MINI-PP56-3R3R-6652

Bulletin has no description...

CVE-2026-6652

creationtimestamp| type| source ---|---|--- 2026-04-20 16:05:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjwtvxypb52c...

CVE-2025-6652 PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

CVE-2025-6652

creationtimestamp| type| source ---|---|--- 2025-06-25 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-437/ 2025-06-25 21:50:26+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19539 2025-06-26 00:30:59+00:00| seen|...

CVE-2019-6652

In BIG-IQ 6.0.0-6.1.0, services for stats do not require authentication nor do they implement any form of Transport Layer Security TLS...

CVE-2024-6652

creationtimestamp| type| source ---|---|--- 2024-07-11 01:35:14+00:00| seen| https://t.me/cvedetector/599...

CVE-2024-6652

A vulnerability was found in itsourcecode Gym Management System 1.0. It has been classified as critical. This affects an unknown part of the file managemember.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2024-6652 itsourcecode Gym Management System manage_member.php sql injection

A vulnerability was found in itsourcecode Gym Management System 1.0. It has been classified as critical. This affects an unknown part of the file managemember.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2023-6652

creationtimestamp| type| source ---|---|--- 2024-01-01 09:26:09+00:00| seen| https://t.me/ctinow/161246...

CVE-2023-6652

CVE-2023-6652 affects code-projects Matrimonial Site 1.0; the vulnerable component is the register() function in /register.php, where input manipulation leads to SQL injection. The vulnerability is exploitable remotely and has been disclosed publicly. Multiple sources (NVD, Red Hat, CVE landings,...

K23101430: BIG-IQ services for stats vulnerability CVE-2019-6652

Security Advisory Description BIG-IQ services for stats do not require authentication nor do they implement any form of Transport Layer Security TLS. CVE-2019-6652 Impact BIG-IQ An attacker may have full access to the stats database on the BIG-IQ system when this vulnerability is exploited. BIG-I...

au.com.mountain-pass:hyperstate-client (>=1 <=10), au.com.mountain-pass:hyperstate-client-webdriver (>=1 <=10) +112 more potentially affected by CVE-2016-6652 via org.springframework.data:spring-data-jpa (>=1.10.0.RELEASE <=1.10.3.RELEASE)

org.springframework.data:spring-data-jpa MAVEN version =1.10.0.RELEASE, =1, =1, =1, =1, =1, =1.0.0, =1.6, =0.85, =0.85, =0.89.6 and more Source cves: CVE-2016-6652 Source advisory: OSV:GHSA-XR4V-28RM-PVGW...

am.ik.home:uaa-server (>=1.0.0 <=1.9.0), at.researchstudio.sat:won-core (>=0.2 <=0.9) +1138 more potentially affected by CVE-2016-6652 via org.springframework.data:spring-data-jpa (>=1.0.1.RELEASE <=1.9.5.RELEASE)

org.springframework.data:spring-data-jpa MAVEN version =1.0.1.RELEASE, =1.0.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.6 - at.researchstudio.sat:won-owner =0.3 - at.researchstudio.sat:won-owner-webapp =0.3 and more Source cves: CVE-2016-6652 Source advisory:...

Eaton Intelligent Power Manager (IPM) < 1.68 Multiple Vulnerabilities

Eaton Intelligent Power Manager IPM v1.67 and prior contain multiple vulnerabilities: - Improper Input Validation on file name during configuration file import functionality allows attackers to perform command injection or code execution via specially crafted file names while uploading the...

Eaton Intelligent Power Manager

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Eaton Equipment: Intelligent Power Manager Vulnerabilities: Improper Input Validation, Incorrect Privilege Assignment 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow...

CVE-2020-6652 Incorrect privilege assignment allowing non-admin users to upload config files

Incorrect Privilege Assignment vulnerability in Eaton's Intelligent Power Manager IPM v1.67 & prior allow non-admin users to upload the system configuration files by sending specially crafted requests. This can result in non-admin users manipulating the system configurations via uploading the...

CVE-2020-6652

CVE-2020-6652 affects Eaton Intelligent Power Manager (IPM) v1.67 and earlier. The vulnerability is an incorrect privilege assignment that lets non-admin users upload system configuration files by sending specially crafted requests, potentially enabling manipulation of configurations with paramet...

CVE-2019-6652

In BIG-IQ 6.0.0-6.1.0, services for stats do not require authentication nor do they implement any form of Transport Layer Security TLS...

CVE-2019-6652

CVE-2019-6652 affects F5 BIG-IQ Centralized Management 6.0.0–6.1.0, where BIG-IQ services for stats do not require authentication and lack TLS. The vulnerability can allow an attacker to gain full access to the statistics database on affected BIG-IQ systems. Remediation per vendor is to upgrade t...

F5 BIG-IQ Centralized Management CVE-2019-6652 Security Bypass Vulnerability

Description F5 BIG-IQ Centralized Management is prone to a remote security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. Technologies Affected F5 BIG-IQ Centralized Management 6.0.1 F5 BIG-I...