Linux Distros Unpatched Vulnerability : CVE-2015-6823

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The allocatebuffers function in libavcodec/alac.c in FFmpeg before 2.7.2 does not initialize certain context data, which allows remote attackers to cause a deni...

CVE-2025-6823 code-projects Inventory Management System editProduct.php sql injection

A vulnerability was found in code-projects Inventory Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /phpaction/editProduct.php. The manipulation of the argument editProductName leads to sql injection. The attack may be initiated...

Linux Distros Unpatched Vulnerability : CVE-2020-6823

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A malicious extension could have called browser.identity.launchWebAuthFlow, controlling the redirecturi, and through the Promise returned, obtain the Auth code...

Linux Distros Unpatched Vulnerability : CVE-2016-6823

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the BMP coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service crash via crafted height and width values,...

CGA-6823-C2Q6-5R5F

Bulletin has no description...

CGA-G7W2-MFPJ-6823

Bulletin has no description...

CVE-2024-6823

creationtimestamp| type| source ---|---|--- 2024-08-13 08:44:30+00:00| seen| https://t.me/cvedetector/2965...

CVE-2024-6823

The CVE-2024-6823 entry concerns the Media Library Assistant WordPress plugin. It enables arbitrary file uploads due to missing file type validation in the mla-inline-edit-upload-scripts AJAX action, affecting all versions up to 3.18. Exploitation requires authentication at Author level or higher...

WordPress Media Library Assistant Plugin <= 3.18 is vulnerable to Arbitrary File Upload

Software Media Library Assistant Type Plugin Vulnerable versions = 3.18 Fixed in 3.19 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-6823 Patch priority Medium CVSS severity Medium 9.1 Developer Claim ownership PSID 84d8203c5d37 Credits wesley wcraft Required privile...

Ubuntu 20.04 LTS / 22.04 LTS / 23.10 / 24.04 LTS : MySQL vulnerabilities (USN-6823-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.10 / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6823-1 advisory. Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issue...

RHEL 6 : firefox (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - Mozilla: Type confusion for special arguments in IonMonkey CVE-2020-15656 - Mozilla: Malicious Extension...

RHEL 8 : firefox (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - Mozilla: Type confusion for special arguments in IonMonkey CVE-2020-15656 - Mozilla: Malicious Extension...

RHEL 7 : python3 (RHSA-2023:6823)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:6823 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

Debian: Security Advisory (DLA-1611)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mozilla Firefox Security Advisory (MFSA2020-12) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

SUSE: Security Advisory (SUSE-SU-2016:2952-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-6823

The CVE-2020-6823 entry concerns Mozilla Firefox (affected versions: below 75). A malicious extension could call browser.identity.launchWebAuthFlow, allowing control of the redirect_uri and through the returned Promise obtain an OAuth authorization code, enabling the attacker to access the user’s...

CVE-2020-6823

A malicious extension could have called browser.identity.launchWebAuthFlow, controlling the redirecturi, and through the Promise returned, obtain the Auth code and gain access to the user's account at the service provider. This vulnerability affects Firefox 75...

[ASA-202004-8] firefox: multiple issues

Arch Linux Security Advisory ASA-202004-8 ========================================= Severity: Critical Date : 2020-04-08 CVE-ID : CVE-2020-6821 CVE-2020-6823 CVE-2020-6824 CVE-2020-6825 CVE-2020-6826 Package : firefox Type : multiple issues Remote : Yes Link :...

ICSA-19-295-01_Schneider Electric ProClima

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Schneider Electric Equipment: Proclima Vulnerabilities: Code Injection, Improper Restriction of Operations within the Bounds of a Memory Buffer, Uncontrolled Search Path Element 2. RISK EVALUATION...