CVE-2023-24522

Due to insufficient input sanitization, SAP NetWeaver AS ABAP Business Server Pages - versions 700, 701, 702, 731, 740, allows an unauthenticated user to alter the current session of the user by injecting the malicious code over the network and gain access to the unintended data. This may lead to...

CVE-2025-24522

CVE-2025-24522 affects KUNBUS Revolution Pi OS Bookworm 01/2025 where Node-RED authentication is not configured by default. An unauthenticated remote attacker can gain full access to the Node-RED server and execute arbitrary OS commands (impacting PLC control). Connected sources describe the root...

CVE-2025-24522

creationtimestamp| type| source ---|---|--- 2025-05-01 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-121-01 2025-05-01 19:14:58+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14375 2025-05-01 20:35:57+00:00| seen|...

PT-2025-18781 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: IntelR TiberTM Edge Platform Edge Orchestrator versions prior to 24.11.1 Description: A protection mechanism failure exists in some Edge Orchestrator software. An authenticated user may be able to enable a denial of service via adjacent acces...

CVE-2023-24522

Due to insufficient input sanitization, SAP NetWeaver AS ABAP Business Server Pages - versions 700, 701, 702, 731, 740, allows an unauthenticated user to alter the current session of the user by injecting the malicious code over the network and gain access to the unintended data. This may lead to...

CVE-2023-24522

CVE-2023-24522 affects SAP NetWeaver AS ABAP (Business Server Pages) and versions 700, 701, 702, 731, 740. Root cause: insufficient input sanitization that allows an unauthenticated user to inject malicious code over the network to alter a user’s current session, potentially exposing data. Impact...

Skype Extension for Chrome < 10.2.0.9951 Information Disclosure

The Skype Extension for Chrome installed on the remote host is a version prior to 10.2.0.9951. It is, therefore, affected by an information disclosure vulnerability. An unauthenticated, remote attacker can exploit this, to expose potentially sensitive information. C Tenable, Inc...

CVE-2022-24522

creationtimestamp| type| source ---|---|--- 2022-03-09 20:12:02+00:00| seen| https://t.me/cibsecurity/38582...

CVE-2022-24522

CVE-2022-24522 affects the Skype Extension for Chrome and is an information disclosure vulnerability. The issue pertains to exposure of potentially sensitive data via the extension when running in Chrome. Connected sources describe the affected component as the Skype Extension for Chrome and ment...

CVE-2022-24522 Skype Extension for Chrome Information Disclosure Vulnerability

...

CVE-2021-24522

CVE-2021-24522 affects ProfilePress (formerly WP User Avatar) for WordPress, before version 3.1.11. The tabbed login/register widget is vulnerable to unauthenticated reflected XSS due to improper escaping, with some cases enabling replication via $_GET because $_POST values were mapped to $_GET. ...

CVE-2020-24522

CVE-2020-24522 entry is rejected/not used and not an active vulnerability.