CVE-2026-8604

creationtimestamp| type| source ---|---|--- 2026-05-19 05:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-139-03 2026-05-19 20:52:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmabhezf7b2i...

CVE-2025-8604

creationtimestamp| type| source ---|---|--- 2025-08-15 08:05:30+00:00| seen| Telegram/MCOSGf77NXIsUBQB4nJn0LQbNMTTERHtwCHK2LatfLedZKg...

CVE-2025-8604 WP Table Builder – WordPress Table Plugin <= 2.0.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The WP Table Builder – WordPress Table Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wptb shortcode in all versions up to, and including, 2.0.12 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possib...

MAL-2025-8604 Malicious code in @malware-test-dowie-sturt-mynas-mimer/test-mlw3-dowie-sturt-mynas-mimer (npm)

The package @malware-test-dowie-sturt-mynas-mimer/test-mlw3-dowie-sturt-mynas-mimer was found to contain malicious code...

CVE-2024-8604

creationtimestamp| type| source ---|---|--- 2024-10-05 02:00:32+00:00| seen| https://t.me/cvedetector/5111...

CVE-2024-8604 SourceCodester Online Food Ordering System Create an Account Page index.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Online Food Ordering System 2.0. This affects an unknown part of the file index.php of the component Create an Account Page. The manipulation of the argument First Name/Last Name leads to cross site scripting. It is possib...

Trend Micro Web Security Virtual Appliance 6.5 SP2 Patch 4 Build 1901 Remote Code Execution Exploit

Exploit for multiple platform in category web applications This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Trend Micro Web Security Virtual Appliance Remote Code Execution', 'Description' = %q...

CVE-2020-8604

creationtimestamp| type| source ---|---|--- 2020-06-22 11:03:34+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/trendmicrowebsecurityexec.rb 2024-10-29 19:01:25+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1313...

CVE-2020-8604

CVE-2020-8604 affects Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5. The connected Nessus entry attributes a path traversal vulnerability in the Apache Solr component (before parsing the file parameter) that, when combined with CVE-2020-8606, can allow an unauthenticated remote...

CVE-2019-8604

CVE-2019-8604 is a memory corruption vulnerability in macOS that could allow an application to execute arbitrary code with system privileges. The issue is fixed in macOS Mojave 10.14.5; users on earlier builds are affected. The vulnerability is local in scope and is addressed by Apple’s Mojave 10...

macOS 10.x < 10.14.5 Multiple Vulnerabilities (APPLE-SA-2019-05-09)

Binary data 700667.prm...

CVE-2018-8604

A tampering vulnerability exists when Microsoft Exchange Server fails to properly handle profile data, aka "Microsoft Exchange Server Tampering Vulnerability." This affects Microsoft Exchange Server...

CVE-2018-8604

A tampering vulnerability exists when Microsoft Exchange Server fails to properly handle profile data, aka "Microsoft Exchange Server Tampering Vulnerability." This affects Microsoft Exchange Server...

CVE-2018-8604

CVE-2018-8604 is a Microsoft Exchange Server vulnerability rooted in improper handling of profile data, causing a tampering vulnerability. An attacker who is authenticated on an affected Exchange Server can send a specially crafted request to modify a targeted user’s profile data. The impact is l...

Microsoft Exchange Server CVE-2018-8604 Tampering Security Bypass Vulnerability

Description Microsoft Exchange Server is prone to a security bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Technologies Affected Microsoft Exchange Server 2016 Cumulative Update 10 Microsoft Exchange Server 2016...

KLA11387 Tampering Vulnerability in Microsoft Exchange Server

A tampering vulnerability was found in Microsoft Exchange Server. Malicious users can exploit this vulnerability via specially designed request to spoof user interface. Original advisories CVE-2018-8604 Related products Microsoft-Exchange-Server CVE list CVE-2018-8604 warning KB list 4468741...

Memory corruption

Microsoft Edge in Microsoft Windows 10 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to render when handling objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption...

Memory corruption

Microsoft Internet Explorer in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to render when handling objects in memory in Microsoft Internet Explorer, aka...

Memory corruption

Microsoft browsers in Microsoft Windows 7, Windows Server 2008 and R2, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript...

CVE-2017-8604

CVE-2017-8604 is a Microsoft Edge scripting engine remote memory corruption vulnerability affecting Windows 10 (versions 1511, 1607, 1703) and Windows Server 2016. The issue arises when the JavaScript engine fails to render or handles memory objects, enabling an attacker to execute arbitrary code...