Lucene search
K

36 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/07 12:0 a.m.4 views

Oracle Linux 10 : nginx (ELSA-2026-6906)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6906 advisory. - Resolves: RHEL-157874 CVE-2026-32647 nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files - Resolves: RHEL-159433...

8.8CVSS6AI score0.21621EPSS
Exploits0References5
Circl
Circl
added 2025/06/30 1:8 p.m.7 views

CVE-2025-6906

creationtimestamp| type| source ---|---|--- 2025-06-30 13:08:51+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19929 2025-06-30 17:41:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lstq73ykco2i...

9.8CVSS7.3AI score0.00399EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/06/30 12:2 p.m.9 views

CVE-2025-6906 code-projects Car Rental System login.php sql injection

A vulnerability classified as critical has been found in code-projects Car Rental System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument uname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

7.5CVSS0.00399EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/07/23 12:0 a.m.27 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS : python-zipp vulnerability (USN-6906-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6906-1 advisory. It was discovered that python-zipp did not properly handle the zip files with malformed names. An attacker could possibly use this issue t...

6.2CVSS6.8AI score0.00236EPSS
Exploits0References2
Circl
Circl
added 2024/07/19 12:51 p.m.7 views

CVE-2024-6906

creationtimestamp| type| source ---|---|--- 2024-07-19 12:51:58+00:00| seen| https://t.me/cvedetector/1210...

8.8CVSS6.2AI score0.00532EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/07/19 9:31 a.m.13 views

CVE-2024-6906 SourceCodester Record Management System add_leave_non_user.php sql injection

A vulnerability was found in SourceCodester Record Management System 1.0 and classified as critical. This issue affects some unknown processing of the file addleavenonuser.php. The manipulation of the argument LSS leads to sql injection. The attack may be initiated remotely. The exploit has been...

6.5CVSS9AI score0.00532EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/07/19 9:31 a.m.27 views

CVE-2024-6906 SourceCodester Record Management System add_leave_non_user.php sql injection

A vulnerability was found in SourceCodester Record Management System 1.0 and classified as critical. This issue affects some unknown processing of the file addleavenonuser.php. The manipulation of the argument LSS leads to sql injection. The attack may be initiated remotely. The exploit has been...

6.5CVSS0.00532EPSS
Exploits1References4
CVE
CVE
added 2024/07/19 9:31 a.m.57 views

CVE-2024-6906

CVE-2024-6906 affects SourceCodester Record Management System v1.0. The vulnerability is in add_leave_non_user.php where manipulation of the LSS parameter leads to SQL injection, exploitable remotely (no user interaction). Multiple sources confirm the issue and that exploit information is publicl...

8.8CVSS6.9AI score0.00532EPSS
Exploits1References4Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/01/24 8:23 p.m.2 views

Malicious code in wlwz-2312-6906 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fd3a57595d825a746d705cb42d784fdd656532e9bc895396f404c33509303ec1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2024/01/24 8:23 p.m.8 views

MAL-2024-797 Malicious code in wlwz-2312-6906 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fd3a57595d825a746d705cb42d784fdd656532e9bc895396f404c33509303ec1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Circl
Circl
added 2024/01/12 6:56 a.m.5 views

CVE-2023-6906

creationtimestamp| type| source ---|---|--- 2024-01-12 06:56:52+00:00| seen| https://t.me/ctinow/167091...

10CVSS8.7AI score0.0185EPSS
Exploits1References1
CVE
CVE
added 2023/12/18 12:0 a.m.49 views

CVE-2023-6906

Summary: CVE-2023-6906 affects Totolink A7100RU. The issue resides in the HTTP POST Request Handler, specifically the function main in the file /cgi-bin/cstecgi.cgi?action=login, where the e8 parameter input is not properly validated, causing a buffer overflow. This condition can be triggered rem...

10CVSS9.8AI score0.0185EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/18 12:0 a.m.9 views

CVE-2023-6906 Totolink A7100RU HTTP POST Request main buffer overflow

A vulnerability, which was classified as critical, was found in Totolink A7100RU 7.4cu.2313B20191024. Affected is the function main of the file /cgi-bin/cstecgi.cgi?action=login of the component HTTP POST Request Handler. The manipulation of the argument flag with the input ie8 leads to buffer...

10CVSS9.7AI score0.0185EPSS
Exploits1References3
Cvelist
Cvelist
added 2021/01/05 5:21 p.m.9 views

CVE-2020-6906

...

Exploits0
CVE
CVE
added 2021/01/05 5:21 p.m.29 views

CVE-2020-6906

This CVE-2020-6906 entry is rejected and not used.

6.9AI score
Exploits0
CVE
CVE
added 2018/11/01 5:0 p.m.40 views

CVE-2018-6906

The CVE-2018-6906 entry concerns a persistent Cross-Site Scripting (XSS) vulnerability in Green Electronics RainMachine Mini-8 (2nd Generation) and Touch HD 12 Web Application. According to the sources, an attacker can inject arbitrary JavaScript through the REST API, enabling an XSS exposure tha...

6.1CVSS5.9AI score0.00675EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2017/05/11 2:1 p.m.37 views

CVE-2015-6906

The CVE-2015-6906 entry is rejected/not used and does not represent an active vulnerability.

7.4AI score
Exploits0
Cvelist
Cvelist
added 2017/05/11 2:1 p.m.15 views

CVE-2015-6906

...

Exploits0
Cloud Foundry
Cloud Foundry
added 2017/03/31 12:0 a.m.63 views

USN-3213-1: GD library vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description Stefan Esser discovered that the GD library incorrectly handled memory when processing certain images. If a user or automated system were tricked into processing a specially crafted image, an attacker cou...

9.8CVSS8.7AI score0.10687EPSS
Exploits0
CVE
CVE
added 2017/03/15 2:0 p.m.102 views

CVE-2016-6906

CVE-2016-6906 affects the GD Graphics Library (libgd) read_image_tga in gd_tga.c, vulnerable before 2.2.4 due to an out-of-bounds read in the TGA decompression buffer when processing crafted images. This can cause denial of service; potential for remote impact is indicated in related advisories, ...

5.5CVSS6.6AI score0.01977EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder