Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

32 matches found

CNVD
CNVDadded 2025/09/05 12:0 a.m.2 views

SAMSUNG Notes Information Disclosure Vulnerability (CNVD-2025-24709)

SAMSUNG Notes is a software application from Samsung South Korea. It is used to provide a record function. SAMSUNG Notes suffers from an information disclosure vulnerability that can be exploited by an attacker to cause data access across user profiles...

4.3CVSS6.3AI score0.00026EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 11:40 a.m.4 views

CVE-2025-24709

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Plethora Plugins Plethora Plugins Tabs + Accordions plethora-tabs-accordions allows Stored XSS.This issue affects Plethora Plugins Tabs + Accordions: from n/a through = 1.1.5...

6.5CVSS7.2AI score0.00347EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 3:22 a.m.7 views

CVE-2023-24709

An issue found in Paradox Security Systems IPR512 allows attackers to cause a denial of service via the login.html and login.xml parameters...

7.5CVSS6.6AI score0.34976EPSS
Exploits9References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:24 p.m.5 views

CVE-2021-24709

The Weather Effect WordPress plugin before 1.3.6 does not properly validate and escape some of its settings like sizeleaf, flakesleaf, speed which could lead to Stored Cross-Site Scripting issues...

4.8CVSS5.8AI score0.00206EPSS
Exploits2References1
Circl
Circladded 2025/01/24 9:47 p.m.4 views

CVE-2025-24709

creationtimestamp| type| source ---|---|--- 2025-01-24 21:47:08+00:00| seen| https://infosec.exchange/users/cve/statuses/113885526623072647...

6.5CVSS6.9AI score0.00347EPSS
Exploits0References1
NVD
NVDadded 2025/01/24 6:15 p.m.7 views

CVE-2025-24709

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Plethora Plugins Plethora Plugins Tabs + Accordions plethora-tabs-accordions allows Stored XSS.This issue affects Plethora Plugins Tabs + Accordions: from n/a through = 1.1.5...

6.5CVSS0.00347EPSS
Exploits0References1
CVE
CVEadded 2025/01/24 5:25 p.m.45 views

CVE-2025-24709

CVE-2025-24709: Stored XSS in Plethora Plugins Tabs + Accordions (

6.5CVSS7.2AI score0.00347EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/01/24 5:25 p.m.14 views

CVE-2025-24709 WordPress Plethora Plugins Tabs + Accordions plugin <= 1.1.5 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Plethora Plugins Plethora Plugins Tabs + Accordions allows Stored XSS. This issue affects Plethora Plugins Tabs + Accordions: from n/a through 1.1.5...

6.5CVSS6.7AI score0.00347EPSS
Exploits0References1
CVE
CVEadded 2024/11/22 8:44 p.m.39 views

CVE-2024-11545

CVE-2024-11545 : IrfanView is affected by a use-after-free in the DXF file parser. The flaw arises from not validating the existence of an object before performing operations, enabling a remote code execution when a user opens a malicious DXF file or visits a malicious page. Exploitation requires...

7.8CVSS8AI score0.00738EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/11/22 8:44 p.m.15 views

CVE-2024-11545 IrfanView DXF File Parsing Use-After-Free Remote Code Execution Vulnerability

IrfanView DXF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...

7.8CVSS0.00738EPSS
Exploits0References1
Patchstack
Patchstackadded 2024/06/20 12:0 a.m.8 views

WordPress WP-Lister Lite for eBay Plugin <= 3.5.8 is vulnerable to Sensitive Data Exposure

Software WP-Lister Lite for eBay Type Plugin Vulnerable versions = 3.5.8 Fixed in 3.5.9 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-24709 Patch priority Low CVSS severity Low 7.5 Developer WP Lab PSID 227921a369c8 Credits Aman Rawat Required privileg...

6.7AI score
Exploits0References2Affected Software1
CVE
CVEadded 2024/02/07 3:13 a.m.29 views

CVE-2024-24709

CVE-2024-24709 relates to the WordPress plugin Shareaholic (

7.5AI score
Exploits0
Patchstack
Patchstackadded 2024/01/31 12:0 a.m.14 views

WordPress Shareaholic Plugin <= 9.7.11 is vulnerable to Broken Access Control

Software Shareaholic Type Plugin Vulnerable versions = 9.7.11 Fixed in 9.7.12 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-24709 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID e941ba723f22 Credits Abdi Pranata Required...

6.5AI score
Exploits0References2Affected Software1
Exploit DB
Exploit DBadded 2023/04/10 12:0 a.m.243 views

Paradox Security Systems IPR512 - Denial Of Service

!/bin/bash Exploit Title: Paradox Security Systems IPR512 - Denial Of Service Google Dork: intitle:"ipr512 - login screen" Date: 09-APR-2023 Exploit Author: Giorgi Dograshvili Vendor Homepage: Paradox - Headquarters https://www.paradox.com/Products/default.asp?PID=423 Version: IPR512 CVE :...

7.5CVSS7.6AI score0.34976EPSS
Exploits9
Packet Storm
Packet Stormadded 2023/04/10 12:0 a.m.242 views

Paradox Security Systems IPR512 Denial Of Service

!/bin/bash Exploit Title: Paradox Security Systems IPR512 - Denial Of Service Google Dork: intitle:"ipr512 - login screen" Date: 09-APR-2023 Exploit Author: Giorgi Dograshvili Vendor Homepage: Paradox - Headquarters https://www.paradox.com/Products/default.asp?PID=423 Version: IPR512 CVE :...

7.5CVSS7.6AI score0.34976EPSS
Exploits9
0day.today
0day.todayadded 2023/04/10 12:0 a.m.245 views

Paradox Security Systems IPR512 - Denial Of Service Exploit

!/bin/bash Exploit Title: Paradox Security Systems IPR512 - Denial Of Service Google Dork: intitle:"ipr512 - login screen" Date: 09-APR-2023 Exploit Author: Giorgi Dograshvili Vendor Homepage: Paradox - Headquarters https://www.paradox.com/Products/default.asp?PID=423 Version: IPR512 CVE :...

7.5CVSS7.6AI score0.34976EPSS
Exploits9
Circl
Circladded 2023/04/09 12:35 p.m.0 views

CVE-2023-24709

creationtimestamp| type| source ---|---|--- 2023-04-09 12:35:46+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/4136 2023-05-01 05:07:10+00:00| published-proof-of-concept| https://t.me/malwar3s/44 2025-02-28 22:27:40+00:00| published-proof-of-concept|...

7.5CVSS7.3AI score0.34976EPSS
Exploits9References3
Cvelist
Cvelistadded 2023/03/21 12:0 a.m.13 views

CVE-2023-24709

An issue found in Paradox Security Systems IPR512 allows attackers to cause a denial of service via the login.html and login.xml parameters...

7.5AI score0.34976EPSS
Exploits9References3
CVE
CVEadded 2023/03/21 12:0 a.m.65 views

CVE-2023-24709

Paradox Security Systems IPR512 contains a Denial of Service vulnerability (CVE-2023-24709) in the web panel due to handling of login.html and login.xml parameters. Attackers can crash the login page, as demonstrated by PoC/exploit material tied to the IPR512, with no publicly documented fix in t...

7.5CVSS7.2AI score0.34976EPSS
Exploits9References3Affected Software1
GithubExploit
GithubExploitadded 2023/01/26 12:13 p.m.149 views

Exploit for Code Injection in Paradox Ipr512_Firmware

Injection vulnerability in Paradox Security Systems IPR512 - C...

7.5CVSS7.8AI score0.34976EPSS
Exploits9
Rows per page
Query Builder