CVE-2021-22306

There is an out-of-bound read vulnerability in Mate 30 10.0.0.182C00E180R6P2. A module does not verify the some input when dealing with messages. Attackers can exploit this vulnerability by sending malicious input through specific module. This could cause out-of-bound, compromising normal service...

CVE-2025-22306

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in Spencer Haws Link Whisper Free link-whisper.This issue affects Link Whisper Free: from n/a through = 0.7.7...

CVE-2023-22306

An OS command injection vulnerability exists in the libzebra.so bridgegroup functionality of Milesight UR32L v32.3.0.5. A specially crafted network packet can lead to command execution. An attacker can send a sequence of requests to trigger this vulnerability...

CVE-2022-22306

An improper certificate validation vulnerability CWE-295 in FortiOS 6.0.0 through 6.0.14, 6.2.0 through 6.2.10, 6.4.0 through 6.4.8, 7.0.0 may allow a network adjacent and unauthenticated attacker to man-in-the-middle the communication between the FortiGate and some peers such as private SDNs and...

CVE-2025-22306

creationtimestamp| type| source ---|---|--- 2025-01-07 17:16:24+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf65nsgal32c 2025-01-07 18:53:59+00:00| seen| https://t.me/cvedetector/14575...

CVE-2025-22306

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in Spencer Haws Link Whisper Free link-whisper.This issue affects Link Whisper Free: from n/a through = 0.7.7...

CVE-2025-22306 WordPress Link Whisper Free plugin <= 0.7.7 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in Spencer Haws Link Whisper Free link-whisper.This issue affects Link Whisper Free: from n/a through = 0.7.7...

CVE-2025-22306

CVE-2025-22306 affects Link Whisper Free; reported as an unauthenticated exposure of sensitive information in versions up to 0.7.7. Connected sources indicate the issue is mitigated by the patch release to 0.7.8. Technical details about the exact data exposed or vectors are not provided beyond th...

Fortinet Fortigate Lack of certificate verification when establishing secure connections to external end-points (FG-IR-21-239)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-239 advisory. - An improper certificate validation vulnerability CWE-295 in FortiOS 6.0.0 through 6.0.14, 6.2.0 through 6.2.10, 6.4.0 throu...

CVE-2024-22306

creationtimestamp| type| source ---|---|--- 2024-01-31 18:22:17+00:00| seen| https://t.me/ctinow/176959 2024-02-22 17:17:44+00:00| seen| https://t.me/ctinow/190949 2025-05-15 16:35:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16536...

CVE-2024-22306

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Hometory Mang Board WP allows Stored XSS.This issue affects Mang Board WP: from n/a through 1.7.7...

CVE-2024-22306 WordPress Mang Board WP Plugin <= 1.7.7 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Hometory Mang Board WP allows Stored XSS.This issue affects Mang Board WP: from n/a through 1.7.7...

CVE-2024-22306

CVE-2024-22306 affects the WordPress plugin Mang Board WP (Mang Board WP) up to version 1.7.7. The issue is an Stored XSS caused by improper neutralization of input during web page generation. The root cause is the same across sources: input is not properly sanitized before rendering, enabling ma...

WordPress Mang Board WP Plugin <= 1.7.7 is vulnerable to Cross Site Scripting (XSS)

Software Mang Board WP Type Plugin Vulnerable versions = 1.7.7 Fixed in 1.7.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-22306 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d6c87894bd8b Credits Byeongjun Jo Required privilege...

CVE-2023-22306

creationtimestamp| type| source ---|---|--- 2023-07-06 18:20:48+00:00| seen| https://t.me/cibsecurity/66102...

CVE-2023-22306

An OS command injection vulnerability exists in the libzebra.so bridgegroup functionality of Milesight UR32L v32.3.0.5. A specially crafted network packet can lead to command execution. An attacker can send a sequence of requests to trigger this vulnerability...

CVE-2023-22306

An OS command injection vulnerability exists in the libzebra.so bridgegroup functionality of Milesight UR32L v32.3.0.5. A specially crafted network packet can lead to command execution. An attacker can send a sequence of requests to trigger this vulnerability...

CVE-2023-22306

Milesight UR32L (v32.3.0.5) has an OS command injection in the libzebra.so bridge_group function. The code constructs an ifconfig command using the provided interface name and passes it to system(), enabling arbitrary command execution. The vulnerability is triggered via the bridge-group command ...

Milesight UR32L libzebra.so bridge_group OS command injection vulnerability

Talos Vulnerability Report TALOS-2023-1698 Milesight UR32L libzebra.so bridgegroup OS command injection vulnerability July 6, 2023 CVE Number CVE-2023-22306 SUMMARY An OS command injection vulnerability exists in the libzebra.so bridgegroup functionality of Milesight UR32L v32.3.0.5. A specially...

CVE-2022-22306

creationtimestamp| type| source ---|---|--- 2022-05-24 18:37:07+00:00| seen| https://t.me/cibsecurity/43260...