CVE-2026-6376

creationtimestamp| type| source ---|---|--- 2026-04-23 05:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-04 2026-04-23 23:26:58+00:00| seen| Telegram/EOmUzEDCCjVld0ErnrIDoAMYFcT1xcXC6s4XJmAqdlxQalE...

CVE-2025-6376

creationtimestamp| type| source ---|---|--- 2025-08-13 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-836/...

CVE-2025-6376

A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE file can force Arena Simulation to write beyond the boundaries of an allocated object. Exploitation requires user interaction, such as opening a malicious file within the software. If exploited, a threa...

CVE-2020-6376

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated Right Hemisphere Binary .rh file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Imprope...

MongoDB Compass < 1.42.2 Code Injection (macOS)

The version of MongoDB Compass installed on the remote host is affected by a code injection vulnerability. MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection settings with the usage of ejson shell parser in Compass' connection handling. Note that Nessus ha...

CVE-2024-6376

creationtimestamp| type| source ---|---|--- 2024-07-06 09:56:17+00:00| published-proof-of-concept| https://t.me/HackingInsights/4990...

CVE-2024-6376 ejson shell parser in MongoDB Compass maybe bypassed

MongoDB Compass may be susceptible to code injection due to insufficient sandbox protection settings with the usage of ejson shell parser in Compass' connection handling. This issue affects MongoDB Compass versions prior to version 1.42.2...

CVE-2023-6376

creationtimestamp| type| source ---|---|--- 2023-12-21 14:42:35+00:00| seen| https://t.me/ctinow/157713...

CVE-2023-6376

Henschen & Associates court document management software does not sufficiently randomize file names of cached documents, allowing a remote, unauthenticated attacker to access restricted documents...

CVE-2023-6376

CVE-2023-6376 affects Henschen & Associates court document management software. The root cause is insufficient randomization of cached document filenames, enabling a remote, unauthenticated attacker to access restricted documents by predicting cache paths. Exploitation details beyond this are not...

Mageia: Security Advisory (MGASA-2013-0371)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2014-0043)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2013-0373)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2013-0375)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2014:0189-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-6376

CVE-2020-6376 affects SAP 3D Visual Enterprise Viewer, version 9, where processing of manipulated Right Hemisphere Binary (.rh) files from untrusted sources can cause the application to crash and become temporarily unavailable. The root cause is improper input validation in the RH file handling. ...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1475)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Joomla Core com_admin Component SQL Injection (CVE-2018-6376)

A SQL injection vulnerability exists in Joomla Core comadmin component. The vulnerability is due to a lack of type casting on a variable used in a SQL statement. A remote attacker can exploit this vulnerability to escalate their privilege...

CVE-2018-6376

creationtimestamp| type| source ---|---|--- 2018-02-09 18:12:17+00:00| seen| https://t.me/canyoupwnme/3223 2021-01-07 21:17:36+00:00| published-proof-of-concept| Telegram/ELp7-iIDiecmdH1RYNFuXslf5yrqKKOhnw0CBvUrc8AgfQ 2023-10-25 07:54:46+00:00| published-proof-of-concept|...

CVE-2018-6376

In Joomla! before 3.8.4, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Hathor postinstall message...