CVE-2026-22661

creationtimestamp| type| source ---|---|--- 2026-04-03 23:11:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mimtrsvyy52s 2026-04-03 23:20:47+00:00| seen| Telegram/AcNtumNwDk55YBKt0PcSVxzETqOULILyzC0BNrIIoAU4I 2026-04-04 05:14:35+00:00| seen|...

CVE-2026-22661

prompts.chat prior to commit 0f8d4c3 contains a path traversal vulnerability in skill file handling that allows attackers to write arbitrary files to the client system by crafting malicious ZIP archives with unsanitized filenames containing path traversal sequences. Attackers can exploit missing...

CVE-2021-22661

Changing the password on the module webpage does not require the user to type in the current password first. Thus, the password could be changed by a user or external process without knowledge of the current password on the ICX35-HWC-A and ICX35-HWC-E Versions 1.9.62 and prior...

RHSA-2025:22661 Red Hat Security Advisory: kernel security update

Bulletin has no description...

CVE-2025-22661

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in vcita Online Payments – Get Paid with PayPal, Square & Stripe paypal-payment-button-by-vcita allows Stored XSS.This issue affects Online Payments – Get Paid with PayPal, Square & Stripe: from n/a...

CVE-2022-22661

A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.6.5, macOS Monterey 12.3, Security Update 2022-003 Catalina. An application may be able to execute arbitrary code with kernel privileges...

CVE-2020-22661

In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gateway 200 SCG200 before 3.6.2.0.795, SmartZone 100 SZ-100 before 3.6.2.0.795, SmartZone 300 SZ300 before 3.6.2.0.795, Virtua...

CVE-2025-22661

creationtimestamp| type| source ---|---|--- 2025-01-21 17:29:40+00:00| seen| https://infosec.exchange/users/cve/statuses/113867527292418123 2025-01-21 18:16:02+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgbhjdlsp22n 2025-01-21 19:02:03+00:00| seen|...

CVE-2025-22661 WordPress Online Payments plugin <= 3.20.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in vcita Online Payments – Get Paid with PayPal, Square & Stripe paypal-payment-button-by-vcita allows Stored XSS.This issue affects Online Payments – Get Paid with PayPal, Square & Stripe: from n/a...

CVE-2025-22661 WordPress Online Payments plugin <= 3.20.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in vcita.com Online Payments – Get Paid with PayPal, Square & Stripe allows Stored XSS. This issue affects Online Payments – Get Paid with PayPal, Square & Stripe: from n/a through 3.20.0...

CVE-2025-22661

CVE-2025-22661 corresponds to an stored cross-site scripting (XSS) flaw in the WordPress plugin “Online Payments – Get Paid with PayPal, Square & Stripe” by vcita. The vulnerability is described as Stored XSS arising during web page generation, affecting versions from n/a up to and including 3.20...

CVE-2023-22661

CVE-2023-22661 affects Intel® Server Board BMC firmware prior to 2.90. Root cause: a buffer overflow in the BMC firmware that can allow a local, privileged user to escalate privileges. Impact: high—privilege escalation with potential confidentiality, integrity, and availability implications. Reme...

CVE-2023-22661

Buffer overflow in some IntelR Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access...

CVE-2020-22661

CVE-2020-22661 affects Ruckus and related products (R310/R500/R600/T300/T301n/T301s, SCG200, SZ-100/SZ-300/vSZ, ZoneDirector 1100/1200/3000/5000) with firmware versions around 10.5.1.0.199 and 3.6.2.0.795. The vulnerability allows attackers to erase the backup secondary official image and write a...

CVE-2020-22661

In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gateway 200 SCG200 before 3.6.2.0.795, SmartZone 100 SZ-100 before 3.6.2.0.795, SmartZone 300 SZ300 before 3.6.2.0.795, Virtua...

CVE-2022-22661

CVE-2022-22661 is a macOS kernel type-confusion bug in improved state handling. It affects macOS Big Sur 11.6.5, macOS Monterey 12.3, and Catalina Security Update 2022-003. Successful exploitation could allow arbitrary code execution with kernel privileges. The provided documents do not include e...

Apple Mac OS X Security Update (HT213185)

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-22661

creationtimestamp| type| source ---|---|--- 2021-02-26 18:39:03+00:00| seen| https://t.me/cibsecurity/24224...

CVE-2021-22661

Changing the password on the module webpage does not require the user to type in the current password first. Thus, the password could be changed by a user or external process without knowledge of the current password on the ICX35-HWC-A and ICX35-HWC-E Versions 1.9.62 and prior...

CVE-2021-22661

ProSoft Technology ICX35-HWC-A and ICX35-HWC-E (Versions 1.9.62 and earlier) are affected by CVE-2021-22661. The issue stems from permissions/privileges and access controls in the module web interface: changing the password on the module webpage does not require the current password, allowing a p...