CVE-2026-23980

creationtimestamp| type| source ---|---|--- 2026-02-24 17:08:45+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mfmnse3szw2z 2026-04-08 11:00:04+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/79418 2026-04-08 21:00:04+00:00| published-proof-of-concept|...

CVE-2023-23980

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in MailOptin Popup Builder Team MailOptin plugin = 1.2.54.0 versions...

CVE-2025-23980

Cross-Site Request Forgery CSRF vulnerability in James Andrews Full Circle full-circle allows Stored XSS.This issue affects Full Circle: from n/a through = 0.5.7.8...

CVE-2024-23980

Improper buffer restrictions in PlatformPfrDxe driver in UEFI firmware for some IntelR Server D50FCP Family products may allow a privileged user to enable escalation of privilege via local access...

CVE-2025-23980

creationtimestamp| type| source ---|---|--- 2025-01-31 09:16:35+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgznzwe5hl2c 2025-01-31 10:15:57+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3642...

CVE-2025-23980 WordPress Full Circle plugin <= 0.5.7.8 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in James Andrews Full Circle full-circle allows Stored XSS.This issue affects Full Circle: from n/a through = 0.5.7.8...

CVE-2025-23980 WordPress Full Circle plugin <= 0.5.7.8 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in James Andrews Full Circle full-circle allows Stored XSS.This issue affects Full Circle: from n/a through = 0.5.7.8...

CVE-2025-23980

CVE-2025-23980 concerns the WordPress plugin Full Circle (versions up to 0.5.7.8). The connected sources describe a CSRF vulnerability that enables Stored XSS. The CVSS v3.1 base score is 7.1 (High) with Network attack vector, Low confidentiality/integrity/availability impacts, and user interacti...

CVE-2024-23980

Improper buffer restrictions in PlatformPfrDxe driver in UEFI firmware for some IntelR Server D50FCP Family products may allow a privileged user to enable escalation of privilege via local access...

CVE-2024-23980

CVE-2024-23980 affects the PlatformPfrDxe driver in Intel Server D50FCP Family UEFI firmware. The issue is improper buffer restrictions that may allow a privileged local user to escalate privileges. Intel’s advisory indicates firmware updates to mitigate these vulnerabilities; specific fixes are ...

CVE-2024-23980

Improper buffer restrictions in PlatformPfrDxe driver in UEFI firmware for some IntelR Server D50FCP Family products may allow a privileged user to enable escalation of privilege via local access...

CVE-2023-23980

creationtimestamp| type| source ---|---|--- 2023-04-06 12:27:18+00:00| seen| https://t.me/cibsecurity/61544...

CVE-2023-23980

MailOptin Popup Builder WordPress plugin

CVE-2021-23980

creationtimestamp| type| source ---|---|--- 2023-02-17 00:18:50+00:00| seen| https://t.me/cibsecurity/58417...

CVE-2021-23980

CVE-2021-23980 affects the python-bleach library. A mutation XSS can occur when bleach.clean is called with any of the tags svg or math, and also with allowed tags including p or br, plus style, title, noscript, script, textarea, noframes, iframe, or xmp, and with strip_comments=False. Note that ...

CVE-2021-23980

A mutation XSS affects users calling bleach.clean with all of: svg or math in the allowed tags p or br in allowed tags style, title, noscript, script, textarea, noframes, iframe, or xmp in allowed tags the keyword argument stripcomments=False Note: none of the above tags are in the default allowe...

CVE-2021-23980

A mutation XSS affects users calling bleach.clean with all of: svg or math in the allowed tags p or br in allowed tags style, title, noscript, script, textarea, noframes, iframe, or xmp in allowed tags the keyword argument stripcomments=False Note: none of the above tags are in the default allowe...

SUSE CVE-2021-23980

A mutation XSS affects users calling bleach.clean with all of: svg or math in the allowed tags p or br in allowed tags style, title, noscript, script, textarea, noframes, iframe, or xmp in allowed tags the keyword argument stripcomments=False Note: none of the above tags are in the default allowe...

OESA-2022-1861 python-bleach security update

Bleach is an HTML sanitizing library that escapes or strips markup and attributes based on a white list. Security Fixes: No description is available for this CVE.CVE-2021-23980...

CVE-2022-23980 WordPress Yasr – Yet Another Stars Rating plugin <= 2.9.9 - Cross-Site Scripting (XSS) vulnerability

Cross-Site Scripting XSS vulnerability discovered in Yasr – Yet Another Stars Rating WordPress plugin versions = 2.9.9, vulnerable at parameter 'source'...