Lucene search
K

23 matches found

ATTACKERKB
ATTACKERKB
added 2026/01/23 2:28 p.m.2 views

CVE-2026-24544

Missing Authorization vulnerability in Harmonic Design HD Quiz hd-quiz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects HD Quiz: from n/a through = 2.0.9...

4.3CVSS5.9AI score0.00197EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 1:54 a.m.10 views

CVE-2023-24544

Improper access control vulnerability in Buffalo network devices allows a network-adjacent attacker to obtain specific files of the product. As a result, the product settings may be altered. The affected products and versions are as follows: BS-GSL2024 firmware Ver. 1.10-0.03 and earlier,...

8.1CVSS6.9AI score0.0029EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:22 p.m.9 views

CVE-2021-24544

The Responsive WordPress Slider WordPress plugin through 2.2.0 does not sanitise and escape some of the Slider options, allowing Cross-Site Scripting payloads to be set in them. Furthermore, as by default any authenticated user is allowed to create Sliders...

5.4CVSS6.2AI score0.006EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/02/07 9:49 a.m.7 views

CVE-2025-24544

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dashed-slug.net Bitcoin and Altcoin Wallets wallets allows Reflected XSS.This issue affects Bitcoin and Altcoin Wallets: from n/a through = 6.3.1...

7.1CVSS5.9AI score0.00315EPSS
Exploits0References1
Circl
Circl
added 2025/02/03 3:18 p.m.3 views

CVE-2025-24544

creationtimestamp| type| source ---|---|--- 2025-02-03 15:18:01+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhbtmynp2n2t 2025-02-03 17:10:42+00:00| seen| https://infosec.exchange/users/cve/statuses/113941062662259261...

7.1CVSS6.9AI score0.00315EPSS
Exploits0References2
NVD
NVD
added 2025/02/03 3:15 p.m.4 views

CVE-2025-24544

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dashed-slug.net Bitcoin and Altcoin Wallets wallets allows Reflected XSS.This issue affects Bitcoin and Altcoin Wallets: from n/a through = 6.3.1...

7.1CVSS0.00315EPSS
Exploits0References1
CVE
CVE
added 2025/02/03 2:22 p.m.52 views

CVE-2025-24544

CVE-2025-24544 affects WordPress plugin Bitcoin and Altcoin Wallets (versions prior to 6.3.1). The root cause is improper input neutralization during web page generation, enabling a Reflected XSS vulnerability. Practical impact (as described) is that an attacker could inject malicious scripts via...

7.1CVSS5.9AI score0.00315EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/03 2:22 p.m.13 views

CVE-2025-24544 WordPress Bitcoin and Altcoin Wallets plugin <= 6.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dashed-slug.net Bitcoin and Altcoin Wallets wallets allows Reflected XSS.This issue affects Bitcoin and Altcoin Wallets: from n/a through = 6.3.1...

7.1CVSS5.9AI score0.00315EPSS
Exploits0References1
CVE
CVE
added 2023/04/11 12:0 a.m.58 views

CVE-2023-24544

CVE-2023-24544 is an improper access control vulnerability in Buffalo network devices. A network-adjacent attacker may obtain specific product files and potentially alter settings. Affected models and versions include: BS-GSL2024 firmware 1.10-0.03 and earlier; BS-GSL2016P 1.10-0.03 and earlier; ...

8.1CVSS7.8AI score0.0029EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/11 12:0 a.m.8 views

CVE-2023-24544

Improper access control vulnerability in Buffalo network devices allows a network-adjacent attacker to obtain specific files of the product. As a result, the product settings may be altered. The affected products and versions are as follows: BS-GSL2024 firmware Ver. 1.10-0.03 and earlier,...

8AI score0.0029EPSS
Exploits0References2
NVD
NVD
added 2023/03/22 2:15 p.m.8 views

CVE-2020-24544

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2020. Notes: none...

6.5AI score
Exploits0
NVD
NVD
added 2022/04/15 7:15 p.m.23 views

CVE-2022-24544

Windows Kerberos Elevation of Privilege Vulnerability...

7.8CVSS0.00639EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/04/15 7:4 p.m.28 views

CVE-2022-24544 Windows Kerberos Elevation of Privilege Vulnerability

...

7.8CVSS8.8AI score0.00639EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/04/15 7:4 p.m.24 views

CVE-2022-24544 Windows Kerberos Elevation of Privilege Vulnerability

...

7.8CVSS7.2AI score0.00639EPSS
Exploits0References1
CVE
CVE
added 2022/04/15 7:4 p.m.115 views

CVE-2022-24544

Technical details for CVE-2022-24544 are not publicly available in the provided documents. Monitor for updates.

7.8CVSS8.6AI score0.00639EPSS
Exploits0References1Affected Software10
Tenable Nessus
Tenable Nessus
added 2022/04/12 12:0 a.m.114 views

KB5012670: Windows 8.1 and Windows Server 2012 R2 Security Update (April 2022)

The remote Windows host is missing security update 5012639 or cumulative update 5012670. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2022-24474, CVE-2022-24481, CVE-2022-24494,...

10CVSS8.1AI score0.91316EPSS
Exploits23References66
Tenable Nessus
Tenable Nessus
added 2022/04/12 12:0 a.m.74 views

KB5012653: Windows 10 version 1507 LTS Security Update (April 2022)

The remote Windows host is missing security update 5012653. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2022-26798, CVE-2022-26801, CVE-2022-26786, CVE-2022-24549, CVE-2022-26794,...

10CVSS8.1AI score0.91316EPSS
Exploits23References54
Tenable Nessus
Tenable Nessus
added 2022/04/12 12:0 a.m.77 views

KB5012666: Windows Server 2012 Security Update (April 2022)

The remote Windows host is missing security update 5012666 or cumulative update 5012650. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...

10CVSS8.2AI score0.91316EPSS
Exploits21References57
Tenable Nessus
Tenable Nessus
added 2022/04/12 12:0 a.m.82 views

KB5012632: Windows Server 2008 Security Update (April 2022)

The remote Windows host is missing security update 5012632 or cumulative update 5012658. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...

10CVSS8.4AI score0.91316EPSS
Exploits20References47
Circl
Circl
added 2021/10/25 6:13 p.m.5 views

CVE-2021-24544

creationtimestamp| type| source ---|---|--- 2021-10-25 18:13:54+00:00| seen| https://t.me/cibsecurity/31129...

5.4CVSS5.5AI score0.006EPSS
Exploits2References1
Rows per page
Query Builder