CVE-2026-0942

creationtimestamp| type| source ---|---|--- 2026-01-16 07:33:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcjlhkueaj2g...

CVE-2022-0942

Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to 2.10.4...

CVE-2020-0942

An elevation of privilege vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations, aka 'Connected User Experiences and Telemetry Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0944, CVE-2020-1029...

CVE-2013-0942

Cross-site scripting XSS vulnerability in EMC RSA Authentication Agent 7.1 before 7.1.1 for Web for Internet Information Services, and 7.1 before 7.1.1 for Web for Apache, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2019-0942

An elevation of privilege vulnerability exists in the Unified Write Filter UWF feature for Windows 10 when it improperly restricts access to the registry, aka 'Unified Write Filter Elevation of Privilege Vulnerability'...

CVE-2025-0942

The DB chooser functionality in Jalios JPlatform 10 SP6 before 10.0.6 improperly neutralizes special elements used in an SQL command allows for unauthenticated users to trigger SQL Injection. This issue affects JPlatform before 10.0.6 and a PatchPlugin release 10.0.6 was issued 2023-02-06...

CVE-2025-0942

creationtimestamp| type| source ---|---|--- 2025-04-07 21:45:58+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10800 2025-04-08 01:26:25+00:00| seen| https://t.me/cvedetector/22356...

CVE-2025-0942 Jalios JPlatform 10 SP6 < 10.0.6 Record Chooser SQL Injection

The DB chooser functionality in Jalios JPlatform 10 SP6 before 10.0.6 improperly neutralizes special elements used in an SQL command allows for unauthenticated users to trigger SQL Injection. This issue affects JPlatform before 10.0.6 and a PatchPlugin release 10.0.6 was issued 2023-02-06...

CVE-2025-0942 Jalios JPlatform 10 SP6 < 10.0.6 Record Chooser SQL Injection

The DB chooser functionality in Jalios JPlatform 10 SP6 before 10.0.6 improperly neutralizes special elements used in an SQL command allows for unauthenticated users to trigger SQL Injection. This issue affects JPlatform before 10.0.6 and a PatchPlugin release 10.0.6 was issued 2023-02-06...

CVE-2025-0942

CVE-2025-0942 affects Jalios JPlatform 10 SP6 before 10.0.6, where the DB chooser functionality improperly neutralizes special elements in SQL commands, enabling unauthenticated users to trigger an SQL injection. Remediation: upgrade to 10.0.6 or apply the PatchPlugin release issued on 2023-02-06...

CVE-2024-0942

creationtimestamp| type| source ---|---|--- 2024-01-26 21:21:36+00:00| seen| https://t.me/ctinow/174486 2024-02-01 23:16:09+00:00| seen| https://t.me/ctinow/177817 2024-02-19 19:01:29+00:00| seen| https://t.me/ctinow/187872...

CVE-2024-0942

Totolink N200RE V5, firmware 9.3.5u.6255_B20211224, contains a vulnerability in /cgi-bin/cstecgi.cgi where an unknown function manipulation can cause session expiration. The issue is exploitable remotely; attack complexity is high, and remote attackers could potentially disclose protected informa...

CVE-2013-0942

creationtimestamp| type| source ---|---|--- 2023-11-13 02:37:52+00:00| seen| https://t.me/arpsyndicate/148 2024-10-15 10:14:15+00:00| seen| Telegram/HfSunJuoYNfbsQCJ20cuXyI7bzH8EMEXzusn30k3vpXeQ...

WordPress Watu Quiz 3.3.9 / GN Publisher 1.5.5 / Japanized For WooComerce 2.5.4 XSS Vulnerability

WordPress plugins Watu Quiz versions 3.3.9 and below, GN Publisher versions 1.5.5 and below, and Japanized For WooCommerce versions 2.5.4 and below suffer from cross site scripting vulnerabilities. Description: Reflected Cross-Site Scripting Affected Plugin: Watu Quiz Plugin Slug: watu Affected...

WordPress Watu Quiz 3.3.9 / GN Publisher 1.5.5 / Japanized For WooComerce 2.5.4 XSS

Description: Reflected Cross-Site Scripting Affected Plugin: Watu Quiz Plugin Slug: watu Affected Versions: = 3.3.9 CVE ID: CVE-2023-0968 CVSS Score: 6.1 Medium CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Researcher/s: Marco Wotschka Fully Patched Version: 3.3.9.1 Description:...

WordPress Japanized For WooCommerce Plugin <= 2.5.4 is vulnerable to Cross Site Scripting (XSS)

Software Japanized For WooCommerce Type Plugin Vulnerable versions = 2.5.4 Fixed in 2.5.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0942 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 8b189e4d7501 Credits Marco Wotsch...

CVE-2023-0942

creationtimestamp| type| source ---|---|--- 2023-02-21 22:16:51+00:00| seen| https://t.me/cibsecurity/58638...

CVE-2023-0942 Japanized For WooCommerce <= 2.5.4 - Reflected Cross-Site Scripting

The Japanized For WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in versions up to, and including, 2.5.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary w...

CVE-2021-0942

creationtimestamp| type| source ---|---|--- 2022-09-14 00:25:45+00:00| published-proof-of-concept| https://t.me/cibsecurity/49723...

CVE-2021-0942

CVE-2021-0942 describes an ioctl-based path where an untrusted app can control the ui32PageIndex in sPA.uiAddr = page_to_phys(psOSPageArrayData-&gt;pagearray[ui32PageIndex]), leading to an out-of-bounds read (and plausibly an OOB write) in the Android kernel. Multiple sources confirm a high-sever...