60 matches found
Joomla! Component Zh BaiduMap 3.0.0.1 - SQL Injection
SQL Injection exists in the Zh BaiduMap 3.0.0.1 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request. id: CVE-2018-6605 info: name: Joomla! Component Zh BaiduMap 3.0.0.1 - SQL Injection author: DhiyaneshDk severity...
CVE-2026-6605
A security flaw has been discovered in modelscope agentscope up to 1.0.18. This affects the function getbytesfromweburl of the file src/agentscope/utils/common.py of the component Internal Service. Performing a manipulation results in server-side request forgery. It is possible to initiate the...
CVE-2026-6605
creationtimestamp| type| source ---|---|--- 2026-04-20 07:15:49+00:00| published-proof-of-concept| Telegram/UmvoOoU43UC2jMqfLobJT4zrFIQl61G8LbQOBbZSD5gsLA 2026-04-20 07:44:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjvxwiej3i2i...
adclaw (>=1.0.0 <=1.0.32), agentscope-runtime (=1.0.5.post1) +14 more potentially affected by CVE-2026-6605 via agentscope (>=0.1.0 <=1.0.18)
agentscope PYPI version =0.1.0, =1.0.0, =1.0.0.post2, =0.1.0, =0.1.0, =0.0.1, =0.1.0.post1, =1.1.0, =1.0.2, =0.1.7, =1.0.1, =1.0.0.4, =0.83.0, =0.99.32 and more Source cves: CVE-2026-6605 Source advisory: OSV:GHSA-8GGF-R3VM-P3JC...
CVE-2026-6605
A security flaw has been discovered in modelscope agentscope up to 1.0.18. This affects the function getbytesfromweburl of the file src/agentscope/utils/common.py of the component Internal Service. Performing a manipulation results in server-side request forgery. It is possible to initiate the...
CVE-2018-6605
creationtimestamp| type| source ---|---|--- 2026-04-07 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2026-04-07 2026-04-12 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2026-04-12 2026-04-15 00:00:00+00:00| exploited| The Shadowserver...
Mageia: Security Advisory (MGASA-2025-0306)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-4241 : ffmpeg - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4241 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4241-1 [email protected]...
CVE-2025-6605
creationtimestamp| type| source ---|---|--- 2025-06-25 13:50:53+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19442 2025-06-25 16:36:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsh2ahmrkx2s...
CVE-2025-6605 SourceCodester Best Salon Management System edit-staff.php sql injection
A vulnerability classified as critical was found in SourceCodester Best Salon Management System 1.0. This vulnerability affects unknown code of the file /panel/edit-staff.php. The manipulation of the argument editid leads to sql injection. The attack can be initiated remotely. The exploit has bee...
CVE-2025-6605
CVE-2025-6605 affects SourceCodester Best Salon Management System 1.0. The vulnerability exists in /panel/edit-staff.php via the editid parameter, enabling SQL injection. It is exploitable remotely and an exploit has been disclosed publicly. Connected sources confirm the root cause and impact, bu...
CVE-2023-6605
A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...
CVE-2023-6605
A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...
CVE-2023-6605
creationtimestamp| type| source ---|---|--- 2025-01-06 16:44:31+00:00| seen| https://infosec.exchange/users/cve/statuses/113782415122420449 2025-01-06 17:15:38+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf3n5jcywv2f 2025-07-14 14:57:34+00:00| seen|...
CVE-2023-6605
A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...
CVE-2023-6605 Ffmpeg: dash playlist ssrf vulnerability in ffmpeg
A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...
CVE-2023-6605
CVE-2023-6605 affects FFmpeg’s DASH playlist handling. A crafted DASH playlist with malicious URLs can trigger SSRF (arbitrary HTTP GETs) from the host running FFmpeg. Public advisories in connected docs (Debian DLA-4241, Mageia advisory, Ubuntu USN-7830-1, Alpine Linux page) confirm a DASH SSRF ...
CVE-2023-6605
A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...
CVE-2023-6605 Ffmpeg: dash playlist ssrf vulnerability in ffmpeg
A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs...
CVE-2024-6605
creationtimestamp| type| source ---|---|--- 2024-07-09 17:42:27+00:00| seen| https://t.me/cvedetector/360...