Fedora 42 : chromium (2026-3675ac2066)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-3675ac2066 advisory. Update to 147.0.7727.101 Critical CVE-2026-6296: Heap buffer overflow in ANGLE Critical CVE-2026-6297: Use after free in Proxy Critical CVE-2026-629...

Google Chrome < 147.0.7727.101 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 147.0.7727.101. It is, therefore, affected by multiple vulnerabilities as referenced in the 202604stable-channel-update-for-desktop15 advisory. - Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a...

CVE-2026-6362

Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted video file. Chromium security severity: High...

CVE-2026-6362

creationtimestamp| type| source ---|---|--- 2026-04-15 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260416 2026-04-16 07:04:06+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116413107171760137 2026-04-19 20:00:00+00:00| seen|...

GHSA-CMV8-6362-R5W9 vulnerabilities

Vulnerabilities for packages: argo-workflows...

GHSA-CMV8-6362-R5W9 vulnerabilities

Vulnerabilities for packages: argo-workflows-fips, argo-workflows...

CVE-2025-6362

A vulnerability, which was classified as critical, has been found in code-projects Simple Pizza Ordering System 1.0. This issue affects some unknown processing of the file /editpro.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely...

CVE-2025-6362

A vulnerability, which was classified as critical, has been found in code-projects Simple Pizza Ordering System 1.0. This issue affects some unknown processing of the file /editpro.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely...

CVE-2025-6362

creationtimestamp| type| source ---|---|--- 2025-06-20 19:43:34+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19050 2025-06-20 22:07:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ls32fp6qh32o...

CVE-2025-6362

CVE-2025-6362 — code-projects Simple Pizza Ordering System 1.0 is affected by a SQL injection in the /editpro.php file, triggered by manipulating the ID parameter. The issue is described as enabling remote exploitation and may allow unauthorized data access. The root cause cited across sources is...

CVE-2025-6362 code-projects Simple Pizza Ordering System editpro.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Simple Pizza Ordering System 1.0. This issue affects some unknown processing of the file /editpro.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely...

CVE-2025-6362 code-projects Simple Pizza Ordering System editpro.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Simple Pizza Ordering System 1.0. This issue affects some unknown processing of the file /editpro.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely...

Linux Distros Unpatched Vulnerability : CVE-2017-6362

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a...

CVE-2023-6362

creationtimestamp| type| source ---|---|--- 2024-10-07 17:38:28+00:00| seen| https://t.me/cvedetector/7243...

CVE-2024-6362

creationtimestamp| type| source ---|---|--- 2024-07-29 08:45:55+00:00| seen| https://t.me/cvedetector/1811...

CVE-2024-6362 Ultimate Blocks < 3.2.0 - Contributor+ Stored XSS

The Ultimate Blocks WordPress plugin before 3.2.0 does not validate and escape some of its post-grid block attributes before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

CVE-2024-6362 Ultimate Blocks < 3.2.0 - Contributor+ Stored XSS

The Ultimate Blocks WordPress plugin before 3.2.0 does not validate and escape some of its post-grid block attributes before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

RHEL 5 : gd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gd: Double free in the gdImagePtr in gdgifout.c, gdjpeg.c, and gdwbmp.c CVE-2019-6978 - The...

CVE-2020-6362

SAP Banking Services version 500, use an incorrect authorization object in some of its reports. Although the affected reports are protected with otherauthorization objects, exploitation of the vulnerability could lead to privilege escalation and violation in segregation of duties, which in turn...

CVE-2020-6362

CVE-2020-6362 affects SAP Banking Services 500, where an incorrect authorization object in certain reports allows privilege escalation and potential segregation-of-duties violations. The vulnerability could result in service interruptions and system unavailability for affected users. The root cau...