CVE-2026-24378

creationtimestamp| type| source ---|---|--- 2026-04-09 02:30:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mizr7qdcza2j...

CVE-2026-24378

Deserialization of Untrusted Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Object Injection.This issue affects EventPrime: from n/a through = 4.2.8.0...

CVE-2022-24378

Improper initialization in the IntelR Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable denial of service via local access...

CVE-2025-24378

Dell Unity, versions 5.4 and prior, contains an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution and Elevation of privilege...

CVE-2025-24378

creationtimestamp| type| source ---|---|--- 2025-03-28 02:28:01+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9249 2025-03-28 04:03:38+00:00| seen| Telegram/JL2AEDUW3nn7wJMvX5Y1pZ6RRzjZ9DRWcg7AcNic7FT7f9E 2025-03-28 05:12:17+00:00| seen| https://t.me/cvedetector/21365...

CVE-2023-24378

creationtimestamp| type| source ---|---|--- 2023-04-06 18:27:13+00:00| seen| https://t.me/cibsecurity/61564...

CVE-2023-24378

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Codeat Glossary plugin = 2.1.27 versions...

CVE-2023-24378 WordPress Glossary Plugin <= 2.1.27 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Codeat Glossary plugin = 2.1.27 versions...

CVE-2023-24378

CVE-2023-24378 affects the WordPress Glossary plugin, specifically versions 2.1.27 (fixed in 2.1.28). Several sources (Patchstack, WPVulnDB, Red Hat, NVD) corroborate the exposure and the patch version. If exploitation status or in-the-wild exploit details exist in connected docs, note that expl...

WordPress Glossary Plugin <= 2.1.27 is vulnerable to Cross Site Scripting (XSS)

Software Glossary Type Plugin Vulnerable versions = 2.1.27 Fixed in 2.1.28 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-24378 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7470ca4b443e Credits Rafshanzani Suhada Required...

CVE-2022-24378

creationtimestamp| type| source ---|---|--- 2022-08-19 00:16:51+00:00| seen| https://t.me/cibsecurity/48390...

CVE-2022-24378

Improper initialization in the IntelR Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable denial of service via local access...

CVE-2022-24378

Improper initialization in the IntelR Data Center Manager software before version 4.1 may allow an authenticated user to potentially enable denial of service via local access...

CVE-2022-24378

CVE-2022-24378 affects Intel® Data Center Manager software prior to version 4.1. The issue is an improper initialization in the managed component that may allow an authenticated user to cause a denial of service via local access. Consequences are limited to DoS as described in the sources; no oth...

CVE-2021-24378

The CVE concerns the WordPress Autoptimize plugin prior to version 2.7.8. It does not validate for malicious files (e.g., .html) inside archives uploaded via the Import Settings feature. A high-privilege user could upload a crafted archive containing JavaScript in index.html inside the plugin dir...

CVE-2021-24378 Autoptimize < 2.7.8 - Authenticated Stored XSS via File Upload

The Autoptimize WordPress plugin before 2.7.8 does not check for malicious files such as .html in the archive uploaded via the 'Import Settings' feature. As a result, it is possible for a high privilege user to upload a malicious file containing JavaScript code inside an archive which will execut...