CVE-2026-6339

creationtimestamp| type| source ---|---|--- 2026-05-18 14:54:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mm54z5hrx22v...

MiracleLinux 8 : nodejs:18 (AXSA:2023-6339:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6339:01 advisory. nodejs: mainModule.proto bypass experimental policy mechanism CVE-2023-30581 nodejs: process interuption due to invalid Public Key information in x5...

CVE-2025-6339

creationtimestamp| type| source ---|---|--- 2025-06-20 13:01:28+00:00| published-proof-of-concept| Telegram/bCs9TD5nWLoKl9NBv7zZ30vDhWk6X56CF9BvUV6HrirmYw 2025-06-20 13:58:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ls2737rbkq2k 2025-06-20 14:43:47+00:00|...

CVE-2025-6339

A vulnerability was found in ponaravindb Hospital Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /func3.php. The manipulation of the argument username1 leads to sql injection. The attack may be launched remotely. The exploit...

CVE-2025-6339

Ponaravindb Hospital Management System v1.0 is affected by a SQL injection in /func3.php via the username1 parameter. The issue allows remote exploitation and, according to the sources, an exploit has been disclosed publicly. CVSS data indicate high/critical impact with potential compromises to c...

CVE-2025-6339 ponaravindb Hospital Management System func3.php sql injection

A vulnerability was found in ponaravindb Hospital Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /func3.php. The manipulation of the argument username1 leads to sql injection. The attack may be launched remotely. The exploit...

CVE-2025-6339 ponaravindb Hospital Management System func3.php sql injection

A vulnerability was found in ponaravindb Hospital Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /func3.php. The manipulation of the argument username1 leads to sql injection. The attack may be launched remotely. The exploit...

CVE-2024-6339

The Phlox PRO theme for WordPress is vulnerable to Reflected Cross-Site Scripting via search parameters in all versions up to, and including, 5.16.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in...

CVE-2020-6339

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated BMP file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

CVE-2024-6339

creationtimestamp| type| source ---|---|--- 2024-08-21 10:43:07+00:00| seen| https://t.me/cvedetector/3760...

CVE-2024-6339 Phlox PRO <= 5.16.4 - Reflected Cross-Site Scripting via Search Parameters

The Phlox PRO theme for WordPress is vulnerable to Reflected Cross-Site Scripting via search parameters in all versions up to, and including, 5.16.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in...

CVE-2024-6339 Phlox PRO <= 5.16.4 - Reflected Cross-Site Scripting via Search Parameters

The Phlox PRO theme for WordPress is vulnerable to Reflected Cross-Site Scripting via search parameters in all versions up to, and including, 5.16.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in...

WordPress Phlox PRO Theme <= 5.16.4 is vulnerable to Cross Site Scripting (XSS)

Software Phlox PRO Type Theme Vulnerable versions = 5.16.4 Fixed in 5.16.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6339 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1d783a1b1dee Credits kauenavarro Required...

CVE-2023-6339

Google Nest WiFi Pro root code-execution & user-data compromise...

CVE-2023-6339 Google Nest WiFi Pro root code-execution & user-data compromise

Google Nest WiFi Pro root code-execution & user-data compromise...

CVE-2023-6339

CVE-2023-6339 affects Google Nest WiFi Pro. The vulnerability allows remote root code execution and user-data compromise over the network with low attack complexity and no privileges required. Impacted by confidentiality, integrity, and availability being high. CVSS metrics show a critical risk (...

CVE-2023-6339 Google Nest WiFi Pro root code-execution & user-data compromise

Google Nest WiFi Pro root code-execution & user-data compromise...

Ubuntu: Security Advisory (USN-6339-4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 22.04 LTS : Linux kernel (Intel IoTG) vulnerabilities (USN-6339-4)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6339-4 advisory. It was discovered that the NTFS file system implementation in the Linux kernel did not properly validate MFT flags in certain situations. An attacker cou...

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6339-3)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6339-3 advisory. It was discovered that the NTFS file system implementation in the Linux kernel did not properly validate MFT flags in certain situations. An...