CVE-2020-23621

The Java Remote Management Interface of all versions of SVI MS Management System was discovered to contain a vulnerability due to insecure deserialization of user-supplied content, which can allow attackers to execute arbitrary code via a crafted serialized Java object...

CVE-2025-23621

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in algothemes Causes – Donation Plugin causes allows Reflected XSS.This issue affects Causes – Donation Plugin: from n/a through = 1.0.01...

CVE-2025-23621

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in algothemes Causes – Donation Plugin causes allows Reflected XSS.This issue affects Causes – Donation Plugin: from n/a through = 1.0.01...

CVE-2025-23621

creationtimestamp| type| source ---|---|--- 2025-01-24 11:10:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113883023897202865 2025-01-24 12:43:56+00:00| seen| https://t.me/cvedetector/16265...

CVE-2025-23621

CVE-2025-23621 is a Reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Causes – Donation Plugin (Causes) limited to versions 1.0.01 and earlier. The issue stems from improper input neutralization during web page generation, enabling attacker-supplied input to be reflected ...

CVE-2025-23621 WordPress Causes – Donation plugin <= 1.0.01 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NotFound Causes – Donation Plugin allows Reflected XSS. This issue affects Causes – Donation Plugin: from n/a through 1.0.01...

CVE-2024-23621

creationtimestamp| type| source ---|---|--- 2024-01-26 01:31:33+00:00| seen| https://t.me/ctinow/173917 2024-02-18 20:46:51+00:00| seen| https://t.me/ctinow/187363...

CVE-2024-23621 IBM Merge Healthcare eFilm Workstation License Server Buffer Overflow

A buffer overflow exists in IBM Merge Healthcare eFilm Workstation license server. A remote, unauthenticated attacker can exploit this vulnerability to achieve remote code execution...

CVE-2024-23621

The CVE-2024-23621 entry concerns IBM Merge Healthcare eFilm Workstation license server with a buffer overflow vulnerability. A remote, unauthenticated attacker could exploit this to achieve remote code execution. Documents consistently identify the affected component as the license server compon...

CVE-2023-23621

creationtimestamp| type| source ---|---|--- 2023-01-28 02:34:58+00:00| seen| https://t.me/cibsecurity/57124...

CVE-2023-23621

Discourse is an open-source discussion platform. Prior to version 3.0.1 on the stable branch and version 3.1.0.beta2 on the beta and tests-passed branches, a malicious user can cause a regular expression denial of service using a carefully crafted user agent. This issue is patched in version 3.0....

CVE-2023-23621

Discourse vulnerability: a crafted User-Agent can trigger a regular-expression denial of service. Affected versions include prior to 3.0.1 on the stable branch and 3.1.0.beta2 on the beta/tests-passed branches. Root cause is in the user-agent parsing regex, leading to potential DoS with high impa...

CVE-2020-23621

creationtimestamp| type| source ---|---|--- 2022-05-03 02:28:23+00:00| seen| https://t.me/cibsecurity/41791...

CVE-2020-23621

The Java Remote Management Interface of all versions of SVI MS Management System was discovered to contain a vulnerability due to insecure deserialization of user-supplied content, which can allow attackers to execute arbitrary code via a crafted serialized Java object...

CVE-2020-23621

CVE-2020-23621 affects the SVI MS Management System via insecure deserialization in the Java Remote Management Interface across all versions, enabling arbitrary code execution through a crafted serialized Java object. The issue is rooted in how user-supplied content is deserialized. Documented im...

CVE-2022-23621

creationtimestamp| type| source ---|---|--- 2022-02-10 00:13:10+00:00| seen| https://t.me/cibsecurity/37122...

CVE-2022-23621

CVE-2022-23621 – XWiki Platform is affected where any user with SCRIPT rights can read arbitrary files from the XWiki WAR (for example xwiki.cfg) via XWiki#invokeServletAndReturnAsString (using "/WEB-INF/xwiki.cfg"). The issue is fixed in XWiki versions 12.10.9, 13.4.3, and 13.7-rc-1. The vulnera...