CouchCMS <= 2.0 - Path Disclosure

CouchCMS = 2.0 allows remote attackers to discover the full path via a direct request to includes/mysql2i/mysql2i.func.php or addons/phpmailer/phpmailer.php. id: CVE-2018-7662 info: name: CouchCMS = 2.0 - Path Disclosure author: ritikchaddha severity: medium description: CouchCMS = 2.0 allows...

MINI-2PJ4-7662-QMHQ

Bulletin has no description...

CVE-2020-7662

creationtimestamp| type| source ---|---|--- 2026-04-07 15:02:10+00:00| seen| https://t.me/codebysec/9952...

GHSA-7662-MF46-WR88

creationtimestamp| type| source ---|---|--- 2026-01-07 23:10:30+00:00| published-proof-of-concept| Telegram/0oJDwAhtc18DERwb9VjD5vzlW29jjr74xBieCo4YDk1jmcA...

CVE-2025-7662

The Gestion de tarifs plugin for WordPress is vulnerable to SQL Injection via the 'tarif' and 'intitule' shortcodes in all versions up to, and including, 1.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...

CVE-2025-7662

CVE-2025-7662 affects the WordPress plugin Gestion de tarifs (versions ≤ 1.4). The vulnerability is an SQL Injection via the tarif and intitule shortcodes caused by insufficient escaping and lack of prepared statements. Authenticated users with Contributor+ access can append additional SQL to exi...

WordPress Gestion de tarifs plugin <= 1.4 - Authenticated (Contributor+) SQL Injection vulnerability

Authenticated Contributor+ SQL Injection vulnerability discovered by johska in WordPress Plugin Gestion de tarifs versions = 1.4...

MAL-2025-7662 Malicious code in @crabas0npm2/harum-aperiam-repellendus (npm)

The package @crabas0npm2/harum-aperiam-repellendus was found to contain malicious code...

CVE-2024-7662

A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been declared as problematic. This vulnerability affects the function savepackage of the file admin/packages/managpackage.php. The manipulation leads to cross-site request forgery. The attack can be...

CVE-2024-7662 SourceCodester Car Driving School Management System manag_package.php save_package cross-site request forgery

A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been declared as problematic. This vulnerability affects the function savepackage of the file admin/packages/managpackage.php. The manipulation leads to cross-site request forgery. The attack can be...

CVE-2020-7662

websocket-extensions npm module prior to 0.1.4 allows Denial of Service DoS via Regex Backtracking. The extension parser may take quadratic time when parsing a header containing an unclosed string parameter value whose content is a repeating two-byte sequence of a backslash and some other...

WebAssembly Binaryen Denial Of Service (CVE-2019-7662)

A denial of service vulnerability exists in WebAssembly Binaryen. Successful exploitation of this vulnerability would allow a remote attacker to create a denial of service condition on the affected system...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.6.1 image security update

An update is now available for Red Hat OpenShift Container Platform 4.6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

RHEL 8 : Red Hat OpenShift Service Mesh 1.0 servicemesh-grafana (RHSA-2020:2861)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2861 advisory. Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise...

Important: Red Hat Security Advisory: Red Hat OpenShift Service Mesh servicemesh-grafana security update

An update for servicemesh-grafana is now available for OpenShift Service Mesh 1.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Websocket Extensions Denial of Service (CVE-2020-7662; CVE-2020-7663)

A denial-of-service vulnerability exists in Websocket Extensions. Successful exploitation of this vulnerability could cause a denial-of-service condition...

CVE-2020-7662

websocket-extensions npm module prior to 0.1.4 allows Denial of Service DoS via Regex Backtracking. The extension parser may take quadratic time when parsing a header containing an unclosed string parameter value whose content is a repeating two-byte sequence of a backslash and some other...

AZL-44202 CVE-2020-7662 affecting package js-jquery 3.5.0-4

websocket-extensions npm module prior to 0.1.4 allows Denial of Service DoS via Regex Backtracking. The extension parser may take quadratic time when parsing a header containing an unclosed string parameter value whose content is a repeating two-byte sequence of a backslash and some other...

CVE-2020-7662

CVE-2020-7662 affects the websocket-extensions npm module prior to 0.1.4. The vulnerability arises from the extension parser, which may enter exponential/regex backtracking on a header like Sec-WebSocket-Extensions with an unclosed string containing a repeating two-byte sequence, causing a Denial...

CVE-2020-7662

websocket-extensions npm module prior to 0.1.4 allows Denial of Service DoS via Regex Backtracking. The extension parser may take quadratic time when parsing a header containing an unclosed string parameter value whose content is a repeating two-byte sequence of a backslash and some other...