Lucene search
+L

18 matches found

circl
circl
added 6 days ago7 views

CVE-2026-22660

creationtimestamp| type| source ---|---|--- 2026-07-10 18:48:16+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqcsrjjulo27...

8.6CVSS6.1AI score0.00328EPSS
Exploits0References1
osv
osv
added 6 days ago2 views

CVE-2026-22660 FlaskBB Logic Flaw Authorization Group Deletion via Bulk AJAX Endpoint

FlaskBB through 2.2.0, fixed in commit a5da9a5, contains a logic flaw vulnerability that allows authenticated administrators to delete all built-in authorization groups by exploiting a type mismatch in the bulk delete protection check. The bulk AJAX endpoint in the management views compares...

8.6CVSS6AI score0.00328EPSS
Exploits0References6
redhatcve
redhatcve
added 2025/05/22 11:49 p.m.10 views

CVE-2022-22660

This issue was addressed with a new entitlement. This issue is fixed in macOS Monterey 12.3. An app may be able to spoof system notifications and UI...

5.5CVSS6AI score0.00601EPSS
Exploits0References1
circl
circl
added 2025/04/03 6:35 p.m.7 views

CVE-2020-22660

creationtimestamp| type| source ---|---|--- 2025-04-03 18:35:50+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10316...

7.5CVSS7.3AI score0.00556EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/03/29 3:23 p.m.18 views

CVE-2025-22660

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Wolfgang Include Mastodon Feed include-mastodon-feed allows DOM-Based XSS.This issue affects Include Mastodon Feed: from n/a through = 1.9.9...

6.5CVSS7.2AI score0.00231EPSS
Exploits0References1
cvelist
cvelist
added 2025/03/27 2:26 p.m.20 views

CVE-2025-22660 WordPress Include Mastodon Feed plugin <= 1.9.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Wolfgang Include Mastodon Feed include-mastodon-feed allows DOM-Based XSS.This issue affects Include Mastodon Feed: from n/a through = 1.9.9...

6.5CVSS0.00231EPSS
Exploits0References1
circl
circl
added 2024/01/23 4:26 p.m.6 views

CVE-2024-22660

creationtimestamp| type| source ---|---|--- 2024-01-23 16:26:51+00:00| seen| https://t.me/ctinow/172095 2024-01-30 18:17:00+00:00| seen| https://t.me/ctinow/176137 2024-02-17 10:41:13+00:00| seen| https://t.me/ctinow/186862...

9.8CVSS8.7AI score0.00862EPSS
Exploits1References3
nvd
nvd
added 2024/01/23 3:15 p.m.20 views

CVE-2024-22660

TOTOLINKA3700RV9.1.2u.616520211012has a stack overflow vulnerability via setLanguageCfg...

9.8CVSS9.7AI score0.00862EPSS
Exploits1References1
cve
cve
added 2024/01/23 12:0 a.m.45 views

CVE-2024-22660

The CVE-2024-22660 entry concerns the TOTOLINK A3700R family. A stack overflow vulnerability exists in the setLanguageCfg function, triggered by improper input validation, and affects TOTOLINK A3700R devices (notably version 9.1.2u.6165, build 20211012). The root cause is a buffer/stack overflow ...

9.8CVSS9.5AI score0.00862EPSS
Exploits1References1Affected Software1
nvd
nvd
added 2023/04/05 4:15 p.m.21 views

CVE-2023-22660

A heap-based buffer overflow vulnerability exists in the way Ichitaro version 2022 1.0.1.57600 processes certain LayoutBox stream record types. A specially crafted document can cause a buffer overflow, leading to memory corruption, which can result in arbitrary code execution.To trigger this...

7.8CVSS7.4AI score0.00537EPSS
Exploits1References3
cve
cve
added 2023/04/05 3:18 p.m.40 views

CVE-2023-22660

CVE-2023-22660 affects JustSystems Ichitaro 2022, version 1.0.1.57600, via a heap-based buffer overflow in processing certain LayoutBox stream records (Frame/LayoutBox) in JTD documents. A specially crafted document can trigger memory corruption, potentially enabling arbitrary code execution when...

7.8CVSS7.8AI score0.00537EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2023/04/05 3:18 p.m.21 views

CVE-2023-22660

A heap-based buffer overflow vulnerability exists in the way Ichitaro version 2022 1.0.1.57600 processes certain LayoutBox stream record types. A specially crafted document can cause a buffer overflow, leading to memory corruption, which can result in arbitrary code execution.To trigger this...

7CVSS8.1AI score0.00537EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2023/01/20 12:0 a.m.11 views

CVE-2020-22660

In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gateway 200 SCG200 before 3.6.2.0.795, SmartZone 100 SZ-100 before 3.6.2.0.795, SmartZone 300 SZ300 before 3.6.2.0.795, Virtua...

7.7AI score0.00556EPSS
Exploits0References2
cve
cve
added 2023/01/20 12:0 a.m.45 views

CVE-2020-22660

CVE-2020-22660 affects multiple Ruckus devices (R310/R500/R600/T300/T301n/T301s, SCG200, SZ-100, SZ-300, vSZ, ZoneDirector line) with a flaw that lets attackers force bypass of failed Secure Boot checks and temporarily run a previous backup image. Affected versions include Ruckus platforms listed...

7.5CVSS7.4AI score0.00556EPSS
Exploits0References2Affected Software1
osv
osv
added 2022/03/18 6:15 p.m.3 views

CVE-2022-22660

This issue was addressed with a new entitlement. This issue is fixed in macOS Monterey 12.3. An app may be able to spoof system notifications and UI...

5.5CVSS7.1AI score0.00601EPSS
Exploits0References1
cve
cve
added 2022/03/18 6:0 p.m.175 views

CVE-2022-22660

CVE-2022-22660 affects macOS Monterey, where an app may spoof system notifications and UI due to insufficient entitlement controls. The vulnerability is addressed in macOS Monterey 12.3 with a new entitlement, effectively nullifying the spoofing capability. Affected context: macOS Monterey versio...

5.5CVSS6.1AI score0.00601EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2021/04/27 1:15 p.m.21 views

CVE-2021-22660

CNCSoft-B Versions 1.0.0.3 and prior is vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code...

7.8CVSS0.02025EPSS
Exploits0References4
cve
cve
added 2021/04/27 12:26 p.m.49 views

CVE-2021-22660

CVE-2021-22660 affects CNCSoft-B (Delta Electronics) versions 1.0.0.3 and earlier. Connected documents describe an out-of-bounds read in the DPA/DOPSoft/DPA file parsing that can lead to remote code execution, with exploitation requiring user interaction in some advisories and local access in oth...

7.8CVSS7.8AI score0.02025EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder