CVE-2025-6660

PDF-XChange Editor GIF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

CVE-2025-6660

PDF-XChange Editor is affected by a GIF file parsing heap-based buffer overflow that leads to remote code execution. The flaw stems from insufficient validation of user-supplied GIF data before copying to a fixed-length heap buffer, allowing code execution in the current process. The CVE-2025-666...

CVE-2019-6660

On BIG-IP 14.1.0-14.1.2, 14.0.0-14.0.1, and 13.1.0-13.1.1, undisclosed HTTP requests may consume excessive amounts of systems resources which may lead to a denial of service...

CVE-2024-6660

creationtimestamp| type| source ---|---|--- 2024-07-17 09:51:24+00:00| seen| https://t.me/cvedetector/1053...

CVE-2024-6660 BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin <= 1.1.5 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update and Arbitrary File Upload

The BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the bookingpressimportdatacontinueprocessfunc function in all...

WordPress BookingPress Plugin <= 1.1.5 is vulnerable to Arbitrary File Upload

Software BookingPress Type Plugin Vulnerable versions = 1.1.5 Fixed in 1.1.6 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-6660 Patch priority High CVSS severity High 9.9 Developer Claim ownership PSID 0a2c97d6e1ad Credits shaman0x01 Required privilege Subscriber...

Ubuntu: Security Advisory (USN-6660-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-6660

creationtimestamp| type| source ---|---|--- 2024-02-23 07:06:42+00:00| seen| https://t.me/ctinow/191484...

CVE-2023-6660

creationtimestamp| type| source ---|---|--- 2024-01-07 02:32:15+00:00| seen| https://t.me/ctinow/164041...

CVE-2023-6660

When a program running on an affected system appends data to a file via an NFS client mount, the bug can cause the NFS client to fail to copy in the data to be written but proceed as though the copy operation had succeeded. This means that the data to be written is instead replaced with whatever...

CVE-2023-6660

The CVE-2023-6660 issue affects FreeBSD NFS client (13.2/14.0) where appending data to a file via an NFS mount may cause the client to copy in data incorrectly and continue as if written, resulting in data being replaced by prior mbufs contents. This can leak sensitive information from mbuf buffe...

FreeBSD : FreeBSD -- NFS client data corruption and kernel memory disclosure (8eefff69-997f-11ee-8e38-002590c1f29c)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 8eefff69-997f-11ee-8e38-002590c1f29c advisory. - In FreeBSD 13.2 and 14.0, the NFS client was optimized to improve the performance of IOAPPEND writes,...

Mageia: Security Advisory (MGASA-2014-0107)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-6660

...

CVE-2019-6660

CVE-2019-6660 affects F5 BIG-IP Traffic Management Microkernel (TMM) for multiple 14.x/13.x branches. Affected: BIG-IP 14.1.0–14.1.2, 14.0.0–14.0.1, and 13.1.0–13.1.1. Description: undisclosed HTTP requests may exhaust system resources, causing denial of service. Root cause: iRules/HTTP handling ...

CVE-2018-6660

CVE-2018-6660 is a directory-traversal vulnerability in McAfee ePolicy Orchestrator (ePO) versions 5.3.0, 5.3.1, 5.3.2 and 5.9.0. The root cause is improper validation of paths when exporting a particular XML file, enabling use of Windows alternate data streams to bypass file extensions. The vuln...

CVE-2016-6660

...

CVE-2016-6660

Cloud Foundry CVE-2016-6660: The Cloud Controller logs environment variables in plaintext in its /v2/apps endpoint when deploying/managing apps, exposing sensitive data in logs. Affected: Cloud Foundry Release versions prior to 250 and CAPI versions prior to 1.12.0. Mitigation: upgrade to Cloud F...

CVE-2006-6660

The nodeType function in KDE libkhtml 4.2.0 and earlier, as used by Konquerer, KMail, and other programs, allows remote attackers to cause a denial of service crash via malformed HTML tags, possibly involving a COL SPAN tag embedded in a RANGE tag...

Fedora Update for drupal6 FEDORA-2015-14442

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...