MAL-2025-6975 Malicious code in 007007-simple-calculator (npm)

The package 007007-simple-calculator was found to contain malicious code...

CVE-2025-6975

creationtimestamp| type| source ---|---|--- 2025-07-09 23:21:19+00:00| seen| Telegram/A9w0mL0e6p1-5uzxycLnIDuqZgq8e5MSDYfwO8QFr3TVEWM...

CVE-2025-6975 Event Manager <= 7.0.3 - Reflected Cross-Site Scripting via `calendar_header` Parameter

The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘calendarheader’ parameter in all versions up to, and including, 7.0.3 due to insufficient input sanitization and output escaping. This makes it possible for...

CVE-2025-6975 Event Manager <= 7.0.3 - Reflected Cross-Site Scripting via `calendar_header` Parameter

The Events Manager – Calendar, Bookings, Tickets, and more! plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘calendarheader’ parameter in all versions up to, and including, 7.0.3 due to insufficient input sanitization and output escaping. This makes it possible for...

WordPress Event Manager plugin <= 7.0.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by mikemyers in WordPress Plugin Events Manager versions = 6.6.4.4...

CVE-2023-6975

A malicious user could use this issue to get command execution on the vulnerable machine and get access to data & models information...

CVE-2006-6975

PHP remote file inclusion vulnerability in centipaidclass.php in CentiPaid 1.4.3 allows remote attackers to execute arbitrary code via a URL in the classpwd parameter. NOTE: this issue has been disputed by CVE and multiple third parties, who state that $classpwd is set to a static value before th...

Linux Distros Unpatched Vulnerability : CVE-2019-6975

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Django 1.11.x before 1.11.19, 2.0.x before 2.0.11, and 2.1.x before 2.1.6 allows Uncontrolled Memory Consumption via a malicious attacker-supplied value to the...

CVE-2006-6975

creationtimestamp| type| source ---|---|--- 2025-01-17 14:56:55+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2141...

AlmaLinux 8 : python3 (ALSA-2024:6975)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:6975 advisory. python: incorrect IPv4 and IPv6 private ranges CVE-2024-4032 cpython: python: email module doesn't properly quotes newlines in email headers, allowing...

Oracle Linux 8 : python3 (ELSA-2024-6975)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6975 advisory. - Security fix for CVE-2024-6232 Resolves: RHEL-57399 - Security fix for CVE-2024-6923 Resolves: RHEL-53065 Tenable has extracted the preceding...

RHEL 8 : python3 (RHSA-2024:6975)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6975 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

Ubuntu: Security Advisory (USN-6975-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-6975-1)

"The remote Ubuntu 22.04 LTS / 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6975-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

CVE-2024-6975

creationtimestamp| type| source ---|---|--- 2024-07-31 20:11:03+00:00| seen| https://t.me/cvedetector/2158...

CVE-2024-6975

Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file. This issue affects SDP Client before 5.10.34...

CVE-2024-6975 Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file

Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file. This issue affects SDP Client before 5.10.34...

CVE-2024-6975 Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file

Cato Networks Windows SDP Client Local Privilege Escalation via openssl configuration file. This issue affects SDP Client before 5.10.34...

CVE-2024-6975

CVE-2024-6975 concerns Cato Networks Windows SDP Client prior to 5.10.34. The vulnerability is a local privilege escalation through the openssl configuration file, affecting the SDP Client component. Public sources in connected documents consistently describe a local-exploitation risk with no rem...

a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +337 more potentially affected by CVE-2023-6975 via mlflow (>=0.8.2 <=2.9.1)

mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 - apache-submarine =0.6.0 and more Source cves: CVE-2023-6975 Source advisory: OSV:GHSA-HH8P-P8MP-GQHM...