ROOT-OS-ALPINE-319-CVE-2024-23770 CVE-2024-23770 in rootio-darkhttpd - Patched by Root

Root has patched CVE-2024-23770 in the rootio-darkhttpd package for Root:Alpine:3.19. Multiple fixed versions available...

ROOT-OS-ALPINE-318-CVE-2024-23770 CVE-2024-23770 in rootio-darkhttpd - Patched by Root

Root has patched CVE-2024-23770 in the rootio-darkhttpd package for Root:Alpine:3.18. Multiple fixed versions available...

CVE-2025-23770

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Caspie Fast Tube fast-tube allows Reflected XSS.This issue affects Fast Tube: from n/a through = 2.3.1...

CVE-2022-23770

This vulnerability could allow a remote attacker to execute remote commands with improper validation of parameters of certain API constructors. Remote attackers could use this vulnerability to execute malicious commands such as directory traversal...

CVE-2025-23770

creationtimestamp| type| source ---|---|--- 2025-01-22 15:20:45+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdo6t7x4v2e 2025-01-23 17:03:04+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2768...

CVE-2025-23770

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Caspie Fast Tube fast-tube allows Reflected XSS.This issue affects Fast Tube: from n/a through = 2.3.1...

CVE-2025-23770 WordPress Fast Tube plugin <= 2.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Caspie Fast Tube fast-tube allows Reflected XSS.This issue affects Fast Tube: from n/a through = 2.3.1...

CVE-2025-23770

CVE-2025-23770 is a reflected XSS affecting the WordPress plugin Fast Tube (notFound Fast Tube), with impact up to version 2.3.1. The CVSS 3.1 base score is 7.1 (HIGH), attack vector NETWORK, attack complexity LOW, privileges NONE, user interaction REQUIRED, and the vulnerability involves imprope...

Fedora: Security Advisory (FEDORA-2024-d638b9a34c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ALPINE-CVE-2024-23770

darkhttpd through 1.15 allows local users to discover credentials for --auth by listing processes and their arguments...

CVE-2024-23770

Darkhttpd prior to 1.16 (notably 1.15) is affected: local users can enumerate credentials used by --auth by listing processes and their arguments. Fedora advisories/Fedora OSS notes indicate update to darkhttpd 1.16 fixes this issue. In practice, affected product: darkhttpd HTTP server; root caus...

CVE-2023-23770

Motorola MBTS Site Controller accepts hard-coded backdoor password. The Motorola MBTS Site Controller Man Machine Interface MMI, allowing for service technicians to diagnose and configure the device, accepts a hard-coded backdoor password that cannot be changed or disabled...

CVE-2022-23770 WISA Smart Wing CMS Remote Command Execution Vulnerability

This vulnerability could allow a remote attacker to execute remote commands with improper validation of parameters of certain API constructors. Remote attackers could use this vulnerability to execute malicious commands such as directory traversal...

CVE-2022-23770

CVE-2022-23770 affects WISA Smart Wing CMS (WISA Korea). The connected documents describe a remote command execution risk caused by improper validation of parameters of certain API constructors, enabling exploits such as directory traversal. The vulnerability is reported across multiple feeds, bu...