CVE-2025-12512

creationtimestamp| type| source ---|---|--- 2025-12-13 07:14:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7u2kaqva722...

WordPress GenerateBlocks plugin <= 2.1.2 - Authenticated (Contributor+) Information Exposure via Metadata vulnerability

Authenticated Contributor+ Information Exposure via Metadata vulnerability discovered by Athiwat Tiprasaharn Jitlada in WordPress Plugin GenerateBlocks versions = 2.1.2...

CVE-2024-12512

The Ask Me Anything Anonymously plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'askmeanythingpeople' shortcode in all versions up to, and including, 1.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possib...

CVE-2024-12512 Ask Me Anything (Anonymously) <= 1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Ask Me Anything Anonymously plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'askmeanythingpeople' shortcode in all versions up to, and including, 1.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possib...

CVE-2020-12512

creationtimestamp| type| source ---|---|--- 2021-01-22 22:29:30+00:00| seen| https://t.me/cibsecurity/22538...

CVE-2020-12512 Pepper+Fuchs Comtrol IO-Link Master Cross-Site Scripting

Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated reflected POST Cross-Site Scripting...

CVE-2020-12512

CVE-2020-12512 affects Pepperl+Fuchs Comtrol IO-Link Master (System 1.36 / Application 1.5.x) up to 1.5.28/1.5.48 (and below). The issue is an authenticated reflected POST Cross‑Site Scripting vulnerability in the device/web interface. Vulnerable component: IO-Link Master firmware/applications; r...

CVE-2019-12512

Affected product: NETGEAR Nighthawk X10-R900 router with firmware prior to 1.0.4.24. Vulnerability: stored XSS via a malicious X-Forwarded-For header during an incorrect login attempt. The crafted header value is written into administrative logs (Advanced settings → Administration → Logs) and can...

CVE-2019-12512 Stored XSS via X-Forwarded-For Header During Incorrect Login

In NETGEAR Nighthawk X10-R900 prior to 1.0.4.24, an attacker may execute stored XSS attacks against this device by supplying a malicious X-Forwarded-For header while performing an incorrect login attempt. The value supplied by this header will be inserted into administrative logs, found at Advanc...

CVE-2017-12512

A Remote Code Execution vulnerability in HPE Intelligent Management Center iMC PLAT version PLAT 7.3 E0504 was found. The problem was resolved in HPE Intelligent Management Center PLAT v7.3 E0506 or any subsequent version...

CVE-2017-12512

CVE-2017-12512 is a remote code execution vulnerability in Hewlett Packard Enterprise iMC PLAT version 7.3 (E0504) that could be exploited remotely over the network with low attack complexity and no user interaction. The issue is fixed in PLAT 7.3 (E0506) or later. CVSSv3 indicates a high impact ...