CVE-2020-23879

pdf2json v0.71 was discovered to contain a NULL pointer dereference in the component ObjectStream::getObject...

CVE-2025-23879

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PillarDev Easy Automatic Newsletter Lite easy-automatic-newsletter allows Reflected XSS.This issue affects Easy Automatic Newsletter Lite: from n/a through = 3.2.0...

CVE-2025-23879

CVE-2025-23879 affects the WordPress plugin Easy Automatic Newsletter Lite (PillarDev)

CVE-2025-23879 WordPress Easy Automatic Newsletter Lite Plugin <= 3.2.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PillarDev Easy Automatic Newsletter Lite easy-automatic-newsletter allows Reflected XSS.This issue affects Easy Automatic Newsletter Lite: from n/a through = 3.2.0...

CVE-2024-23879

creationtimestamp| type| source ---|---|--- 2024-01-26 11:27:07+00:00| seen| https://t.me/ctinow/174158 2024-02-11 04:35:21+00:00| seen| Telegram/Bwj8qirdVbrK-D-oN0wgDKoMoOVjoWWZQHOtuiBW9PzlcQ 2024-02-19 14:51:42+00:00| seen| https://t.me/ctinow/187710...

CVE-2024-23879 Cross-Site Scripting (XSS) vulnerability in Cups Easy

A vulnerability has been reported in Cups Easy Purchase & Inventory, version 1.0, whereby user-controlled inputs are not sufficiently encoded, resulting in a Cross-Site Scripting XSS vulnerability via /cupseasylive/statemodify.php, in the description parameter. Exploitation of this vulnerability...

CVE-2024-23879 Cross-Site Scripting (XSS) vulnerability in Cups Easy

A vulnerability has been reported in Cups Easy Purchase & Inventory, version 1.0, whereby user-controlled inputs are not sufficiently encoded, resulting in a Cross-Site Scripting XSS vulnerability via /cupseasylive/statemodify.php, in the description parameter. Exploitation of this vulnerability...

CVE-2023-23879

creationtimestamp| type| source ---|---|--- 2023-04-23 16:33:26+00:00| seen| https://t.me/cibsecurity/62668...

CVE-2023-23879

CVE-2023-23879 affects WordPress PHP Execution Plugin

CVE-2023-23879 WordPress PHP Execution Plugin <= 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Nicolas Zeh PHP Execution plugin = 1.0.0 versions...

CVE-2023-23879 WordPress PHP Execution Plugin <= 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Nicolas Zeh PHP Execution plugin = 1.0.0 versions...

WordPress PHP Execution Plugin <= 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software PHP Execution Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-23879 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 87f55a87695e Credits Mika Required privilege...

CVE-2020-23879

creationtimestamp| type| source ---|---|--- 2021-11-11 00:37:04+00:00| seen| https://t.me/cibsecurity/32218...

CVE-2020-23879

pdf2json v0.71 was discovered to contain a NULL pointer dereference in the component ObjectStream::getObject...

CVE-2020-23879

CVE-2020-23879 affects pdf2json v0.71, with a NULL pointer dereference in ObjectStream::getObject. The vulnerability is documented across multiple feeds (NVD entry and Red Hat/CNVD/etc.), but the connected documents do not specify a vendor patch or remediation version. Impact details from NVD ind...

CVE-2021-23879

Unquoted service path vulnerability in McAfee Endpoint Product Removal EPR Tool prior to 21.2 allows local administrators to execute arbitrary code, with higher-level privileges, via execution from a compromised folder. The tool did not enforce and protect the execution path. Local admin privileg...

CVE-2021-23879 Unquoted service path vulnerability in McAfee Endpoint Product Removal (EPR) Tool prior to 21.2 allows local administrators to execute arbitrary code, with higher-level privileges, via execution from a compromised folder. The tool did not enforce and ...

Unquoted service path vulnerability in McAfee Endpoint Product Removal EPR Tool prior to 21.2 allows local administrators to execute arbitrary code, with higher-level privileges, via execution from a compromised folder. The tool did not enforce and protect the execution path. Local admin privileg...

CVE-2021-23879

The CVE-2021-23879 entry describes an unquoted service path vulnerability in McAfee Endpoint Product Removal (EPR) Tool, before version 21.2. The flaw allows local administrators to execute arbitrary code with elevated privileges by placing files in an insecure path where the tool runs, due to th...