17 matches found
CVE-2026-24231
creationtimestamp| type| source ---|---|--- 2026-04-28 16:55:35+00:00| seen| https://infosec.exchange/users/AAKL/statuses/116483372219679349...
CVE-2025-24231
creationtimestamp| type| source ---|---|--- 2026-04-02 22:14:56+00:00| seen| Telegram/vazepRq8pUVmfE1hnQs7eSzvOH2CwegXcQp6HpwRm-K-I...
CVE-2023-24231
A stored cross-site scripting XSS vulnerability in the component /php-inventory-management-system/categories.php of Inventory Management System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Categories Name parameter...
CVE-2025-24231
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to modify protected parts of the file system...
CVE-2025-24231
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to modify protected parts of the file system...
CVE-2025-24231
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to modify protected parts of the file system...
CVE-2025-24231
CVE-2025-24231 affects macOS components where an app may modify protected parts of the file system due to insufficient checks. The issue is addressed by Apple with fixes in macOS Ventura 13.7.5, macOS Sequoia 15.4, and macOS Sonoma 14.7.5. According to the sources, improved checks were implemente...
CVE-2023-24231
A stored cross-site scripting XSS vulnerability in the component /php-inventory-management-system/categories.php of Inventory Management System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Categories Name parameter...
CVE-2023-24231
CVE-2023-24231 : A stored cross-site scripting (XSS) vulnerability exists in the Inventory Management System v1, specifically in the component at /php-inventory-management-system/categories.php. The issue arises when a crafted payload is injected into the Categories Name parameter, allowing an at...
CVE-2022-24231
Simple Student Information System v1.0 was discovered to contain a SQL injection vulnerability via add/Student...
CVE-2022-24231
The CVE-2022-24231 entry concerns Simple Student Information System v1.0, which is vulnerable to SQL injection via the add/Student path. The vulnerability is documented with a high-severity impact (CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H; base score 9.8) affecting confidentiality, integrit...
CVE-2021-24231
CVE-2021-24231: Patreon WordPress plugin prior to 1.7.0 is affected by a Cross-Site Request Forgery vulnerability. The issue allows an unauthenticated attacker to coerce a logged-in administrator to disconnect the site from Patreon by visiting a crafted link. Affected software: Patreon WordPress ...
CVE-2020-24231
creationtimestamp| type| source ---|---|--- 2020-10-05 20:27:18+00:00| seen| https://t.me/cibsecurity/15057...
CVE-2020-24231
Symmetric DS 3.12.0 uses mx4j to provide access to JMX over HTTP. mx4j, by default, has no auth and is available on all interfaces. An attacker can interact with JMX: get system info, and invoke MBean methods. It is possible to install additional MBeans from a remote host using MLet that leads to...
CVE-2020-24231
Symmetric DS 3.12.0 uses mx4j to provide access to JMX over HTTP. mx4j, by default, has no auth and is available on all interfaces. An attacker can interact with JMX: get system info, and invoke MBean methods. It is possible to install additional MBeans from a remote host using MLet that leads to...
CVE-2020-24231
Symmetric DS 3.12.0 uses mx4j to provide access to JMX over HTTP. mx4j, by default, has no auth and is available on all interfaces. An attacker can interact with JMX: get system info, and invoke MBean methods. It is possible to install additional MBeans from a remote host using MLet that leads to...
CVE-2020-24231
CVE-2020-24231 affects Symmetric DS