales and Inventory System cash_transaction.php sql injection

A vulnerability has been found in Campcodes Sales and Inventory System 1.0 and classified as critical. This vulnerability affects unknown code of the file /pages/cashtransaction.php. The manipulation of the argument cid leads to sql injection. The attack can be initiated remotely. The exploit has...

CVE-2025-6312

CVE-2025-6312 affects Campcodes Sales and Inventory System v1.0, with SQL injection in /pages/cash_transaction.php via the cid parameter. The vulnerability is exploitable remotely and exploits have been disclosed publicly. Multiple sources (including Red Hat and PT Security) indicate a lack of a ...

CVE-2020-6312

SAP BusinessObjects Business Intelligence Platform Web Intelligence HTML interface, versions - 4.1, 4.2, allows an attacker with a non-administrative user account that can edit certain web page properties, can modify how a browser processes particular page elements, leading to stored Cross Site...

CVE-2012-6312

Cross-site scripting XSS vulnerability in the Video Lead Form plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the errMsg parameter in a video-lead-form action to wp-admin/admin.php...

Linux Distros Unpatched Vulnerability : CVE-2016-6312

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The moddontdothat component of the moddavsvn Apache module in Subversion as packaged in Red Hat Enterprise Linux 5.11 does not properly detect recursion during...

RHEL 9 : python3.11-setuptools (RHSA-2024:6312)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:6312 advisory. Setuptools is a collection of enhancements to the Python 3 distutils that allow you to more easily build and distribute Python 3 packages, especially...

CVE-2024-6312

creationtimestamp| type| source ---|---|--- 2024-08-28 10:06:48+00:00| seen| https://t.me/cvedetector/4304...

WordPress Funnelforms Free Plugin <= 3.7.3.2 is vulnerable to Arbitrary File Deletion

Software Funnelforms Free Type Plugin Vulnerable versions = 3.7.3.2 Fixed in 3.7.4.1 OWASP Top 10 A1: Broken Access Control Classification Arbitrary File Deletion CVE CVE-2024-6312 Patch priority Low CVSS severity Low 5.5 Developer Claim ownership PSID 8300ca56d7fc Credits István Márton Required...

RHEL 6 : gdk-pixbuf (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - gdk-pixbuf: Out-of-bounds read in io-ico.c CVE-2017-6312 Note that Nessus has not tested for this issue but has...

RHEL 5 : apr-util (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - apr-util, httpd: Billion laughs attack regression CVE-2016-6312 Note that Nessus has not tested for this issue but...

RHEL 6 : gdk-pixbuf (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gdk-pixbuf: Out-of-bounds write in OneLine32 function CVE-2016-6352 - Integer overflow in io-ico.c in...

CVE-2023-6312

creationtimestamp| type| source ---|---|--- 2023-12-16 19:17:35+00:00| seen| https://t.me/ctinow/155460...

CVE-2023-6312

A vulnerability was found in SourceCodester Loan Management System 1.0. It has been classified as critical. Affected is the function deleteuser of the file deleteUser.php of the component Users Page. The manipulation of the argument userid leads to sql injection. It is possible to launch the atta...