Linux Distros Unpatched Vulnerability : CVE-2017-6413

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The OpenID Connect Relying Party and OAuth 2.0 Resource Server aka modauthopenidc module before 2.1.6 for the Apache HTTP Server does not skip OIDCCLAIM and...

CVE-2025-6413

A vulnerability classified as critical has been found in PHPGurukul Art Gallery Management System 1.1. This affects an unknown part of the file /admin/changeimage1.php. The manipulation of the argument editid leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2025-6413

A vulnerability classified as critical has been found in PHPGurukul Art Gallery Management System 1.1. This affects an unknown part of the file /admin/changeimage1.php. The manipulation of the argument editid leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2025-6413

CVE-2025-6413 affects PHPGurukul Art Gallery Management System 1.1. The vulnerability resides in /admin/changeimage1.php where unvalidated input in the editid parameter enables SQL injection. Attackers can exploit it remotely, and public disclosures indicate the exploit is available. The issue is...

Hikvision Cameras Buffer Overflow (CVE-2018-6413)

There is a buffer overflow in the Hikvision Camera DS-2CD9111-S of V4.1.2 build 160203 and before, and this vulnerability allows remote attackers to launch a denial of service attack service interruption via a crafted network setting interface request. This plugin only works with Tenable.ot. Plea...

CVE-2023-6413

creationtimestamp| type| source ---|---|--- 2023-12-20 19:46:26+00:00| seen| https://t.me/ctinow/157252...

CVE-2023-6413

A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via photos.php in the id and user parameters. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and...

CVE-2023-6413

Voovi Social Networking Script (version 1.0) is affected by a SQL injection vulnerability in photos.php through the id and user parameters. The issue stems from unsanitized user input, enabling a remote attacker to craft SQL queries to access information stored by the application. This vulnerabil...

CVE-2023-6413 SQL injection in Voovi Social Networking Script

A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via photos.php in the id and user parameters. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and...

Ubuntu 16.04 ESM / 18.04 ESM : GNU binutils vulnerabilities (USN-6413-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6413-1 advisory. It was discovered that GNU binutils was not properly performing checks when dealing with memory allocation operations, which could lead to...

Fedora: Security Advisory for chromium (FEDORA-2020-39e0b8bd14)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2020-6413

Inappropriate implementation in Blink in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to bypass HTML validators via a crafted HTML page...

DEBIAN-CVE-2020-6413

Inappropriate implementation in Blink in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to bypass HTML validators via a crafted HTML page...

CVE-2020-6413

Inappropriate implementation in Blink in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to bypass HTML validators via a crafted HTML page...

CVE-2020-6413

CVE-2020-6413 is a Chrome/Blink HTML validator bypass vulnerability. The issue arises from an inappropriate implementation in Blink that allowed a remote attacker to bypass HTML validators via a crafted HTML page. Affected product: Google Chrome/Chromium (Blink/WebKit). Impact per sources: bypass...

CVE-2014-6413

A Cross-site Scripting XSS vulnerability exists in WatchGuard XTM 11.8.3 via the pollname parameter in the firewall/policy script...

CVE-2014-6413

WatchGuard XTM 11.8.3 is affected by CVE-2014-6413, a Cross-site Scripting (XSS) flaw exploitable via the poll_name parameter in the firewall/policy script. Affects the product as described in NVD entries; CVSS base scores: 4.3 (NVD CVSS2) and 6.1 (CVSS3.1) with network attack vector, low attack ...

Google Chrome < 80.0.3987.87 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 80.0.3987.87. It is, therefore, affected by multiple vulnerabilities as referenced in the 202002stable-channel-update-for-desktop advisory. - Insufficient data validation in streams in Google Chrome prior to 80.0.3987.8...

Fedora 29 : mod_auth_openidc (2019-23638d42f3)

Upgrade to latest upstream which fixes some CVEs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C...

Fedora 30 : mod_auth_openidc (2019-7b06f18a10)

Upgrade to latest upstream which fixes some CVEs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C...