@brikcss/rollup-config-generator (>=0.0.15 <=0.0.16), @brikcss/stakcss (>=0.0.0 <=0.9.1) +9 more potentially affected by CVE-2026-6594 via @brikcss/merge (>=1.0.7 <=1.3.0)

@brikcss/merge NPM version =1.0.7, =0.0.15, =0.0.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.4, =0.0.1, =0.2.0, =0.10.0 Source cves: CVE-2026-6594 Source advisory: OSV:GHSA-3JC6-6R48-V6QF...

CVE-2026-6594

creationtimestamp| type| source ---|---|--- 2026-04-20 03:15:41+00:00| published-proof-of-concept| Telegram/53YGjSkDbPEnJFokQd7pok6KqRvuzpfctV8oYeRU736c 2026-04-20 03:58:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjvlcl2uzl2h 2026-04-20 05:35:15+00:00| seen|...

CVE-2026-6594 brikcss merge prototype pollution

A vulnerability was determined in brikcss merge up to 1.3.0. This affects an unknown part. Executing a manipulation of the argument proto/constructor.prototype/prototype can lead to improperly controlled modification of object prototype attributes. The attack may be performed from remote. The...

MINI-R5FV-F8C2-6594

Bulletin has no description...

DEBIAN-CVE-2025-6594

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/ApiSandbox.Js. This issue affects MediaWiki: from 1.27.0 before...

CVE-2025-6594

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/ApiSandbox.Js. This issue affects MediaWiki: from 1.27.0 before...

Linux Distros Unpatched Vulnerability : CVE-2017-6594

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The transit path validation code in Heimdal before 7.3 might allow attackers to bypass the capath policy protection mechanism by leveraging failure to add the...

Linux Distros Unpatched Vulnerability : CVE-2025-6594

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is...

Security Bulletin: Vulnerabilities exists in IBM Netezza Analytics - NPS Product

Summary Vulnerabilities exist in IBM Netezza Analytics - NPS product are addressed in version 11.2.29 Vulnerability Details CVEID:CVE-2024-6345 DESCRIPTION: pypa/setuptools could allow a remote attacker to execute arbitrary code on the system, caused by an error in the packageindex module. By...

MediaWiki < 1.39.13, 1.40.x < 1.42.7, 1.43.x < 1.43.2 Multiple Vulnerabilities - Linux

MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...

Medium: python-crypto

Issue Overview: lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data i.e., it does not have semantic security in face of a ciphertext-only attack. The Decisional...

Amazon Linux 2023 : python3-crypto (ALAS2023-2025-1051)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1051 advisory. lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data i.e., it does not have...

CVE-2024-6594

creationtimestamp| type| source ---|---|--- 2024-09-25 15:09:38+00:00| seen| https://t.me/cvedetector/6311...

CGA-6594-3HHH-VMP9

Bulletin has no description...

Photon OS 2.0: Pycrypto PHSA-2018-2.0-0037

An update of the pycrypto package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0037. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2023-6594

creationtimestamp| type| source ---|---|--- 2024-01-09 04:26:05+00:00| seen| https://t.me/ctinow/164785 2024-01-25 14:11:24+00:00| seen| https://t.me/ctinow/173451...

CVE-2023-6594

The WordPress Button Plugin MaxButtons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 9.7.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

Security Bulletin: Vulnerability in pycrypto-2.6.1.tar.gz affects IBM Integrated Analytics System [CVE-2013-7459, CVE-2018-6594]

Summary The pycrypto-2.6.1.tar.gz package is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable vulnerability CVE-2013-7459, CVE-2018-6594. Vulnerability Details CVEID:CVE-2013-7459 DESCRIPTION: PyCrypto is vulnerable to a heap-based buffer...

CVE-2020-6594

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

K91026261: BIG-IP TMM vulnerability CVE-2019-6594

Security Advisory Description Multipath TCP MPTCP does not protect against multiple zero length DATAFINs in the reassembly queue, which can lead to an infinite loop in some circumstances. CVE-2019-6594 Impact The BIG-IP system temporarily fails to process traffic as it recovers from a Traffic...