CVE-2021-0327

In getContentProviderImpl of ActivityManagerService.java, there is a possible permission bypass due to non-restored binder identities. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2022-0327

The Master Addons for Elementor WordPress plugin before 1.8.5 does not sanitise and escape the errormessage parameter before outputting it back in the response of the jltmarestrictcontent AJAX action, available to unauthenticated and authenticated users, leading to a Reflected Cross-Site Scriptin...

EUVD-2026-0327

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2020-0327

In core networking, there is a missing permission check. This could lead to local information disclosure of app network usage with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-129151407...

CVE-2010-0327

Cross-site scripting XSS vulnerability in the KJ: Imagelightbox kjimagelightbox2 extension 2.0.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2008-2490...

CVE-1999-0327

SGI syserr program allows local users to corrupt files...

CVE-2025-0327

CWE-269: Improper Privilege Management vulnerability exists for two services of which one managing audit trail data and the other acting as server managing client request that could cause a loss of Confidentiality, Integrity and Availability of engineering workstation when an attacker with standa...

CVE-2025-0327

CWE-269: Improper Privilege Management vulnerability exists for two services of which one managing audit trail data and the other acting as server managing client request that could cause a loss of Confidentiality, Integrity and Availability of engineering workstation when an attacker with standa...

CVE-2025-0327

CVE-2025-0327 corresponds to an improper privilege management vulnerability in Schneider Electric EcoStruxure Process Expert (and EcoStruxure Process Expert for AVEVA System Platform) with two Windows services (one for audit trail data, one server for client requests). The root cause is modificat...

CVE-2025-0327

CWE-269: Improper Privilege Management vulnerability exists for two services of which one managing audit trail data and the other acting as server managing client request that could cause a loss of Confidentiality, Integrity and Availability of engineering workstation when an attacker with standa...

RHEL 8 : tuned (RHSA-2025:0327)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:0327 advisory. The tuned packages provide a service that tunes system settings according to a selected profile. Security Fixes: tuned: improper sanitization of...

Photon OS 4.0: Git PHSA-2023-4.0-0327

An update of the git package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0327. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid20335...

Photon OS 4.0: Mariadb PHSA-2023-4.0-0327

An update of the mariadb package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0327. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

SUSE: Security Advisory (SUSE-SU-2024:0327-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-0327

The CVE-2023-0327 entry concerns saemorris TheRadSystem, specifically an XSS vulnerability in an unknown function of users.php where manipulating the q parameter enables remote exploitation. Affected versions are not specified in the provided documents. Several connected sources corroborate the X...

Mageia: Security Advisory (MGASA-2022-0327)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Jenkins <= 1.501, <= 1.480.2 LTS Multiple Vulnerabilities - Windows

Jenkins is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

com.cloudbees.jenkins.plugins:additional-identities-plugin (=1.1), com.exxeta.jenkins.plugins:sidebar-update-notification (>=1.0.1 <=1.1.0) +60 more potentially affected by CVE-2013-0327 via org.jenkins-ci.main:jenkins-core (>=1.481 <=1.501)

org.jenkins-ci.main:jenkins-core MAVEN version =1.481, =1.0.1, =1.15, =1.1, =1.0, =1.0.3, =0.2.0, =0.1.0, =1.0.0, =1.0.5, =1.481, =1.501 and more Source cves: CVE-2013-0327 Source advisory: OSV:GHSA-RQHG-CXFR-8XQW...

CVE-2022-0327

creationtimestamp| type| source ---|---|--- 2022-03-14 17:23:42+00:00| seen| https://t.me/cibsecurity/38883...

CVE-2022-0327 Master Addons for Elementor < 1.8.2 - Reflected Cross-Site Scripting

The Master Addons for Elementor WordPress plugin before 1.8.5 does not sanitise and escape the errormessage parameter before outputting it back in the response of the jltmarestrictcontent AJAX action, available to unauthenticated and authenticated users, leading to a Reflected Cross-Site Scriptin...