Azure Linux 3.0 Security Update: kata-containers (CVE-2022-23523)

The version of kata-containers installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-23523 advisory. - In versions prior to 0.8.1, the linux-loader crate uses the offsets and sizes provided in the ELF...

CVE-2026-23523

creationtimestamp| type| source ---|---|--- 2026-01-16 17:18:08+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mckm5a2bbi22...

CVE-2022-23523

In versions prior to 0.8.1, the linux-loader crate uses the offsets and sizes provided in the ELF headers to determine the offsets to read from. If those offsets point beyond the end of the file this could lead to Virtual Machine Monitors using the linux-loader crate entering an infinite loop if...

EUVD-2021-23523

Malware in sbrugna...

EUVD-2024-23523

Malicious code in bioql PyPI...

CVE-2024-23523

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Elementor Pro.This issue affects Elementor Pro: from n/a through 3.19.2...

CVE-2025-23523

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in hoststreamsell HSS Embed Streaming Video hss-embed-streaming-video allows Reflected XSS.This issue affects HSS Embed Streaming Video: from n/a through = 3.23...

CVE-2025-23523 WordPress HSS Embed Streaming Video plugin <= 3.23 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in hoststreamsell HSS Embed Streaming Video allows Reflected XSS. This issue affects HSS Embed Streaming Video: from n/a through 3.23...

CVE-2025-23523

CVE-2025-23523 affects the WordPress plugin HSS Embed Streaming Video (hoststreamsell) up to version 3.23, enabling a Reflected XSS vulnerability during web page generation. The connected sources confirm the issue as Reflected XSS without detailing exploit steps. Remediation guidance present in t...

CVE-2025-23523 WordPress HSS Embed Streaming Video plugin <= 3.23 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in hoststreamsell HSS Embed Streaming Video hss-embed-streaming-video allows Reflected XSS.This issue affects HSS Embed Streaming Video: from n/a through = 3.23...

CVE-2022-23523 affecting package kata-containers for versions less than 3.2.0.azl2-3

CVE-2022-23523 affecting package kata-containers for versions less than 3.2.0.azl2-3. An upgraded version of the package is available that resolves this issue...

CVE-2024-23523

creationtimestamp| type| source ---|---|--- 2024-03-16 06:26:17+00:00| seen| https://t.me/ctinow/209353 2024-03-16 06:26:23+00:00| seen| https://t.me/ctinow/209357...

CVE-2024-23523

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Elementor Pro.This issue affects Elementor Pro: from n/a through 3.19.2...

CVE-2024-23523

CVE-2024-23523 is an Information Disclosure vulnerability affecting Elementor Pro up to version 3.19.2, enabling exposure of sensitive user data to unauthorized actors. Public records and PT- security notes indicate exploits require authenticated access and that vulnerability impact centers on in...

WordPress Elementor Pro Plugin <= 3.19.2 is vulnerable to Sensitive Data Exposure

Software Elementor Pro Type Plugin Vulnerable versions = 3.19.2 Fixed in 3.19.3 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-23523 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID b4d0340c1078 Credits Dynamic.ooo Team Required...

CVE-2023-23523

creationtimestamp| type| source ---|---|--- 2023-05-09 00:38:21+00:00| seen| https://t.me/cibsecurity/63478...

CVE-2023-23523

CVE-2023-23523 affects Apple devices where Photos in the Hidden Photos Album could be viewed without authentication via Visual Lookup due to a logic issue. The issue is fixed in macOS Ventura 13.3 and in iOS/iPadOS 16.4. The NVD entry notes a local attack vector with user interaction required, an...

CVE-2022-23523

creationtimestamp| type| source ---|---|--- 2022-12-13 12:32:30+00:00| seen| https://t.me/cibsecurity/54383 2025-04-18 18:58:45+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12524...

CVE-2022-23523 rust-vmm linux-loader vulnerable to Out-of-bounds Read

In versions prior to 0.8.1, the linux-loader crate uses the offsets and sizes provided in the ELF headers to determine the offsets to read from. If those offsets point beyond the end of the file this could lead to Virtual Machine Monitors using the linux-loader crate entering an infinite loop if...

CVE-2022-23523 rust-vmm linux-loader vulnerable to Out-of-bounds Read

In versions prior to 0.8.1, the linux-loader crate uses the offsets and sizes provided in the ELF headers to determine the offsets to read from. If those offsets point beyond the end of the file this could lead to Virtual Machine Monitors using the linux-loader crate entering an infinite loop if...