CVE-2026-8264

creationtimestamp| type| source ---|---|--- 2026-05-11 06:41:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlko6swk4l2c...

Linux Distros Unpatched Vulnerability : CVE-2025-8264

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Versions of the package z-push/z-push-dev before 2.7.6 are vulnerable to SQL Injection due to unparameterized queries in the IMAP backend. An attacker can inje...

MAL-2025-8264 Malicious code in @landmineaknpm2/impedit-nulla-accusamus (npm)

The package @landmineaknpm2/impedit-nulla-accusamus was found to contain malicious code...

CVE-2025-8264

Versions of the package z-push/z-push-dev before 2.7.6 are vulnerable to SQL Injection due to unparameterized queries in the IMAP backend. An attacker can inject malicious commands by manipulating the username field in basic authentication. This allows the attacker to access and potentially modif...

CVE-2025-8264

Versions of the package z-push/z-push-dev before 2.7.6 are vulnerable to SQL Injection due to unparameterized queries in the IMAP backend. An attacker can inject malicious commands by manipulating the username field in basic authentication. This allows the attacker to access and potentially modif...

CVE-2025-8264

CVE-2025-8264 affects z-push/z-push-dev prior to version 2.7.6 due to unparameterized queries in the IMAP backend, enabling SQL Injection via the username field in basic authentication. Impact stated as attacker could access and potentially modify or delete data in a linked third-party database. ...

CVE-2025-8264

Versions of the package z-push/z-push-dev before 2.7.6 are vulnerable to SQL Injection due to unparameterized queries in the IMAP backend. An attacker can inject malicious commands by manipulating the username field in basic authentication. This allows the attacker to access and potentially modif...

CVE-2024-8264

creationtimestamp| type| source ---|---|--- 2024-10-10 01:41:42+00:00| seen| https://t.me/cvedetector/7536...

CVE-2024-8264

Fortra's Robot Schedule Enterprise Agent prior to version 3.05 writes FTP username and password information to the agent log file when detailed logging is enabled...

CVE-2024-8264 Sensitive information in agent log file when detailed logging is enabled with Robot Schedule Enterprise prior to version 3.05

Fortra's Robot Schedule Enterprise Agent prior to version 3.05 writes FTP username and password information to the agent log file when detailed logging is enabled...

CVE-2024-8264 Sensitive information in agent log file when detailed logging is enabled with Robot Schedule Enterprise prior to version 3.05

Fortra's Robot Schedule Enterprise Agent prior to version 3.05 writes FTP username and password information to the agent log file when detailed logging is enabled...

CVE-2024-8264

CVE-2024-8264 affects Fortra’s Robot Schedule Enterprise Agent prior to version 3.05. When detailed logging is enabled, the agent logs FTP usernames and passwords, exposing credentials. The threat is described across multiple sources in the connected documents, which confirm the vulnerability is ...

CVE-2020-8264

creationtimestamp| type| source ---|---|--- 2021-01-07 00:39:37+00:00| seen| https://t.me/cibsecurity/21718...

CVE-2020-8264

In actionpack gem = 6.0.0, a possible XSS vulnerability exists when an application is running in development mode allowing an attacker to send or embed in another page a specially crafted URL which can allow the attacker to execute JavaScript in the context of the local application. This...

CVE-2020-8264

The connected OSV advisories indicate fixes for actionpack-related issues in the ruby2.7-rubygem-actionpack-6.0-6.0.4-1.2 package (GA OpenSUSE Tumbleweed). For CVE-2020-8264, the vulnerability is described as a development-mode XSS in the Actionable Exceptions middleware of actionpack >= 6.0. ...

FreeBSD : Rails -- Possible XSS vulnerability (95f306a6-0aee-11eb-add4-08002728f74c)

Ruby on Rails blog : Rails version 6.0.3.4 has been released! This version is a security release and addresses one possible XSS attack vector in Actionable Exceptions. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML...

Possible XSS Vulnerability in Action Pack in Development Mode

There is a possible XSS vulnerability in Action Pack while the application server is in development mode. This vulnerability is in the Actionable Exceptions middleware. This vulnerability has been assigned the CVE identifier CVE-2020-8264. Versions Affected: = 6.0.0 Not affected: 6.0.0 Fixed...

CVE-2019-8264

UltraVNC vulnerability CVE-2019-8264 is a memory-safe/out-of-bounds access issue in the VNC client of the Ultra2 decoder (revision 1203). It could allow remote code execution over the network and has a fix in revision 1204. Affected product: UltraVNC, Ultra2 decoder; the issue is tied to out-of-b...

CVE-2017-8264

CVE-2017-8264 affects the camera driver in all Qualcomm products with Android CAF builds on the Linux kernel. The issue results from a userspace process that can cause a Denial of Service in the Qualcomm camera driver. The available documents do not specify the exact vulnerable component version,...

CVE-2016-8264

...