CVE-2026-6405

creationtimestamp| type| source ---|---|--- 2026-05-20 11:27:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmbsf4lnut2c 2026-05-20 13:32:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mmbzda6puq2s...

CVE-2025-6405

A vulnerability classified as critical was found in Campcodes Online Teacher Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/edit-teacher-detail.php. The manipulation of the argument editid leads to sql injection. The attack can be...

CVE-2025-6405

creationtimestamp| type| source ---|---|--- 2025-06-21 13:43:54+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19115 2025-06-21 14:30:55+00:00| published-proof-of-concept| Telegram/LhhLiayraTedlTbU7U-fbVSRHWm2RvyJg6NQyNKs5tVcop0 2025-06-21 17:48:59+00:00| seen|...

CVE-2024-6405

The Floating Social Buttons plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5. This is due to missing or incorrect nonce validation on the floatingsocialbuttonsoption function. This makes it possible for unauthenticated attackers to update...

Linux Distros Unpatched Vulnerability : CVE-2018-6405

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. Th...

WordPress Floating Social Buttons Plugin <= 1.5 is vulnerable to Cross Site Request Forgery (CSRF)

Software Floating Social Buttons Type Plugin Vulnerable versions = 1.5 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-6405 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 99d69d9e8109 Credits Yoshihito Kamata...

CVE-2024-6405 Floating Social Buttons <= 1.5 - Cross-Site Request Forgery

The Floating Social Buttons plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5. This is due to missing or incorrect nonce validation on the floatingsocialbuttonsoption function. This makes it possible for unauthenticated attackers to update...

Malicious code in wlwz-2312-6405 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0eee9546ed188e85964f0315130a85396bfeb5d292d679b3f3e33a8d64564500 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-751 Malicious code in wlwz-2312-6405 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0eee9546ed188e85964f0315130a85396bfeb5d292d679b3f3e33a8d64564500 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Ubuntu: Security Advisory (USN-6405-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : Thunderbird vulnerabilities (USN-6405-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6405-1 advisory. Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsin...

SUSE CVE-2018-6405

In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. The previous pointer is lost, which leads to a memory leak. This allows remote attackers to cause a denial of service...

Mageia: Security Advisory (MGASA-2020-0123)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 8 : sqlite (CESA-2020:4442)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4442 advisory. - sqlite: Division by zero in whereLoopAddBtreeIndex in sqlite3.c CVE-2019-16168 - sqlite: selectExpander in select.c proceeds with WITH stack unwindin...

sqlite security update

3.26.0-11 - Fixed bug in CVE-2019-20218 1791592 3.26.0-10 - Fixed CVE-2020-13632 1845572 - Fixed CVE-2020-13631 1845474 - Fixed CVE-2020-13630 1845153 3.26.0-9 - Fixed CVE-2019-5018 1721509 3.26.0-8 - Fixed CVE-2019-16168 1826897 3.26.0-7 - Fixed CVE-2019-20218 1791592 - Fixed CVE-2020-6405 18048...

Fedora: Security Advisory for chromium (FEDORA-2020-39e0b8bd14)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2020-6405

Out of bounds read in SQLite in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

CVE-2020-6405

Out of bounds read in SQLite in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

CVE-2020-6405

CVE-2020-6405 is an out-of-bounds read in the SQLite component of Chromium-based Chrome prior to 80.0.3987.87, enabling a remote attacker to disclose potentially sensitive information from process memory via a crafted HTML page. Affected: Chrome/Chromium with SQLite. Impact: information disclosur...

CVE-2020-6405

An out-of-bounds read vulnerability was found in the SQLite component of the Chromium browser. A remote attacker could abuse this flaw to obtain potentially sensitive information from process memory via a crafted HTML page. The highest threat from this vulnerability is to data confidentiality...