CVE-2023-24181

LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /openvpn/pageswitch.htm...

CVE-2025-24181

creationtimestamp| type| source ---|---|--- 2025-04-01 14:33:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9907 2026-04-02 22:14:12+00:00| seen| Telegram/rgUMiA5BiDEUoxRBbKGjRmrNvY5v49pyhjoufWmWJx2GI...

CVE-2025-24181

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to access protected user data...

CVE-2025-24181

CVE-2025-24181 is a permissions-related issue affecting macOS where an app could access protected user data. Public details indicate the vulnerability is mitigated by OS updates rather than vendor-supplied patches for applications. The fixed versions are macOS Ventura 13.7.5, macOS Sequoia 15.4, ...

CVE-2023-24181

creationtimestamp| type| source ---|---|--- 2023-04-10 18:39:01+00:00| seen| https://t.me/cibsecurity/61770 2025-02-14 10:03:09+00:00| seen| Telegram/dnOaQx-UdlneQX4t-kY2MceYhSs8dSn-JfmGT3tJWqbqVeXK...

CVE-2023-24181

LuCI openwrt-22.03 branch git-22.361.69894-438c598 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /openvpn/pageswitch.htm...

CVE-2023-24181

CVE-2023-24181 affects LuCI on the OpenWrt 22.03 branch (git-22.361.69894-438c598) and is a reflected XSS in the component "/openvpn/pageswitch.htm". The vulnerability is described as a reflected Cross-Site Scripting issue with network access (AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N); exploitation re...

PKP Open Journals System 3.3 Cross Site Scripting

Exploit Title: PKP Open Journals System 3.3 - Cross-Site Scripting XSS Date: 31/01/2022 Exploit Author: Hemant Kashyap Vendor Homepage: https://github.com/pkp/pkp-lib/issues/7649 Version: PKP Open Journals System 2.4.8 = 3.3 Tested on: All OS CVE : CVE-2022-24181 References:...

PKP Open Journals System 3.3 - Cross-Site Scripting Vulnerability

Exploit Title: PKP Open Journals System 3.3 - Cross-Site Scripting XSS Exploit Author: Hemant Kashyap Vendor Homepage: https://github.com/pkp/pkp-lib/issues/7649 Version: PKP Open Journals System 2.4.8 = 3.3 Tested on: All OS CVE : CVE-2022-24181 References: https://youtu.be/v8-9evO2oVg XSS via...

CVE-2022-24181

creationtimestamp| type| source ---|---|--- 2022-04-01 16:19:36+00:00| seen| https://t.me/cibsecurity/40002...

CVE-2022-24181

Cross-site scripting XSS via Host Header injection in PKP Open Journals System 2.4.8 = 3.3 allows remote attackers to inject arbitary code via the X-Forwarded-Host Header...

CVE-2022-24181

PKP Open Journal Systems 2.4.8–3.3 is affected by a Cross‑Site Scripting (XSS) vulnerability via the X-Forwarded-Host header (Host Header injection). The underlying issue is header-based input that enables arbitrary script injection into rendered pages, potentially leading to data theft or deface...

CVE-2021-24181 Tutor LMS < 1.7.7 - SQL Injection via tutor_mark_answer_as_correct

The tutormarkanswerascorrect AJAX action from the Tutor LMS – eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be exploited by students...

CVE-2021-24181

The CVE covers Tutor LMS (WordPress plugin) prior to version 1.7.7, where the tutor_mark_answer_as_correct AJAX action is vulnerable to blind and time-based SQL injections. This could enable an attacker (e.g., students) to manipulate queries via that action. Affected component: Tutor LMS WordPres...