CVE-2026-6497

creationtimestamp| type| source ---|---|--- 2026-04-17 18:40:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjpl62mbf42r...

CVE-2026-6497

A vulnerability was determined in prasathmani TinyFileManager up to 2.6. Affected by this vulnerability is an unknown functionality of the file /filemanager.php?p= ajax=true&type=upload of the component File Upload Handler. This manipulation of the argument uploadurl causes server-side request...

MiracleLinux 8 : thunderbird-115.3.1-1.el8.ML.1 (AXSA:2023-6497:29)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6497:29 advisory. firefox: use-after-free in workers CVE-2023-3600 Mozilla: Out-of-bounds write in PathOps CVE-2023-5169 Mozilla: Use-after-free in Ion Compiler...

GHSA-MX47-6497-3FV2 vulnerabilities

Vulnerabilities for packages: grafana...

Linux Distros Unpatched Vulnerability : CVE-2025-6497

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue affects the function prvTidyParseNamespace of the file...

RHSA-2024:6497

creationtimestamp| type| source ---|---|--- 2025-08-07 11:56:11+00:00| seen| Telegram/oa785xuuDZFvMIu4eOU-xkWgB1WnoFdtpxzOilVZ06UBfA 2025-08-30 23:21:50+00:00| seen| Telegram/WH5j90dKNk5HvcEcJzfmMlFnrp2jiQb2AkvSrcPCSVW1MDg 2025-09-02 23:23:55+00:00| seen|...

CVE-2025-6497

A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue affects the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public an...

CVE-2025-6497 HTACG tidy-html5 parser.c prvTidyParseNamespace assertion

A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue affects the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public an...

Linux Distros Unpatched Vulnerability : CVE-2017-6497

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in ImageMagick 6.9.7. A specially crafted psd file could lead to a NULL pointer dereference thus, a DoS. CVE-2017-6497 Note that Nessus...

CVE-2024-6497

creationtimestamp| type| source ---|---|--- 2024-07-20 12:16:57+00:00| seen| https://t.me/cvedetector/1268...

CVE-2024-6497 SEO Plugin by Squirrly SEO <= 12.3.19 - Authenticated (Contributor+) SQL Injection via url Parameter

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 12.3.19 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

CVE-2024-6497

CVE-2024-6497 refers to the SEO Plugin by Squirrly SEO for WordPress. The vulnerability is described as Stored Cross-Site Scripting via the url parameter in versions up to and including 12.3.19, due to insufficient input sanitization and output escaping. It requires Contributor+ level authenticat...

CVE-2024-6497 SEO Plugin by Squirrly SEO <= 12.3.19 - Authenticated (Contributor+) SQL Injection via url Parameter

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 12.3.19 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

WordPress Simple Shopping Cart Plugin <= 4.7.1 is vulnerable to Cross Site Scripting (XSS)

Software Simple Shopping Cart Type Plugin Vulnerable versions = 4.7.1 Fixed in 4.7.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-6497 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID b281d4b588f2 Credits Webbernaut Required...

CVE-2023-6497

creationtimestamp| type| source ---|---|--- 2024-01-27 05:31:54+00:00| seen| https://t.me/ctinow/174630 2024-02-19 20:56:43+00:00| seen| https://t.me/ctinow/187911...

CVE-2023-6497

The CVE-2023-6497 entry applies to WordPress Simple Shopping Cart plugin for WordPress. It describes a Stored Cross-Site Scripting (XSS) vulnerability via the automatic redirect URL setting in all versions up to 4.7.1, due to insufficient input sanitization and output escaping. The attack require...

CVE-2023-6497 WordPress Simple Shopping Cart <= 4.7.1 - Authenticated(Administrator+) Stored Cross-Site Scripting

The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the automatic redirect URL setting in all versions up to and including 4.7.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, wit...

Ubuntu: Security Advisory (USN-6497-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6497-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6497-1 advisory. Maxim Levitsky discovered that the KVM nested virtualization SVM implementation for AMD processors in the Linux kernel did not properly handle x2AVIC MSR...

Oracle Linux 9 : libX11 (ELSA-2023-6497)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6497 advisory. 1.7.0-8 - CVE fix for: CVE-2023-3138 Resolve: rhbz2213763 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...