Lucene search
K

42 matches found

Chainguard
Chainguard
added 2 days ago2 views

CVE-2024-6997 vulnerabilities

Vulnerabilities for packages: chromium...

8.8CVSS6.8AI score0.00517EPSS
Exploits0
Wolfi
Wolfi
added 2 days ago3 views

CVE-2024-6997 vulnerabilities

Vulnerabilities for packages: chromium...

8.8CVSS6.8AI score0.00517EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/27 7:23 p.m.4 views

CVE-2026-6997

A security vulnerability has been detected in BDCOM P3310D 0.4.2 10.1.0F Build 86345. This impacts an unknown function of the component New RMON History Page. The manipulation of the argument Owner leads to cross site scripting. Remote exploitation of the attack is possible. The exploit has been...

4.8CVSS3AI score0.00245EPSS
Exploits0References1
OSV
OSV
added 2026/02/19 1:52 a.m.5 views

ECHO-6997-45FE-7CD8

Bulletin has no description...

7.8CVSS5.1AI score0.00152EPSS
Exploits0References1
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-6997 Malicious code in 254-shades-of-grey (npm)

The package 254-shades-of-grey was found to contain malicious code...

7.2AI score
Exploits0
Patchstack
Patchstack
added 2025/07/21 1:45 a.m.7 views

WordPress ThemeREX Addons plugin <= 2.35.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via trx_addons_get_svg_from_file Function vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via trxaddonsgetsvgfromfile Function vulnerability discovered by stealthcopter in WordPress Plugin ThemeREX Addons versions = 2.35.1.1...

6.4CVSS5.5AI score0.00205EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/19 8:24 a.m.3 views

CVE-2025-6997 ThemeREX Addons <= 2.35.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via trx_addons_get_svg_from_file Function

The ThemeREX Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.35.1.1 due to insufficient input sanitization and output escaping. The plugin’s SVG rendering routine calls the trxaddonsgetsvgfromfile function on an...

6.4CVSS6.2AI score0.00205EPSS
Exploits0References2
CVE
CVE
added 2025/07/19 8:24 a.m.30 views

CVE-2025-6997

CVE-2025-6997 : ThemeREX Addons for WordPress is vulnerable to a stored cross-site scripting (XSS) via SVG uploads in versions

6.4CVSS5.8AI score0.00205EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/07/19 8:24 a.m.10 views

CVE-2025-6997 ThemeREX Addons <= 2.35.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via trx_addons_get_svg_from_file Function

The ThemeREX Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.35.1.1 due to insufficient input sanitization and output escaping. The plugin’s SVG rendering routine calls the trxaddonsgetsvgfromfile function on an...

6.4CVSS0.00205EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:15 a.m.8 views

CVE-2019-6997

An issue was discovered in GitLab Community and Enterprise Edition 10.x starting in 10.7 and 11.x before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It has Incorrect Access Control. System notes contain an access control issue that permits a guest user to view merge request titles...

4.3CVSS6.4AI score0.00808EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 10:4 p.m.7 views

CVE-2006-6997

Unspecified vulnerability in a cryptographic feature in MailEnable Standard Edition before 1.93, Professional Edition before 1.73, and Enterprise Edition before 1.21 leads to "weakened authentication security" with unknown impact and attack vectors. NOTE: due to lack of details, it is not clear...

10CVSS6.9AI score0.06251EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-6997

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Tabs in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially...

8.8CVSS8.1AI score0.00517EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.22 views

CentOS 7 : firefox (RHSA-2022:6997)

The remote CentOS Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:6997 advisory. - libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. CVE-2022-40674 Note that Nessus has not tested for this issue but has...

8.1CVSS7.5AI score0.01659EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/26 12:0 a.m.37 views

Oracle Linux 9 : kernel (ELSA-2024-6997)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6997 advisory. - ARM: 9359/1: flush: check if the folio is reserved for no-mapping addresses CKI Backport Bot RHEL-42783 CVE-2024-26947 - tty: ngsm: fix possible...

7.8CVSS7.1AI score0.01003EPSS
Exploits0References20
OSV
OSV
added 2024/09/25 5:15 a.m.6 views

CGA-6997-4VMW-M8CQ

Bulletin has no description...

7.5CVSS7.1AI score0.01046EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/09/24 12:0 a.m.35 views

RHEL 9 : kernel (RHSA-2024:6997)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6997 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: uio: Fix use-after-free in...

7.8CVSS7AI score0.01003EPSS
Exploits0References41
Tenable Nessus
Tenable Nessus
added 2024/09/09 12:0 a.m.18 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : LibTIFF vulnerability (USN-6997-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6997-1 advisory. It was discovered that LibTIFF incorrectly handled memory. An attacker could possibly use this issue to cause the...

7.5CVSS6.9AI score0.01516EPSS
Exploits0References2
Circl
Circl
added 2024/08/06 7:12 p.m.6 views

CVE-2024-6997

creationtimestamp| type| source ---|---|--- 2024-08-06 19:12:04+00:00| seen| https://t.me/cvedetector/2601...

8.8CVSS7.6AI score0.00517EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/08/06 3:37 p.m.17 views

CVE-2024-6997

Use after free in Tabs in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.8AI score0.00517EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/08/03 12:0 a.m.40 views

Fedora 40 : chromium (2024-3a1a0a664e)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-3a1a0a664e advisory. update to 127.0.6533.88 Critical CVE-2024-6990: Uninitialized Use in Dawn High CVE-2024-7255: Out of bounds read in WebTransport High CVE-2024-7256:...

8.8CVSS7.4AI score0.00865EPSS
Exploits1References20
Rows per page
Query Builder