39 matches found
CVE-2026-23807
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Socio WP Telegram Widget and Join Link wptelegram-widget allows Reflected XSS.This issue affects WP Telegram Widget and Join Link: from n/a through = 2.2.13...
CVE-2025-23807
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jim2212001 Spiderpowa Embed PDF spiderpowa-embed-pdf allows Stored XSS.This issue affects Spiderpowa Embed PDF: from n/a through = 1.0...
TencentOS Server 4: xerces-c (TSSA-2024:0466)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0466 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
CVE-2021-23807 vulnerabilities
Vulnerabilities for packages: py3-jsonpointer...
CVE-2021-23807 vulnerabilities
Vulnerabilities for packages: py3-jsonpointer...
Photon OS 4.0: Xerces PHSA-2025-4.0-0761
An update of the xerces package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0761. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 5.0: Xerces PHSA-2025-5.0-0480
An update of the xerces package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0480. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Azure Linux 3.0 Security Update: xerces-c (CVE-2024-23807)
The version of xerces-c installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-23807 advisory. - The Apache Xerces C++ XML parser on versions 3.0.0 before 3.2.5 contains a use-after-free error triggered...
CBL Mariner 2.0 Security Update: xerces-c (CVE-2024-23807)
The version of xerces-c installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-23807 advisory. - The Apache Xerces C++ XML parser on versions 3.0.0 before 3.2.5 contains a use-after-free error triggered...
CVE-2024-23807 affecting package xerces-c for versions less than 3.2.4-2
CVE-2024-23807 affecting package xerces-c for versions less than 3.2.4-2. A patched version of the package is available...
CVE-2024-23807 affecting package xerces-c for versions less than 3.2.4-2
CVE-2024-23807 affecting package xerces-c for versions less than 3.2.4-2. A patched version of the package is available...
CVE-2025-23807
creationtimestamp| type| source ---|---|--- 2025-01-16 21:17:03+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7cg3cbo2f...
CVE-2025-23807 WordPress Spiderpowa Embed PDF plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jim2212001 Spiderpowa Embed PDF spiderpowa-embed-pdf allows Stored XSS.This issue affects Spiderpowa Embed PDF: from n/a through = 1.0...
CVE-2025-23807 WordPress Spiderpowa Embed PDF plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jim2212001 Spiderpowa Embed PDF spiderpowa-embed-pdf allows Stored XSS.This issue affects Spiderpowa Embed PDF: from n/a through = 1.0...
CVE-2025-23807
CVE-2025-23807 is associated with the Spiderpowa Embed PDF WordPress plugin and is described in Red Hat advisory as an Improper Neutralization of Input During Web Page Generation leading to Stored XSS in Spiderpowa Embed PDF (affecting versions up to 1.0). The connected Red Hat document confirms ...
Amazon Linux 2 : xerces-c (ALAS-2024-2476)
The version of xerces-c installed on the remote host is prior to 3.1.1-10. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2476 advisory. Apache issued this CVE to indicate the correct versions of xerces-c, which included the fix for CVE-2018-1311. See the older CVE...
openSUSE: Security Advisory for phpMyAdmin (openSUSE-SU-2023:0047-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Medium: xerces-c
Issue Overview: Apache issued this CVE to indicate the correct versions of xerces-c, which included the fix for CVE-2018-1311. See the older CVE page for fix status. CVE-2024-23807 Affected Packages: xerces-c Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ...
Medium: xerces-c
Issue Overview: Apache issued this CVE to indicate the correct versions of xerces-c, which included the fix for CVE-2018-1311. See the older CVE page for fix status. CVE-2024-23807 Affected Packages: xerces-c Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ...
CVE-2024-23807
The Apache Xerces C++ XML parser on versions 3.0.0 before 3.2.5 contains a use-after-free error triggered during the scanning of external DTDs. Users are recommended to upgrade to version 3.2.5 which fixes the issue, or mitigate the issue by disabling DTD processing. This can be accomplished via...