CVE-2026-22366

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Jude jude allows PHP Local File Inclusion.This issue affects Jude: from n/a through = 1.3.0...

CVE-2026-22366

creationtimestamp| type| source ---|---|--- 2026-02-21 01:16:16+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfdh6g2xku2s...

CVE-2026-22366 WordPress Jude theme <= 1.3.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Jude jude allows PHP Local File Inclusion.This issue affects Jude: from n/a through = 1.3.0...

CVE-2025-22366

creationtimestamp| type| source ---|---|--- 2025-03-11 14:43:57+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114144328855531757 2025-08-13 13:26:35+00:00| seen| MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868...

CVE-2025-22366

CVE-2025-22366 affects Mennekes Smart/Premium Chargingpoints firmware update capability. The issue is in the authenticated firmware update flow where OS commands are improperly neutralized when certain fields reach the underlying OS, enabling potential command execution. The documented impact (pe...

CVE-2025-22366 Mennekes smart/premium charges systems, Command injection in firmware upgrade

The authenticated firmware update capability of the firmware for Mennekes Smart / Premium Chargingpoints can be abused for command execution because OS command are improperly neutralized when certain fields are passed to the underlying OS...

CVE-2024-22366

creationtimestamp| type| source ---|---|--- 2024-01-24 06:26:36+00:00| seen| https://t.me/ctinow/172537 2024-02-17 16:21:32+00:00| seen| https://t.me/ctinow/186963 2025-06-20 19:43:42+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19055...

CVE-2024-22366

Active debug code exists in Yamaha wireless LAN access point devices. If a logged-in user who knows how to use the debug function accesses the device's management page, this function can be enabled by performing specific operations. As a result, an arbitrary OS command may be executed and/or...

CVE-2024-22366

Active debug code exists in Yamaha wireless LAN access point devices. If a logged-in user who knows how to use the debug function accesses the device's management page, this function can be enabled by performing specific operations. As a result, an arbitrary OS command may be executed and/or...

CVE-2024-22366

The CVE affects Yamaha WLX-series wireless LAN access points (WLX222, WLX413, WLX212, WLX313, WLX202) with firmware versions released up to: WLX222 &lt;24.00.03, WLX413 &lt;22.00.05, WLX212 &lt;21.00.12, WLX313 &lt;18.00.12, WLX202

CVE-2023-22366

creationtimestamp| type| source ---|---|--- 2023-01-17 12:24:46+00:00| seen| https://t.me/cibsecurity/56565 2025-04-03 19:35:42+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10331...

CVE-2023-22366

CX-Motion-MCH v2.32 and earlier contains an access of uninitialized pointer vulnerability. Having a user to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution...

CVE-2023-22366

CX-Motion-MCH (Omron) versions 2.32 and earlier are affected by an uninitialized pointer vulnerability (CWE-824, CVE-2023-22366). The issue may allow information disclosure and arbitrary code execution when a user opens a specially crafted project file. Some sources indicate a fix is available in...

Security Bulletin: IBM Urbancode Deploy (UCD) vulnerable to information disclosure which can be read by a local user. (CVE-2022-22366)

Summary Diagnostic records may contain values used to perform remote creation of ssh agents. Vulnerability Details CVEID: CVE-2022-22366 DESCRIPTION: IBM UrbanCode Deploy UCD stores user credentials in plain clear text which can be read by a local user. CVSS Base score: 4.9 CVSS Temporal Score:...

CVE-2022-22366

CVE-2022-22366 affects IBM UrbanCode Deploy (UCD) versions 6.0.0.0–6.2.7.15 and 7.0.0.0–7.2.2.1, where user credentials are stored in plain clear text readable by a local user. The IBM security bulletin describes this as an information-disclosure vulnerability with a CVSS base score around 4.9. R...

CVE-2021-22366

CVE-2021-22366 affects Huawei ESE620X vESS products (V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300). The issue is an out-of-bounds read in a function that handles an internal message, which could allow an attacker to craft messages between system processes and trigger a Denial of Servic...

Apple macOS Sierra Kernel memory corruption vulnerability (CNVD-2018-22366)

Apple macOS Sierra is a specialized operating system developed by Apple for Mac computers.Kernel is one of the kernel components. A security vulnerability exists in the Kernel component of Apple macOS Sierra version 10.12.6. The vulnerability can be exploited by an attacker to execute arbitrary...