CVE-2026-7061

The CVE-2026-7061 entry affects Toowiredd chatgpt-mcp-server up to version 0.1.0. The vulnerability is in the MCP/HTTP component, specifically the file src/services/docker.service.ts, where a manipulation leads to an OS command injection. Remote exploitation is possible and the exploit has been m...

CVE-2020-7061

creationtimestamp| type| source ---|---|--- 2026-01-27 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-027-02...

ECHO-7061-2778-31E0

Bulletin has no description...

MAL-2025-7061 Malicious code in @amber-team/mobx-utils (npm)

The package @amber-team/mobx-utils was found to contain malicious code...

CVE-2025-7061

creationtimestamp| type| source ---|---|--- 2025-07-04 13:14:16+00:00| seen| Telegram/QUPw4aQ9lrOk6Ws1u2dXD60DvZ2EPHrKne0i4Xpj56JLoo...

CVE-2025-7061 Intelbras InControl operador csv injection

A vulnerability was found in Intelbras InControl up to 2.21.60.9. It has been declared as problematic. This vulnerability affects unknown code of the file /v1/operador/. The manipulation leads to csv injection. The attack can be initiated remotely. The exploit has been disclosed to the public and...

Linux Distros Unpatched Vulnerability : CVE-2013-7061

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Products/CMFPlone/CatalogTool.py in Plone 3.3 through 4.3.2 allows remote administrators to bypass restrictions and obtain sensitive information via an...

CVE-2024-7061

creationtimestamp| type| source ---|---|--- 2024-08-07 20:19:47+00:00| seen| https://t.me/cvedetector/2719...

CVE-2024-7061

Okta Verify for Windows is vulnerable to privilege escalation through DLL hijacking. The vulnerability is fixed in Okta Verify for Windows version 5.0.2. To remediate this vulnerability, upgrade to 5.0.2 or greater...

CVE-2023-7061

creationtimestamp| type| source ---|---|--- 2024-07-10 04:38:11+00:00| seen| https://t.me/cvedetector/500...

CVE-2023-7061 Advanced File Manager Shortcode <= 2.5.3 - Authenticated (Contributor+) Arbitrary File Upload

The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to arbitrary file uploads in all versions up to, and including, 2.5.3. This makes it possible for authenticated attackers with contributor access or above to upload arbitrary files on the affected site's server which may make...

WordPress File Manager Advanced Shortcode Plugin <= 2.5.3 is vulnerable to Arbitrary File Upload

Software File Manager Advanced Shortcode Type Plugin Vulnerable versions = 2.5.3 Fixed in N/A OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2023-7061 Patch priority Medium CVSS severity Medium 9.9 Developer Claim ownership PSID a8417c3a09b4 Credits Colin Xu Required...

openSUSE 15 Security Update : php7 (openSUSE-SU-2021:1130-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1130-1 advisory. - Tenable.sc leverages third-party software to help provide underlying functionality. Multiple third-party components were found to contain...

openSUSE 15 Security Update : php7 (openSUSE-SU-2021:2575-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:2575-1 advisory. - Tenable.sc leverages third-party software to help provide underlying functionality. Multiple third-party components were found to contain...

CVE-2018-7061

...

CVE-2018-7061

CVE-2018-7061 is rejected/not used and does not represent an active vulnerability entry.

Security Bulletin: IBM API Connect is vulnerable to vulnerabilities in PHP (CVE-2020-7061, CVE-2020-7062, CVE-2020-7063)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-7061 DESCRIPTION: PHP could allow a remote attacker to obtain sensitive information, caused by an error while extracting PHAR files on Windows using phar extension. An attacker could exploit...

GLSA-202003-57 : PHP: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202003-57 PHP: Multiple vulnerabilities Multiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below for details. Impact : An attacker could possibly execute arbitrary shell commands,...

Amazon Linux AMI : php72 (ALAS-2020-1350)

The version of php72 installed on the remote host is prior to 7.2.28-1.21. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1350 advisory. In PHP versions 7.3.x below 7.3.15 and 7.4.x below 7.4.3, while extracting PHAR files on Windows using phar extension,...

Amazon Linux AMI : php73 (ALAS-2020-1351)

The version of php73 installed on the remote host is prior to 7.3.15-1.24. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1351 advisory. In PHP versions 7.3.x below 7.3.15 and 7.4.x below 7.4.3, while extracting PHAR files on Windows using phar extension,...