CVE-2026-24134 StudioCMS has an Authorization Bypass Through User-Controlled Key

StudioCMS is a server-side-rendered, Astro native, headless content management system. Versions prior to 0.2.0 contain a Broken Object Level Authorization BOLA vulnerability in the Content Management feature that allows users with the "Visitor" role to access draft content created by...

CVE-2024-24134

Sourcecodester Online Food Menu 1.0 is vulnerable to Cross Site Scripting XSS via the 'Menu Name' and 'Description' fields in the Update Menu section...

CVE-2023-24134

Jensen of Scandinavia Eagle 1200AC V15.03.06.33en was discovered to contain a stack overflow via the wepkey3 parameter at /goform/WifiBasicSet...

CVE-2025-24134

An information disclosure issue was addressed with improved privacy controls. This issue is fixed in macOS Sequoia 15.3. An app may be able to access user-sensitive data...

CVE-2024-24134

creationtimestamp| type| source ---|---|--- 2024-01-29 20:26:13+00:00| seen| https://t.me/ctinow/175517 2024-02-03 03:16:24+00:00| seen| https://t.me/ctinow/178377 2024-02-21 19:41:13+00:00| seen| https://t.me/ctinow/189996...

CVE-2024-24134

Sourcecodester Online Food Menu 1.0 is vulnerable to Cross Site Scripting XSS via the 'Menu Name' and 'Description' fields in the Update Menu section...

CVE-2024-24134

The CVE-2024-24134 entry pertains to Sourcecodester Online Food Menu 1.0, vulnerable to Cross Site Scripting (XSS) via the Update Menu fields “Menu Name” and “Description.” The issue is caused by unsanitized input in these fields, enabling script injection. Connected sources corroborate the XSS r...

CVE-2024-24134

Sourcecodester Online Food Menu 1.0 is vulnerable to Cross Site Scripting XSS via the 'Menu Name' and 'Description' fields in the Update Menu section...

CVE-2023-24134

creationtimestamp| type| source ---|---|--- 2023-03-01 22:33:47+00:00| seen| https://t.me/cibsecurity/59268...

CVE-2023-24134

Jensen of Scandinavia Eagle 1200AC V15.03.06.33en was discovered to contain a stack overflow via the wepkey3 parameter at /goform/WifiBasicSet...

CVE-2023-24134

CVE-2023-24134 affects Jensen of Scandinavia Eagle 1200AC (V15.03.06.33_en). The root cause is a stack overflow in the /goform/WifiBasicSet endpoint triggered via the wepkey3 parameter. Documented impact indicates potential denial of service with high availability impact, while other impact vecto...

CVE-2021-24134

creationtimestamp| type| source ---|---|--- 2021-03-18 17:32:20+00:00| seen| https://t.me/cibsecurity/25102...

CVE-2021-24134

The CVE affects the WordPress plugin Constant Contact Forms

Security fix for the ALT Linux 9 package mariadb version 10.4.17-alt1

10.4.17-alt1 built Nov. 13, 2020 Alexey Shabalin in task 261687 Nov. 12, 2020 Alexey Shabalin - 10.4.17 - backport fix for MDEV-24096, MDEV-24121, MDEV-24134 - Fixes for the following security vulnerabilities: + CVE-2020-14812 + CVE-2020-14765 + CVE-2020-14776 + CVE-2020-14789 + CVE-2020-15180...

Oracle FLEXCUBE Universal Banking Information Disclosure Vulnerability (CNVD-2018-24134)

Oracle FLEXCUBE Universal Banking is a real-time, online, comprehensive global core banking solution covering retail, corporate and investment banking. An information disclosure vulnerability exists in the Infrastructure component in Oracle FLEXCUBE Universal Banking. An attacker could exploit th...