MINI-2Q3R-CHCG-6687

Bulletin has no description...

MINI-7WRP-5JQ2-6687

Bulletin has no description...

ECHO-6D94-D9AC-6687

Bulletin has no description...

CVE-2025-6687

The CVE concerns the WordPress plugin Magic Buttons for Elementor . Affected: the plugin’s magic-button shortcode in all versions up to 1.0. Root cause: insufficient input sanitization and output escaping on user-supplied attributes, enabling a Stored Cross-Site Scripting (Stored XSS) vulnerabili...

WordPress Magic Buttons for Elementor plugin <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via magic-button Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via magic-button Shortcode vulnerability discovered by muhammad yudha in WordPress Plugin Magic Buttons for Elementor versions = 1.0...

CVE-2019-6687

On versions 15.0.0-15.0.1.1, the BIG-IP ASM Cloud Security Services profile uses a built-in verification mechanism that fails to properly authenticate the X.509 certificate of remote endpoints...

OESA-2025-1041 perl-FCGI security update

FastCGI Perl bingdings. Security Fixes: CVE-2012-6687...

Adobe Reader < 2015.006.30094 / 2015.009.20069 Multiple Vulnerabilities (APSB15-24) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 2015.006.30094 or 2015.009.20069. It is, therefore, affected by multiple vulnerabilities. - The ANAuthenticateResource method in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and...

CVE-2024-6687

creationtimestamp| type| source ---|---|--- 2024-08-01 05:23:18+00:00| seen| https://t.me/cvedetector/2198...

CVE-2024-6687 CTT Expresso para WooCommerce <= 3.2.12 - Information Exposure via Unprotected Directory

The CTT Expresso para WooCommerce plugin for WordPress is vulnerable to sensitive information exposure in all versions up to and including 3.2.12 via the /wp-content/uploads/cepw directory. The generated .pdf and log files are publicly accessible and contain sensitive information such as sender a...

WordPress CTT Expresso para WooCommerce Plugin <= 3.2.12 is vulnerable to Sensitive Data Exposure

Software CTT Expresso para WooCommerce Type Plugin Vulnerable versions = 3.2.12 Fixed in 3.2.13 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-6687 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 27468c538b68 Credits Ricardo...

CBL Mariner 2.0 Security Update: fcgi (CVE-2012-6687)

The version of fcgi installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2012-6687 advisory. - FastCGI aka fcgi and libfcgi 2.4.0 allows remote attackers to cause a denial of service segmentation fault and...

CVE-2012-6687 affecting package fcgi for versions less than 2.4.0-7

CVE-2012-6687 affecting package fcgi for versions less than 2.4.0-7. A patched version of the package is available...

CVE-2019-6687

creationtimestamp| type| source ---|---|--- 2024-03-16 16:46:32+00:00| seen| https://t.me/ctinow/209613...

Ubuntu 20.04 LTS / 22.04 LTS : AccountsService vulnerability (USN-6687-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6687-1 advisory. It was discovered that AccountsService called a helper incorrectly when performing password change operations. A local attacker could possibly use thi...

CVE-2023-6687

creationtimestamp| type| source ---|---|--- 2024-01-04 08:11:20+00:00| seen| https://t.me/ctinow/162821...

CVE-2023-6687

CVE-2023-6687 affects Elastic Beat/Elastic Agent and related components. When ingestion to Elasticsearch fails with any 4xx HTTP status except 409 or 429, the agent logs the raw event at WARN/ERROR, potentially exposing sensitive information in the logs. The issue is mitigated by upgrading to ver...

K59957337: ASM Cloud Security Services authentication vulnerability CVE-2019-6687

Security Advisory Description The BIG-IP ASM Cloud Security Services profile uses a built-in verification mechanism that fails to properly authenticate the X.509 certificate of remote endpoints. CVE-2019-6687 Impact This vulnerability may allow man-in-the-middle attackers to intercept traffic...

CVE-2012-6687 affecting package fcgi for versions less than 2.4.0-7

CVE-2012-6687 affecting package fcgi for versions less than 2.4.0-7. A patched version of the package is available...

Mageia: Security Advisory (MGASA-2015-0184)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...