16 matches found
CVE-2026-22750
When configuring SSL bundles in Spring Cloud Gateway by using the configuration property spring.ssl.bundle, the configuration was silently ignored and the default SSL configuration was used instead. Note: The 4.2.x branch is no longer under open source support. If you are using Spring Cloud...
CVE-2022-22750
By generally accepting and passing resource handles across processes, a compromised content process might have confused higher privileged processes to interact with handles that the unprivileged process should not have access to. This bug only affects Firefox for Windows and MacOS. Other operatin...
CVE-2025-22750
creationtimestamp| type| source ---|---|--- 2025-01-15 16:16:49+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfs62ml7qo2r 2025-01-15 16:40:02+00:00| seen| https://infosec.exchange/users/cve/statuses/113833358255521059...
CVE-2025-22750
CVE-2025-22750 is a reported cross-site scripting vulnerability (Reflected XSS) in the WordPress plugin Post Carousel & Slider (post-types-carousel-slider). The description states an improper neutralization of user input during web page generation, enabling reflected XSS, and affects versions fro...
CVE-2025-22750 WordPress Post Carousel & Slider plugin <= 1.0.4 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Patel Post Carousel & Slider post-types-carousel-slider allows Reflected XSS.This issue affects Post Carousel & Slider: from n/a through = 1.0.4...
CVE-2025-22750 WordPress Post Carousel & Slider plugin <= 1.0.4 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Patel Post Carousel & Slider post-types-carousel-slider allows Reflected XSS.This issue affects Post Carousel & Slider: from n/a through = 1.0.4...
CVE-2023-22750
creationtimestamp| type| source ---|---|--- 2023-03-02 10:44:57+00:00| seen| https://www.cert.at/de/warnungen/2023/3/kritische-sicherheitslucken-in-arubaos-updates-teilweise-verfugbar 2023-03-02 16:20:07+00:00| seen| https://t.me/truesecator/4124 2025-03-08 04:35:53+00:00| seen|...
CVE-2023-22750
CVE-2023-22750 maps to multiple unauthenticated command-injection flaws in Aruba Networks ArubaOS via the PAPI protocol (UDP port 8211). Public descriptions consistently state unauthenticated remote code execution with arbitrary code execution as a privileged OS user when malicious packets are se...
CVE-2023-22750 Multiple Unauthenticated Command Injections in the PAPI Protocol
There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities result in the...
CVE-2023-22750 Multiple Unauthenticated Command Injections in the PAPI Protocol
There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba Networks access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities result in the...
CVE-2022-22750
By generally accepting and passing resource handles across processes, a compromised content process might have confused higher privileged processes to interact with handles that the unprivileged process should not have access to.This bug only affects Firefox for Windows and MacOS. Other operating...
CVE-2022-22750
By generally accepting and passing resource handles across processes, a compromised content process might have confused higher privileged processes to interact with handles that the unprivileged process should not have access to.This bug only affects Firefox for Windows and MacOS. Other operating...
CVE-2022-22750
CVE-2022-22750 affects Mozilla Firefox on Windows and macOS (Firefox
CVE-2021-22750
The CVE-2021-22750 issue affects Schneider Electric IGSS Definition (Def.exe) versions up to 15.0.0.21041 (and earlier) with an out-of-bounds write when importing a malicious CGF file, caused by missing length checks. The vulnerability can lead to data loss or remote code execution on affected sy...
SQL Injection Vulnerability in Jinwei Supermarket Cashier System (CNVD-2020-22750)
Jinwei Supermarket Cashiering System is a code-sweeping cashiering tool designed for small and medium-sized supermarkets and community convenience stores. SQL injection vulnerability exists in Jinwei Supermarket Cashier System, which can be exploited by attackers to obtain sensitive information...
nain.locopoc.com XSS vulnerability
Vulnerable URL: http://nain.locopoc.com/q-0x524D-'-alertOPENBUGBOUNTY-' Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 22750 VIP website status:| Yes Check nain.locopoc.com SSL...