CVE-2026-24930

creationtimestamp| type| source ---|---|--- 2026-02-06 09:17:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3me6l3dlmwf2o...

CVE-2026-24930

CVE-2026-24930 is a use-after-free (UAF) concurrency vulnerability in the graphics module that may affect system availability. Documented impact: availability; attack vector is local with low complexity and no user interaction required. Affected versions are described as prior to 2026; PT-2026-67...

CVE-2022-24930

An Improper access control vulnerability in StRetailModeReceiver in Wear OS 3.0 prior to Firmware update MAR-2022 Release allows untrusted applications to reset default app settings without a proper permission...

CVE-2024-24930

creationtimestamp| type| source ---|---|--- 2024-02-12 07:21:49+00:00| seen| https://t.me/ctinow/182918 2024-03-03 14:46:48+00:00| seen| https://t.me/ctinow/198758...

CVE-2024-24930

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in OTWthemes.Com Buttons Shortcode and Widget allows Stored XSS.This issue affects Buttons Shortcode and Widget: from n/a through 1.16...

CVE-2024-24930

CVE-2024-24930 is a stored XSS in the WordPress Buttons Shortcode and Widget plugin (

CVE-2024-24930 WordPress Buttons Shortcode and Widget Plugin <= 1.16 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in OTWthemes.Com Buttons Shortcode and Widget allows Stored XSS.This issue affects Buttons Shortcode and Widget: from n/a through 1.16...

WordPress Buttons Shortcode and Widget Plugin <= 1.16 is vulnerable to Cross Site Scripting (XSS)

Software Buttons Shortcode and Widget Type Plugin Vulnerable versions = 1.16 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-24930 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7667016bc51d Credits Ngô Thiên An ancorn from...

Microsoft OneDrive for MacOS < 23.043.0226 Privilege Escalation

The version of Microsoft OneDrive for MacOS on the remote macOS / Mac OS X host is prior to 23.043.0226. It is, therefore affected by an escalation of privilege vulnerability. An authenticated, local attacker can elevate to SYSTEM privileges. Note that Nessus has not tested for these issues but h...

CVE-2023-24930

creationtimestamp| type| source ---|---|--- 2023-03-14 19:30:31+00:00| seen| https://t.me/cibsecurity/60016 2025-02-28 21:37:38+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6008...

CVE-2023-24930

Microsoft OneDrive for MacOS Elevation of Privilege Vulnerability...

CVE-2023-24930 Microsoft OneDrive for MacOS Elevation of Privilege Vulnerability

...

CVE-2023-24930 Microsoft OneDrive for MacOS Elevation of Privilege Vulnerability

...

CVE-2023-24930

CVE-2023-24930 — Microsoft OneDrive for MacOS Privilege Escalation Affected software: OneDrive for MacOS (macOS). The connected Nessus entry specifies that versions prior to 23.043.0226 are affected. Vulnerability: Elevation of privilege. An authenticated, local attacker can escalate to SYSTEM pr...

KLA48560 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, gain privileges, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. A spoofing...

CVE-2022-24930

CVE-2022-24930 concerns Wear OS 3.0, where the component StRetailModeReceiver suffers an improper access control vulnerability. The available connected sources confirm that untrusted applications could reset default app settings without a proper permission. The issue is tied to Wear OS 3.0 prior ...

CVE-2021-24930

creationtimestamp| type| source ---|---|--- 2021-12-06 18:20:59+00:00| seen| https://t.me/cibsecurity/33386...

CVE-2021-24930 Bookly < 20.3.1 - Staff Member Stored Cross-Site Scripting

The WordPress Online Booking and Scheduling Plugin WordPress plugin before 20.3.1 does not escape the Staff Full Name field before outputting it back in a page, which could lead to a Stored Cross-Site Scripting issue...

CVE-2021-24930

The CVE-2021-24930 relates to the WordPress Bookly/Booking plugin (Bookly) for WordPress, affected in versions up to 20.3.0. The root cause is failure to escape the Staff Full Name field before output, causing a Stored Cross-Site Scripting (XSS) vulnerability. The NVD data indicates a CVSSv3.1 ba...

CVE-2013-2760

creationtimestamp| type| source ---|---|--- 2013-04-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/24930...