CVE-2026-8606

creationtimestamp| type| source ---|---|--- 2026-05-27 01:48:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmsfb74agt2i...

WordPress GSheetConnector For Gravity Forms plugin <= 1.3.23 - Cross-Site Request Forgery to Arbitrary Plugin Activation/Deactivation vulnerability

Cross-Site Request Forgery to Arbitrary Plugin Activation/Deactivation vulnerability discovered by wesley wcraft in WordPress Plugin Gravity Forms Google Sheet Connector versions = 1.3.23...

Linux Distros Unpatched Vulnerability : CVE-2024-8606

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bypass of two factor authentication in RestAPI in Checkmk 2.3.0p16 and 2.2.0p34 allows authenticated users to bypass two factor authentication CVE-2024-8606 Not...

MAL-2025-8606 Malicious code in @malware-test-dozer-limas-chout-rouge/test-mlw3-dozer-limas-chout-rouge (npm)

The package @malware-test-dozer-limas-chout-rouge/test-mlw3-dozer-limas-chout-rouge was found to contain malicious code...

CVE-2019-8606

A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Mojave 10.14.5. A local user may be able to load unsigned kernel extensions...

Linux Distros Unpatched Vulnerability : CVE-2016-8606

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The REPL server --listen in GNU Guile 2.0.12 allows an attacker to execute arbitrary code via an HTTP inter-protocol attack. CVE-2016-8606 Note that Nessus reli...

CVE-2024-8606

creationtimestamp| type| source ---|---|--- 2024-09-23 09:37:35+00:00| seen| https://t.me/cvedetector/6176...

CVE-2024-8606

Bypass of two factor authentication in RestAPI in Checkmk 2.3.0p16 and 2.2.0p34 allows authenticated users to bypass two factor authentication...

CVE-2024-8606 Fix 2FA bypass via RestAPI

Bypass of two factor authentication in RestAPI in Checkmk 2.3.0p16 and 2.2.0p34 allows authenticated users to bypass two factor authentication...

CVE-2024-8606 Fix 2FA bypass via RestAPI

Bypass of two factor authentication in RestAPI in Checkmk 2.3.0p16 and 2.2.0p34 allows authenticated users to bypass two factor authentication...

RHEL 7 : guile (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - guile: REPL server vulnerable to HTTP inter-protocol attacks CVE-2016-8606 - The mkdir procedure of GNU...

K31130692: GNU Guile vulnerabilities CVE-2016-8605 and CVE-2016-8606

Security Advisory Description CVE-2016-8605 The mkdir procedure of GNU Guile temporarily changed the process umask to zero. During that time window, in a multithreaded application, other threads could end up creating files with insecure permissions. For example, mkdir without the optional mode...

Trend Micro Web Security Virtual Appliance 6.5 SP2 Patch 4 Build 1901 Remote Code Execution Exploit

Exploit for multiple platform in category web applications This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Trend Micro Web Security Virtual Appliance Remote Code Execution', 'Description' = %q...

CVE-2020-8606

creationtimestamp| type| source ---|---|--- 2020-06-22 11:03:34+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/trendmicrowebsecurityexec.rb 2024-10-29 19:01:25+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1313...

CVE-2020-8606

CVE-2020-8606 affects Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5. The Nessus plugin describes an authentication bypass in the HTTP proxy service that can be exploited remotely, enabling access to internal services. A separate but related issue in the same advisory references...

CVE-2019-8606

CVE-2019-8606 is an IOKit-related vulnerability in macOS Mojave prior to 10.14.5, where a validation issue in handling symlinks could allow a local user to load unsigned kernel extensions. Apple’s security content notes this was addressed with improved symlink validation, with the fix present in ...

macOS 10.x < 10.14.5 Multiple Vulnerabilities (APPLE-SA-2019-05-09)

Binary data 700667.prm...

CVE-2018-8606

A cross site scripting vulnerability exists when Microsoft Dynamics 365 on-premises version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 on-premises version 8 Cross Site Scripting Vulnerability." This affects Microsoft...

Cross site scripting

A cross site scripting vulnerability exists when Microsoft Dynamics 365 on-premises version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 on-premises version 8 Cross Site Scripting Vulnerability." This affects Microsoft...

CVE-2018-8606

A cross site scripting vulnerability exists when Microsoft Dynamics 365 on-premises version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 on-premises version 8 Cross Site Scripting Vulnerability." This affects Microsoft...