CVE-2026-23740

Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, when astcoredumper writes its gdb init and output files to a directory that is world-writable for example /tmp, an attacker with write permissionwhich is a...

CVE-2026-23740 Asterisk vulnerable to potential privilege escalation

Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, when astcoredumper writes its gdb init and output files to a directory that is world-writable for example /tmp, an attacker with write permissionwhich is a...

CVE-2026-23740

Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cert9, 20.18.2, 21.12.1, 22.8.2, and 23.2.2, when astcoredumper writes its gdb init and output files to a directory that is world-writable for example /tmp, an attacker with write permissionwhich is a...

CVE-2026-23740

creationtimestamp| type| source ---|---|--- 2026-02-06 13:50:26+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3me72d5vhru2o...

CVE-2025-23740

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Zbynek Nedoma Easy School Registration easy-school-registration allows Reflected XSS.This issue affects Easy School Registration: from n/a through = 3.9.8...

CVE-2025-23740

creationtimestamp| type| source ---|---|--- 2025-03-04 20:31:52+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6415...

CVE-2025-23740

CVE-2025-23740 describes a reflected Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Easy School Registration (versions up to and including 3.9.8). The root cause is Improper Neutralization of Input During Web Page Generation . Affected software is the WordPress Easy School Regis...

CVE-2025-23740 WordPress Easy School Registration plugin <= 3.9.8 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Zbynek Nedoma Easy School Registration easy-school-registration allows Reflected XSS.This issue affects Easy School Registration: from n/a through = 3.9.8...

CVE-2024-23740

creationtimestamp| type| source ---|---|--- 2024-01-28 05:26:51+00:00| seen| https://t.me/ctinow/174839 2024-02-21 08:06:55+00:00| seen| https://t.me/ctinow/189306...

CVE-2024-23740

An issue in Kap for macOS version 3.6.0 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2024-23740

An issue in Kap for macOS version 3.6.0 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2024-23740

Kap for macOS is affected up to version 3.6.0. The vulnerability enables remote code execution through the RunAsNode and enableNodeClilnspectArguments settings. Root cause is tied to how these settings are processed within Kap, as described in multiple sources. Affected component details: Kap on ...

CVE-2024-23740

An issue in Kap for macOS version 3.6.0 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings...

CVE-2022-23740

creationtimestamp| type| source ---|---|--- 2022-11-23 20:13:55+00:00| seen| https://t.me/cibsecurity/53442 2025-04-28 15:10:59+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13693...

CVE-2022-23740

CRITICAL: An improper neutralization of argument delimiters in a command vulnerability was identified in GitHub Enterprise Server that enabled remote code execution. To exploit this vulnerability, an attacker would need permission to create and build GitHub Pages using GitHub Actions. This...

CVE-2022-23740 Improper Neutralization of Argument Delimiters in a Command in GitHub Enterprise Server leading to Remote Code Execution

CRITICAL: An improper neutralization of argument delimiters in a command vulnerability was identified in GitHub Enterprise Server that enabled remote code execution. To exploit this vulnerability, an attacker would need permission to create and build GitHub Pages using GitHub Actions. This...

CVE-2022-23740 Improper Neutralization of Argument Delimiters in a Command in GitHub Enterprise Server leading to Remote Code Execution

CRITICAL: An improper neutralization of argument delimiters in a command vulnerability was identified in GitHub Enterprise Server that enabled remote code execution. To exploit this vulnerability, an attacker would need permission to create and build GitHub Pages using GitHub Actions. This...

CVE-2022-23740

GitHub Enterprise Server 3.7.0 is vulnerable to remote code execution due to improper neutralization of argument delimiters in a command. An attacker would need permission to create and build GitHub Pages with GitHub Actions. The issue affects only 3.7.0 and is fixed in 3.7.1; recovery requires u...

CVE-2020-23740

creationtimestamp| type| source ---|---|--- 2020-12-03 22:26:25+00:00| seen| https://t.me/cibsecurity/17128...

CVE-2020-23740

CVE-2020-23740 affects DriverGenius 9.61.5480.28 and stems from a local privilege escalation in the driver wizard. The NVD entry notes a local, low-attack‑complexity path that can grant HIGH integrity/availability impact and HIGH confidentiality impact if exploited, with LOW privileges required a...