Lucene search
K

60 matches found

Nuclei
Nuclei
added 4 days ago64 views

Joomla! Component Zh BaiduMap 3.0.0.1 - SQL Injection

SQL Injection exists in the Zh BaiduMap 3.0.0.1 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request. id: CVE-2018-6605 info: name: Joomla! Component Zh BaiduMap 3.0.0.1 - SQL Injection author: DhiyaneshDk severity...

9.8CVSS7.3AI score0.58324EPSS
Exploits5References3
RedhatCVE
RedhatCVE
added 2026/06/05 7:32 p.m.10 views

CVE-2026-6605

A security flaw has been discovered in modelscope agentscope up to 1.0.18. This affects the function getbytesfromweburl of the file src/agentscope/utils/common.py of the component Internal Service. Performing a manipulation results in server-side request forgery. It is possible to initiate the...

7.5CVSS6.6AI score0.00326EPSS
Exploits0References1
Circl
Circl
added 2026/04/20 7:15 a.m.4 views

CVE-2026-6605

creationtimestamp| type| source ---|---|--- 2026-04-20 07:15:49+00:00| published-proof-of-concept| Telegram/UmvoOoU43UC2jMqfLobJT4zrFIQl61G8LbQOBbZSD5gsLA 2026-04-20 07:44:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjvxwiej3i2i...

7.5CVSS7.3AI score0.00326EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2026/04/20 6:31 a.m.7 views

adclaw (>=1.0.0 <=1.0.32), agentscope-runtime (=1.0.5.post1) +14 more potentially affected by CVE-2026-6605 via agentscope (>=0.1.0 <=1.0.18)

agentscope PYPI version =0.1.0, =1.0.0, =1.0.0.post2, =0.1.0, =0.1.0, =0.0.1, =0.1.0.post1, =1.1.0, =1.0.2, =0.1.7, =1.0.1, =1.0.0.4, =0.83.0, =0.99.32 and more Source cves: CVE-2026-6605 Source advisory: OSV:GHSA-8GGF-R3VM-P3JC...

7.5CVSS7AI score0.00326EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/20 4:30 a.m.3 views

CVE-2026-6605

A security flaw has been discovered in modelscope agentscope up to 1.0.18. This affects the function getbytesfromweburl of the file src/agentscope/utils/common.py of the component Internal Service. Performing a manipulation results in server-side request forgery. It is possible to initiate the...

7.5CVSS5.3AI score0.00326EPSS
Exploits0References4Affected Software1
Circl
Circl
added 2026/04/07 12:0 a.m.10 views

CVE-2018-6605

creationtimestamp| type| source ---|---|--- 2026-04-07 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2026-04-07 2026-04-12 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2026-04-12 2026-04-15 00:00:00+00:00| exploited| The Shadowserver...

9.8CVSS7.2AI score0.58324EPSS
In wildExploits5References3
OpenVAS
OpenVAS
added 2025/11/24 12:0 a.m.5 views

Mageia: Security Advisory (MGASA-2025-0306)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.8AI score0.00669EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2025/07/14 12:0 a.m.5 views

Debian dla-4241 : ffmpeg - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4241 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4241-1 [email protected]...

7.2CVSS6.9AI score0.0043EPSS
Exploits3References10
Circl
Circl
added 2025/06/25 1:50 p.m.8 views

CVE-2025-6605

creationtimestamp| type| source ---|---|--- 2025-06-25 13:50:53+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19442 2025-06-25 16:36:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsh2ahmrkx2s...

8.8CVSS6.2AI score0.00361EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/06/25 1:31 p.m.11 views

CVE-2025-6605 SourceCodester Best Salon Management System edit-staff.php sql injection

A vulnerability classified as critical was found in SourceCodester Best Salon Management System 1.0. This vulnerability affects unknown code of the file /panel/edit-staff.php. The manipulation of the argument editid leads to sql injection. The attack can be initiated remotely. The exploit has bee...

6.5CVSS0.00361EPSS
Exploits1References5
CVE
CVE
added 2025/06/25 1:31 p.m.22 views

CVE-2025-6605

CVE-2025-6605 affects SourceCodester Best Salon Management System 1.0. The vulnerability exists in /panel/edit-staff.php via the editid parameter, enabling SQL injection. It is exploitable remotely and an exploit has been disclosed publicly. Connected sources confirm the root cause and impact, bu...

8.8CVSS7.8AI score0.00361EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2025/01/06 5:15 p.m.8 views

CVE-2023-6605

A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...

7.2CVSS6.5AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/01/06 5:15 p.m.7 views

CVE-2023-6605

A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...

7.2CVSS6.8AI score0.00269EPSS
Exploits0References3
Circl
Circl
added 2025/01/06 4:44 p.m.12 views

CVE-2023-6605

creationtimestamp| type| source ---|---|--- 2025-01-06 16:44:31+00:00| seen| https://infosec.exchange/users/cve/statuses/113782415122420449 2025-01-06 17:15:38+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf3n5jcywv2f 2025-07-14 14:57:34+00:00| seen|...

7.2CVSS6.7AI score0.00269EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2025/01/06 4:42 p.m.6 views

CVE-2023-6605

A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...

7.2CVSS6.1AI score0.00269EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/01/06 4:42 p.m.8 views

CVE-2023-6605 Ffmpeg: dash playlist ssrf vulnerability in ffmpeg

A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...

7.2CVSS6.8AI score0.00269EPSS
Exploits0References1
CVE
CVE
added 2025/01/06 4:42 p.m.75 views

CVE-2023-6605

CVE-2023-6605 affects FFmpeg’s DASH playlist handling. A crafted DASH playlist with malicious URLs can trigger SSRF (arbitrary HTTP GETs) from the host running FFmpeg. Public advisories in connected docs (Debian DLA-4241, Mageia advisory, Ubuntu USN-7830-1, Alpine Linux page) confirm a DASH SSRF ...

7.2CVSS6.8AI score0.00269EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/01/06 4:42 p.m.9 views

CVE-2023-6605

A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...

7.2CVSS6.6AI score0.00269EPSS
Exploits0
Cvelist
Cvelist
added 2025/01/06 4:42 p.m.31 views

CVE-2023-6605 Ffmpeg: dash playlist ssrf vulnerability in ffmpeg

A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...

7.2CVSS0.00269EPSS
Exploits0References1
Circl
Circl
added 2024/07/09 5:42 p.m.8 views

CVE-2024-6605

creationtimestamp| type| source ---|---|--- 2024-07-09 17:42:27+00:00| seen| https://t.me/cvedetector/360...

8.8CVSS7.3AI score0.00355EPSS
Exploits0References1
Rows per page
Query Builder