128 matches found
ECHO-48BB-6383-BA42
Bulletin has no description...
SUSE CVE-2026-6383
A flaw was found in KubeVirt's Role-Based Access Control RBAC evaluation logic. The authorization mechanism improperly truncates subresource names, leading to incorrect permission evaluations. This allows authenticated users with specific custom roles to gain unauthorized access to subresources,...
AlmaLinux 9 : grafana-pcp (ALSA-2026:6383)
The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2026:6383 advisory. net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 Tenable has extracted the preceding description block directly from the AlmaLinux securi...
MiracleLinux 4 : kernel-2.6.32-431.17.1.el6 (AXSA:2014-441:02)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-441:02 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...
EUVD-2007-0899
Malware in sbrugna...
CVE-2024-6383
creationtimestamp| type| source ---|---|--- 2025-09-09 14:31:42+00:00| seen| Telegram/E0KsFSsJPa62sMflb2zr5PWxT4eovn0FA00I5QEXBdwPDEU...
Ubuntu: Security Advisory (USN-7613-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2025-6383
The WP-PhotoNav plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's photonav shortcode in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2025-6383
creationtimestamp| type| source ---|---|--- 2025-06-26 02:50:37+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19555 2025-06-26 06:33:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsiiylrpfu2m...
CVE-2025-6383
CVE-2025-6383 affects the WordPress plugin WP-PhotoNav (versions up to and including 1.2.2). It describes a stored cross-site scripting vulnerability in the photonav shortcode caused by insufficient input sanitization and output escaping. Exploitation requires attacker authentication at contribut...
CVE-2025-6383 WP-PhotoNav <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via photonav Shortcode
The WP-PhotoNav plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's photonav shortcode in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2025-6383 WP-PhotoNav <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via photonav Shortcode
The WP-PhotoNav plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's photonav shortcode in all versions up to, and including, 1.2.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
WordPress WP-PhotoNav plugin <= 1.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via photonav Shortcode vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via photonav Shortcode vulnerability discovered by Gilang in WordPress Plugin WP-PhotoNav versions = 1.2.2...
DEBIAN-CVE-2025-40906
BSON::XS versions 0.8.4 and earlier for Perl includes a bundled libbson 1.1.7, which has several vulnerabilities. Those include CVE-2017-14227, CVE-2018-16790, CVE-2023-0437, CVE-2024-6381, CVE-2024-6383, and CVE-2025-0755. BSON-XS was the official Perl XS implementation of MongoDB's BSON...
Linux Distros Unpatched Vulnerability : CVE-2024-6383
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The bsonstringappend function in MongoDB C Driver may be vulnerable to a buffer overflow where the function might attempt to allocate too small of buffer and ma...
CVE-2024-6383 MongoDB C Driver bson_string_append may be vulnerable to a buffer overflow
The bsonstringappend function in MongoDB C Driver may be vulnerable to a buffer overflow where the function might attempt to allocate too small of buffer and may lead to memory corruption of neighbouring heap memory. This issue affects libbson versions prior to 1.27.1...
CVE-2024-6383
The bsonstringappend function in MongoDB C Driver may be vulnerable to a buffer overflow where the function might attempt to allocate too small of buffer and may lead to memory corruption of neighbouring heap memory. This issue affects libbson versions prior to 1.27.1...
CGA-PMXF-FWPC-6383
Bulletin has no description...
CVE-2020-6383
creationtimestamp| type| source ---|---|--- 2024-01-09 07:56:37+00:00| seen| https://t.me/arpsyndicate/2730...
CVE-2023-6383
creationtimestamp| type| source ---|---|--- 2024-01-08 20:27:09+00:00| seen| https://t.me/ctinow/164609 2024-01-25 16:22:14+00:00| seen| https://t.me/ctinow/173547...