16 matches found
CVE-2026-23754
creationtimestamp| type| source ---|---|--- 2026-01-21 19:25:35+00:00| seen| https://infosec.exchange/users/vuldb/statuses/115934726405423709 2026-01-21 19:48:00+00:00| seen| https://threatintel.cc/2026/01/21/cve-dlink-dview-api-endpoint.html 2026-01-21 20:47:52+00:00| seen|...
CVE-2025-23754
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ulrich Sossou The Loops the-loops allows Reflected XSS.This issue affects The Loops: from n/a through = 1.0.2...
CVE-2025-23754
creationtimestamp| type| source ---|---|--- 2025-01-27 15:16:15+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgqabemyzl2c...
CVE-2025-23754
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ulrich Sossou The Loops the-loops allows Reflected XSS.This issue affects The Loops: from n/a through = 1.0.2...
CVE-2025-23754 WordPress The Loops plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ulrich Sossou The Loops the-loops allows Reflected XSS.This issue affects The Loops: from n/a through = 1.0.2...
CVE-2025-23754 WordPress The Loops plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ulrich Sossou The Loops the-loops allows Reflected XSS.This issue affects The Loops: from n/a through = 1.0.2...
Joomla! 4.2.x < 4.3.2 Multiple Vulnerabilities
According to its self-reported version, the instance of Joomla! running on the remote web server is 4.2.x prior to 4.3.2. It is, therefore, affected by multiple vulnerabilities. - An open redirect and a Cross-Site Scripting XSS within the mfa selection. CVE-2023-23754 - A lack of rate limiting...
Joomla! 4.2.0 - 4.3.1 Multiple Vulnerabilities
Joomla! is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; ifdescription...
CVE-2023-23754
creationtimestamp| type| source ---|---|--- 2023-05-30 20:18:45+00:00| seen| https://t.me/cibsecurity/64792 2025-01-10 05:15:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1116...
CVE-2023-23754 [20230501] - Core - Open Redirect and XSS within the mfa select
An issue was discovered in Joomla! 4.2.0 through 4.3.1. Lack of input validation caused an open redirect and XSS issue within the new mfa selection screen...
CVE-2023-23754
Vulnerability: CVE-2023-23754 in Joomla! 4.2.0–4.3.1. Lack of input validation in the MFA selection screen enables an open redirect and XSS. Affected versions: Joomla! 4.2.0 through 4.3.1. Root cause / impact: Insufficient input validation allows redirection to arbitrary URLs and cross-site scrip...
Joomla 4.2.x < 4.3.2 Multiple Vulnerabilities (5887-joomla-4-3-2-security-and-bug-fix-release)
According to its self-reported version, the instance of Joomla! running on the remote web server is 4.2.x prior to 4.3.2. It is, therefore, affected by multiple vulnerabilities. - An issue was discovered in Joomla! 4.2.0 through 4.3.1. Lack of input validation caused an open redirect and XSS issu...
PHPFusion < 9.03.60 Multiple Vulnerabilities
PHPFusion is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2020-23754
creationtimestamp| type| source ---|---|--- 2021-11-02 21:23:03+00:00| seen| https://t.me/cibsecurity/31622...
CVE-2020-23754
Cross Site Scripting XSS vulnerability in infusions/memberpollpanel/polladmin.php in PHP-Fusion 9.03.50, allows attackers to execute arbitrary code, via the polls feature...
CVE-2020-23754
PHP-Fusion 9.03.50 contains a Cross-Site Scripting vulnerability in infusions/member_poll_panel/poll_admin.php that allows an attacker to execute arbitrary code via the polls feature. Sources attribute the root cause to insufficient filtering/escaping of user-submitted input. This affects PHP-Fus...