CVE-2026-24927

Out-of-bounds access vulnerability in the frequency modulation module. Impact: Successful exploitation of this vulnerability may affect availability...

PT-2026-6713

Name of the Vulnerable Software and Affected Versions versions prior to 2026-24927 Description An out-of-bounds access issue exists in the frequency modulation module. Successful exploitation could impact system availability. Recommendations At the moment, there is no information about a newer...

CVE-2022-24927

Improper privilege management vulnerability in Samsung Video Player prior to version 7.3.15.30 allows attackers to execute video files without permission...

CVE-2024-24927

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in UnitedThemes Brooklyn | Creative Multi-Purpose Responsive WordPress Theme allows Reflected XSS.This issue affects Brooklyn | Creative Multi-Purpose Responsive WordPress Theme: from n/a through...

CVE-2024-24927

creationtimestamp| type| source ---|---|--- 2024-02-12 07:21:47+00:00| seen| https://t.me/ctinow/182916 2024-03-03 14:46:45+00:00| seen| https://t.me/ctinow/198756...

CVE-2024-24927

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in UnitedThemes Brooklyn | Creative Multi-Purpose Responsive WordPress Theme allows Reflected XSS.This issue affects Brooklyn | Creative Multi-Purpose Responsive WordPress Theme: from n/a through...

CVE-2024-24927 WordPress Brooklyn Theme <= 4.9.7.6 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in UnitedThemes Brooklyn | Creative Multi-Purpose Responsive WordPress Theme allows Reflected XSS.This issue affects Brooklyn | Creative Multi-Purpose Responsive WordPress Theme: from n/a through...

CVE-2024-24927

CVE-2024-24927 affects UnitedThemes Brooklyn – a WordPress theme – with a Reflected XSS caused by improper input neutralization during web page generation. Affected versions are listed as up to 4.9.7.6 (n/a). Multiple sources corroborate the basic vulnerability description, including Red Hat, NVD...

CVE-2023-24927

creationtimestamp| type| source ---|---|--- 2023-04-12 00:29:38+00:00| seen| https://t.me/cibsecurity/61939...

CVE-2023-24927

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability...

CVE-2023-24927

CVE-2023-24927 affects Microsoft PostScript and PCL6 Class Printer Driver and is described as a Remote Code Execution vulnerability. The connected CNVD entry confirms remote code execution exists, but the provided documents do not specify the exact root cause, affected versions, or exploit detail...

CVE-2022-24927

CVE-2022-24927 is a privilege mismanagement vulnerability in Samsung Video Player prior to version 7.3.15.30. The root cause is faulty privilege validation logic that allows an attacker to execute video files without permission. The impact per the CVE is attacker-controlled execution with user pr...

CVE-2021-24927 My Calendar < 3.2.18 - Subscriber+ Reflected Cross-Site Scripting

The My Calendar WordPress plugin before 3.2.18 does not sanitise and escape the callback parameter of the mcpostlookup AJAX action available to any authenticated user before outputting it back in the response, leading to a Reflected Cross-Site Scripting issue...

CVE-2021-24927

The CVE describes a reflected XSS in the WordPress My Calendar plugin up to version 3.2.18. The vulnerability occurs in the mc_post_lookup AJAX action, where the callback parameter is not sanitized/escaped before echoing the response, and the action is accessible to any authenticated user. Affect...