CVE-2025-6904

creationtimestamp| type| source ---|---|--- 2025-06-30 12:08:13+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19927 2025-06-30 13:23:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lstbr5skzj2u...

CVE-2025-6904

A vulnerability was found in code-projects Car Rental System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/addcars.php. The manipulation of the argument carname leads to sql injection. The attack may be launched remotely. The exploit h...

CVE-2025-6904 code-projects Car Rental System add_cars.php sql injection

A vulnerability was found in code-projects Car Rental System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/addcars.php. The manipulation of the argument carname leads to sql injection. The attack may be launched remotely. The exploit h...

Ubuntu: Security Advisory (USN-6904-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : PyMongo vulnerability (USN-6904-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6904-1 advisory. It was discovered that PyMongo incorrectly handled certain BSON. An attacker could possibly use this issue to read...

CVE-2024-6904

creationtimestamp| type| source ---|---|--- 2024-07-19 12:01:43+00:00| seen| https://t.me/cvedetector/1204...

CVE-2024-6904

A vulnerability, which was classified as critical, was found in SourceCodester Record Management System 1.0. This affects an unknown part of the file sort2user.php. The manipulation of the argument qualification leads to sql injection. It is possible to initiate the attack remotely. The exploit h...

CVE-2024-6904 SourceCodester Record Management System sort2_user.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Record Management System 1.0. This affects an unknown part of the file sort2user.php. The manipulation of the argument qualification leads to sql injection. It is possible to initiate the attack remotely. The exploit h...

Malicious code in wlwz-2312-6904 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware abfb7d9312c4be77c95fe84310487e311e875f63e5fb5dc91f8944c537457ff8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-795 Malicious code in wlwz-2312-6904 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware abfb7d9312c4be77c95fe84310487e311e875f63e5fb5dc91f8944c537457ff8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-6904

creationtimestamp| type| source ---|---|--- 2024-01-12 00:07:09+00:00| seen| https://t.me/ctinow/166949...

CVE-2023-6904

CVE-2023-6904 affects Jahastech NxFilter 4.3.2.5. The vulnerability is a cross-site request forgery in the file /config,admin.jsp caused by manipulating the admin_name argument. The attack can be initiated remotely. Vendor was contacted but did not respond. Remediation details are not provided in...

CVE-2020-6904

...

CVE-2018-6904

CVE-2018-6904 affects PHP Scripts Mall Car Rental Script 2.0.8. The issue is an XSS vulnerability in the User Name field during an Edit Profile action. According to the NVD details, the vulnerability has a CVSS v2 base score of 3.5 (LOW) and a CVSS v3 base score of 5.4 (MEDIUM). The metrics indic...

CVE-2016-6904

Versions of VASA Provider for Clustered Data ONTAP prior to 7.0P1 contain a web server that accepts plain text authentication. This could allow an unauthenticated attacker to obtain authentication credentials...

CVE-2016-6904

Versions of VASA Provider for Clustered Data ONTAP prior to 7.0P1 contain a web server that accepts plain text authentication. This could allow an unauthenticated attacker to obtain authentication credentials...

CVE-2016-6904

CVE-2016-6904 affects NetApp VASA Provider for Clustered Data ONTAP prior to 7.0P1. A web server accepts plain text authentication, enabling an unauthenticated attacker to obtain authentication credentials. Impact: credential disclosure and potential access to protected data/interfaces. Exploitat...

CVE-2015-6904

...

CVE-2015-6904

CVE-2015-6904 is rejected and not used; not an active vulnerability entry.

CVE-2014-6904

The CVE-2014-6904 entry concerns The Safe Browser - The Web Filter (aka com.cloudacl) Android app version 1.2.5. The vulnerability is that it does not verify X.509 certificates from SSL servers, allowing MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. T...