Lucene search
K

63 matches found

Circl
Circl
added 2026/04/22 12:58 p.m.7 views

CVE-2026-6396

creationtimestamp| type| source ---|---|--- 2026-04-22 12:58:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mk3kfevktc2h 2026-04-25 16:33:06+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mkdhrt47wy24...

4.3CVSS4.8AI score0.0018EPSS
Exploits0References2
CVE
CVE
added 2026/04/22 7:45 a.m.22 views

CVE-2026-6396

CVE-2026-6396 concerns the WordPress plugin “Fast & Fancy Filter – 3F” (versions up to and including 1.2.2). The issue arises from missing nonce verification in the saveFields() function, which handles the fff_save_settins AJAX action. This design flaw allows unauthenticated attackers to forge re...

4.3CVSS5.8AI score0.0018EPSS
Exploits0References5
OSV
OSV
added 2026/04/02 10:19 a.m.5 views

RHSA-2026:6396 Red Hat Security Advisory: freerdp security update

Bulletin has no description...

8.8CVSS5.8AI score0.00591EPSS
Exploits2References15
OSV
OSV
added 2026/01/29 12:48 a.m.0 views

CGA-XC4V-6396-79V2

Bulletin has no description...

9.1CVSS5.8AI score0.00651EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/09/27 2:50 p.m.5 views

CVE-2025-6396

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Webbeyaz Website Design Website Software allows Cross-Site Scripting XSS.This issue affects Website Software: through 2025.07.14...

6.1CVSS5.9AI score0.00188EPSS
Exploits0References1
Circl
Circl
added 2025/09/26 2:52 p.m.7 views

CVE-2025-6396

creationtimestamp| type| source ---|---|--- 2025-09-26 14:52:36+00:00| seen| Telegram/NpfqsXCWhFhyogT-SKjnrYfGdz2-RRlr1SdI36XbVlloSyQ...

6.1CVSS4.8AI score0.00188EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 2:50 a.m.5 views

CVE-2024-6396

A vulnerability in the backuprun function in aimhubio/aim version 3.19.3 allows remote attackers to overwrite any file on the host server and exfiltrate arbitrary data. The vulnerability arises due to improper handling of the runhash and repo.path parameters, which can be manipulated to create an...

9.8CVSS9.7AI score0.53394EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/12/04 12:0 a.m.10 views

Cisco NX-OS Resource Management Errors (CVE-2012-6396)

Cisco NX-OS on Nexus 7000 series switches does not properly handle certain line-card replacements, which might allow remote authenticated users to cause a denial of service memory consumption via a crafted configuration that references interfaces that do not exist on the new card, aka Bug ID...

4.9CVSS5.5AI score0.00901EPSS
Exploits0References5
Circl
Circl
added 2024/07/12 2:41 a.m.235 views

CVE-2024-6396

creationtimestamp| type| source ---|---|--- 2024-07-12 02:41:34+00:00| seen| https://t.me/cvedetector/700 2025-02-01 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-01 2025-02-06 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilitie...

9.8CVSS7.3AI score0.53394EPSS
In wildExploits1References4
NVD
NVD
added 2024/07/12 12:15 a.m.12 views

CVE-2024-6396

A vulnerability in the backuprun function in aimhubio/aim version 3.19.3 allows remote attackers to overwrite any file on the host server and exfiltrate arbitrary data. The vulnerability arises due to improper handling of the runhash and repo.path parameters, which can be manipulated to create an...

9.8CVSS0.53394EPSS
Exploits1References1
CVE
CVE
added 2024/07/12 12:0 a.m.79 views

CVE-2024-6396

An vulnerability in the _backup_run function of aimhubio/aim 3.19.3 allows remote attackers to manipulate run_hash and repo.path to create/write arbitrary files on the host and exfiltrate data, with potential for denial of service, data loss, or remote code execution. Confirmed by connected sourc...

9.8CVSS9.8AI score0.53394EPSS
In wildExploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2023/12/04 12:0 a.m.24 views

CVE-2023-6396

Unknown description...

5.8AI score
Exploits0References1
OSV
OSV
added 2023/12/04 12:0 a.m.3 views

UBUNTU-CVE-2023-6396

Unknown description...

5.8AI score
Exploits0References2
CVE
CVE
added 2023/12/02 8:47 a.m.31 views

CVE-2023-6396

GitLab CE/EE is affected by CVE-2023-6396 due to XSS and ReDoS in Markdown via the Banzai pipeline when a member has admin_group_member permission, potentially allowing escalation (e.g., adding members with higher roles) and exposure of internal project details. The issue is tied to a bypass of C...

7.2AI score
Exploits0References1
Debian CVE
Debian CVE
added 2023/12/02 8:47 a.m.24 views

CVE-2023-6396

Removed by vendor...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/10/05 12:0 a.m.35 views

Ubuntu 18.04 ESM : Linux kernel (KVM) vulnerabilities (USN-6396-2)

The remote Ubuntu 18.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6396-2 advisory. It was discovered that some AMD x86-64 processors with SMT enabled could speculatively execute instructions using a return address from a sibling thread....

7.8CVSS8AI score0.03882EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2023/09/27 12:0 a.m.40 views

Ubuntu: Security Advisory (USN-6396-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.03882EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:34 a.m.3 views

SUSE CVE-2013-6396

The OpenStack Python client library for Swift python-swiftclient 1.0 through 1.9.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.8CVSS6.6AI score0.00732EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:3 a.m.1 views

SUSE CVE-2020-6396

Inappropriate implementation in Skia in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS6.8AI score0.01738EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.36 views

Mageia: Security Advisory (MGASA-2020-0123)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.7AI score0.78808EPSS
Exploits29References11
Rows per page
Query Builder