23 matches found
CVE-2026-24544
Missing Authorization vulnerability in Harmonic Design HD Quiz hd-quiz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects HD Quiz: from n/a through = 2.0.9...
CVE-2023-24544
Improper access control vulnerability in Buffalo network devices allows a network-adjacent attacker to obtain specific files of the product. As a result, the product settings may be altered. The affected products and versions are as follows: BS-GSL2024 firmware Ver. 1.10-0.03 and earlier,...
CVE-2021-24544
The Responsive WordPress Slider WordPress plugin through 2.2.0 does not sanitise and escape some of the Slider options, allowing Cross-Site Scripting payloads to be set in them. Furthermore, as by default any authenticated user is allowed to create Sliders...
CVE-2025-24544
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dashed-slug.net Bitcoin and Altcoin Wallets wallets allows Reflected XSS.This issue affects Bitcoin and Altcoin Wallets: from n/a through = 6.3.1...
CVE-2025-24544
creationtimestamp| type| source ---|---|--- 2025-02-03 15:18:01+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhbtmynp2n2t 2025-02-03 17:10:42+00:00| seen| https://infosec.exchange/users/cve/statuses/113941062662259261...
CVE-2025-24544
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dashed-slug.net Bitcoin and Altcoin Wallets wallets allows Reflected XSS.This issue affects Bitcoin and Altcoin Wallets: from n/a through = 6.3.1...
CVE-2025-24544
CVE-2025-24544 affects WordPress plugin Bitcoin and Altcoin Wallets (versions prior to 6.3.1). The root cause is improper input neutralization during web page generation, enabling a Reflected XSS vulnerability. Practical impact (as described) is that an attacker could inject malicious scripts via...
CVE-2025-24544 WordPress Bitcoin and Altcoin Wallets plugin <= 6.3.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dashed-slug.net Bitcoin and Altcoin Wallets wallets allows Reflected XSS.This issue affects Bitcoin and Altcoin Wallets: from n/a through = 6.3.1...
CVE-2023-24544
CVE-2023-24544 is an improper access control vulnerability in Buffalo network devices. A network-adjacent attacker may obtain specific product files and potentially alter settings. Affected models and versions include: BS-GSL2024 firmware 1.10-0.03 and earlier; BS-GSL2016P 1.10-0.03 and earlier; ...
CVE-2023-24544
Improper access control vulnerability in Buffalo network devices allows a network-adjacent attacker to obtain specific files of the product. As a result, the product settings may be altered. The affected products and versions are as follows: BS-GSL2024 firmware Ver. 1.10-0.03 and earlier,...
CVE-2020-24544
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2020. Notes: none...
CVE-2022-24544
Windows Kerberos Elevation of Privilege Vulnerability...
CVE-2022-24544 Windows Kerberos Elevation of Privilege Vulnerability
...
CVE-2022-24544 Windows Kerberos Elevation of Privilege Vulnerability
...
CVE-2022-24544
Technical details for CVE-2022-24544 are not publicly available in the provided documents. Monitor for updates.
KB5012670: Windows 8.1 and Windows Server 2012 R2 Security Update (April 2022)
The remote Windows host is missing security update 5012639 or cumulative update 5012670. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2022-24474, CVE-2022-24481, CVE-2022-24494,...
KB5012653: Windows 10 version 1507 LTS Security Update (April 2022)
The remote Windows host is missing security update 5012653. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2022-26798, CVE-2022-26801, CVE-2022-26786, CVE-2022-24549, CVE-2022-26794,...
KB5012666: Windows Server 2012 Security Update (April 2022)
The remote Windows host is missing security update 5012666 or cumulative update 5012650. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
KB5012632: Windows Server 2008 Security Update (April 2022)
The remote Windows host is missing security update 5012632 or cumulative update 5012658. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
CVE-2021-24544
creationtimestamp| type| source ---|---|--- 2021-10-25 18:13:54+00:00| seen| https://t.me/cibsecurity/31129...