15 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-23927
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A user able to connect to Agent 2 can inject an Oracle TNS connection string via the 'service' parameter. This can lead to Agent 2 connecting to an...
CVE-2026-23927
creationtimestamp| type| source ---|---|--- 2026-05-06 10:36:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml6iz62mv72t 2026-05-06 14:30:15+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3ml6w2c6y7n2q...
CVE-2026-23927
A user able to connect to Agent 2 can inject an Oracle TNS connection string via the 'service' parameter. This can lead to Agent 2 connecting to an attacker-controlled server and leaking Oracle database credentials if they are saved in a named session...
RHSA-2025:23927 Red Hat Security Advisory: ruby security update
Bulletin has no description...
CVE-2025-23927
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in massimo.serpilli Incredible Font Awesome incredible-font-awesome allows Stored XSS.This issue affects Incredible Font Awesome: from n/a through = 1.0...
CVE-2021-23927
OX App Suite through 7.10.4 allows SSRF via a URL with an @ character in an appsuite/api/oauth/proxy PUT request...
CVE-2025-23927
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in massimo.serpilli Incredible Font Awesome incredible-font-awesome allows Stored XSS.This issue affects Incredible Font Awesome: from n/a through = 1.0...
CVE-2025-23927 WordPress Incredible Font Awesome plugin <= 1.0 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in massimo.serpilli Incredible Font Awesome incredible-font-awesome allows Stored XSS.This issue affects Incredible Font Awesome: from n/a through = 1.0...
CVE-2025-23927 WordPress Incredible Font Awesome plugin <= 1.0 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in massimo.serpilli Incredible Font Awesome incredible-font-awesome allows Stored XSS.This issue affects Incredible Font Awesome: from n/a through = 1.0...
CVE-2023-23927
creationtimestamp| type| source ---|---|--- 2023-03-04 00:35:26+00:00| seen| https://t.me/cibsecurity/59402 2025-02-25 15:23:25+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5303...
CVE-2023-23927 Craft CMS stored cross-site scripting vulnerability
Craft is a platform for creating digital experiences. When you insert a payload inside a label name or instruction of an entry type, an cross-site scripting XSS happens in the quick post widget on the admin dashboard. This issue has been fixed in version 4.3.7...
CVE-2023-23927
Craft CMS is vulnerable to a stored XSS in the quick post widget on the admin dashboard when a payload is inserted into a label name or an entry type instruction. The issue affects Craft CMS prior to version 4.3.7 and has been fixed in 4.3.7. The CVE entry is supported by multiple connected sourc...
CVE-2022-23927
The CVE-2022-23927 entry concerns system BIOS vulnerabilities in HP PC products. Connected documents confirm the affected component is the HP BIOS and indicate potential impact includes Escalation of Privilege, Arbitrary Code Execution, Denial of Service, and Information Disclosure. The Red Hat a...
CVE-2021-23927
creationtimestamp| type| source ---|---|--- 2021-01-13 00:47:30+00:00| seen| https://t.me/cibsecurity/22068...
CVE-2021-23927
OX App Suite up to version 7.10.4 is vulnerable to server-side request forgery (SSRF) when a URL containing an @ character is used in a PUT request to appsuite/api/oauth/proxy. The root cause is described as an SSRF flaw in the handling of such URLs, exposing potential unintended requests from th...