CVE-2026-24133

creationtimestamp| type| source ---|---|--- 2026-02-09 01:02:45+00:00| seen| https://bsky.app/profile/securitylab-jp.bsky.social/post/3mefat4pq3c2m...

CVE-2026-24133

jsPDF is a library to generate PDFs in JavaScript. Prior to 4.1.0, user control of the first argument of the addImage method results in denial of service. If given the possibility to pass unsanitized image data or URLs to the addImage method, a user can provide a harmful BMP file that results in...

CVE-2026-24133

The CVE-2026-24133 issue affects jsPDF (prior to 4.1.0) where user control of the first addImage argument allows denial of service when processing unvalidated BMP data or URLs, including via the html method. Harmful BMP headers with large width/height trigger excessive memory allocations, leading...

@armco/armory-react-components (>=0.0.23 <=0.0.43), @armco/svg-canvas (>=0.1.2 <=0.1.3) +5 more potentially affected by CVE-2026-24133 via jspdf (=4.0.0)

jspdf NPM version =4.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on jspdf and may be impacted: - @armco/armory-react-components =0.0.23, =0.1.2, =1.4.0, =7.11.3, =4.4.0, =4.4.1 - svgedit =7.4.1 Source cves: CVE-2026-24133 Source advisory:...

CVE-2025-24133

creationtimestamp| type| source ---|---|--- 2025-09-16 05:55:08+00:00| seen| https://bsky.app/profile/undercode.bsky.social/post/3lywn3lo6c72j...

CVE-2024-24133

creationtimestamp| type| source ---|---|--- 2024-02-07 15:26:29+00:00| seen| https://t.me/ctinow/180745 2024-03-01 20:22:32+00:00| seen| https://t.me/ctinow/197955...

CVE-2024-24133

Atmail v6.6.0 was discovered to contain a SQL injection vulnerability via the username parameter on the login page...

CVE-2024-24133

Atmail v6.6.0 was discovered to contain a SQL injection vulnerability via the username parameter on the login page...

CVE-2023-24133

creationtimestamp| type| source ---|---|--- 2023-03-01 22:33:43+00:00| seen| https://t.me/cibsecurity/59265...

CVE-2023-24133

Jensen of Scandinavia Eagle 1200AC V15.03.06.33en was discovered to contain a stack overflow via the wepkey5g parameter at /goform/WifiBasicSet...

CVE-2023-24133

Jensen of Scandinavia Eagle 1200AC V15.03.06.33en was discovered to contain a stack overflow via the wepkey5g parameter at /goform/WifiBasicSet...

CVE-2023-24133

CVE-2023-24133 concerns the Jensen of Scandinavia Eagle 1200AC router (V15.03.06.33_en). A stack overflow is triggered by the wepkey_5g parameter in the API at /goform/WifiBasicSet , as documented in multiple sources. Impact is described as high on availability, with no confidentiality or integri...

hosting-24133.tributes.com Cross Site Scripting vulnerability OBB-2148383

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

CVE-2020-24133

creationtimestamp| type| source ---|---|--- 2021-07-15 02:25:19+00:00| seen| https://t.me/cibsecurity/26172...

CVE-2020-24133

A heap buffer overflow vulnerability in the rasmswfdisass function of Radare2-extras before commit e74a93c allows attackers to execute arbitrary code or carry out denial of service DOS attacks...

CVE-2020-24133

Radare2-extras is affected by a heap buffer overflow in the r_asm_swf_disass function, exploitable via inputs processed by that function. The vulnerability exists in versions before commit e74a93c and can lead to arbitrary code execution or denial of service. Mitigation: apply the patch from comm...

CVE-2021-24133 ActiveCampaign < 8.0.2 - Cross-Site Request Forgery in Settings

Lack of CSRF checks in the ActiveCampaign WordPress plugin, versions before 8.0.2, on its Settings form, which could allow attacker to make a logged-in administrator change API Credentials to attacker's account...

CVE-2021-24133

The CVE-2021-24133 entry concerns the WordPress ActiveCampaign plugin prior to version 8.0.2, where a lack of CSRF checks on the Settings form could allow a logged-in administrator to change API credentials to the attacker’s account. Affected component: ActiveCampaign WordPress plugin (settings h...