CVE-2025-22680

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NotFound Ad Inserter Pro allows Reflected XSS. This issue affects Ad Inserter Pro: from n/a through 2.7.39...

CVE-2025-22680

creationtimestamp| type| source ---|---|--- 2025-02-16 22:44:16+00:00| seen| https://infosec.exchange/users/cve/statuses/114015984159192636 2025-02-16 23:16:02+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lidefpyto327 2025-02-17 00:40:32+00:00| seen|...

CVE-2025-22680 WordPress Ad Inserter Pro plugin <= 2.7.39 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NotFound Ad Inserter Pro allows Reflected XSS. This issue affects Ad Inserter Pro: from n/a through 2.7.39...

CVE-2025-22680

CVE-2025-22680 corresponds to a Reflected Cross-Site Scripting (XSS) vulnerability in WordPress plugin Ad Inserter Pro, affecting versions up to and including 2.7.39. The CVE entry notes an improper neutralization of input during web page generation, enabling reflected XSS. The core details in co...

CVE-2025-22680 WordPress Ad Inserter Pro plugin <= 2.7.39 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NotFound Ad Inserter Pro allows Reflected XSS. This issue affects Ad Inserter Pro: from n/a through 2.7.39...

Synology DiskStation Manager Exposure of Sensitive Information to an Unauthorized Actor (CVE-2022-22680)

Exposure of sensitive information to an unauthorized actor vulnerability in Web Server in Synology DiskStation Manager DSM before 7.0.1-42218-2 allows remote attackers to obtain sensitive information via unspecified vectors. This plugin only works with Tenable.ot. Please visit...

CVE-2023-22680

creationtimestamp| type| source ---|---|--- 2023-03-20 15:34:20+00:00| seen| https://t.me/cibsecurity/60315...

CVE-2023-22680

CVE-2023-22680 affects the WordPress plugin No API Amazon Affiliate (Altanic No API Amazon Affiliate) 4.2.2 (4.4.0) with low severity. No public exploit details are provided in the connected documents. Remediation: upgrade to a version greater than 4.2.2 (e.g., 4.4.0+). If upgrading is not feasib...

CVE-2023-22680 WordPress No API Amazon Affiliate Plugin <= 4.2.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Altanic No API Amazon Affiliate plugin = 4.2.2 versions...

WordPress No API Amazon Affiliate Plugin <= 4.2.2 is vulnerable to Cross Site Scripting (XSS)

Software No API Amazon Affiliate Type Plugin Vulnerable versions = 4.2.2 Fixed in 4.4.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-22680 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 55e97aadf439 Credits Mika Required...

Synology DiskStation Manager (DSM) 6.2.x < 6.2.4-25556-3, 7.x < 7.0.1-42218-2 Multiple Vulnerabilities (Synology-SA-22:01) - Remote Known Vulnerable Versions Check

Synology DiskStation Manager DSM is prone to a OS command injection vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2021-22680

CVE-2021-22680 affects NXP MQX versions 5.1 and earlier, with an integer overflow in mem_alloc, _lwmem_alloc and _partition. The unverified memory assignment can cause arbitrary memory allocation, leading to crashes or remote code injection/execution. Public advisories confirm this vulnerability ...

CVE-2022-22680

The CVE-2022-22680 issue affects Synology DiskStation Manager (DSM) Web Server prior to version 7.0.1-42218-2, causing exposure of sensitive information to unauthorized actors via unspecified vectors. The vulnerability is classified with CVSS scores up to 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N ...

CVE-2022-22680

Exposure of sensitive information to an unauthorized actor vulnerability in Web Server in Synology DiskStation Manager DSM before 7.0.1-42218-2 allows remote attackers to obtain sensitive information via unspecified vectors...