CVE-2026-24979

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NooTheme Jobica Core jobica-core allows Reflected XSS.This issue affects Jobica Core: from n/a through = 1.4.1...

CVE-2026-24979 WordPress Jobica Core plugin <= 1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NooTheme Jobica Core jobica-core allows Reflected XSS.This issue affects Jobica Core: from n/a through = 1.4.1...

CVE-2026-24979

The CVE-2026-24979 issue affects the WordPress NooTheme Jobica Core plugin (jobica-core) up to version 1.4.1, with a Reflected Cross-Site Scripting (XSS) vulnerability in web page generation. The root cause is improper input handling within the plugin’s jobica-core component, enabling an attacker...

Linux Distros Unpatched Vulnerability : CVE-2020-24979

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was n...

RHEL 7 : bison (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bison: allows attackers to cause a denial of service CVE-2020-14150 - Rejected reason: DO NOT USE THIS...

RHEL 6 : bison (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bison: use-after-free via crafted input file containing a NULL byte can lead to DoS CVE-2020-24240 - GNU...

CVE-2023-24979

creationtimestamp| type| source ---|---|--- 2023-02-14 14:35:55+00:00| seen| https://t.me/cibsecurity/58083...

CVE-2023-24979

Siemens Tecnomatix Plant Simulation is affected by an out-of-bounds write in the SPP file parser for all versions before V2201.0006. The flaw can allow code execution in the current process context. Exploitation details indicate this could be triggered by parsing a crafted SPP file; in ZDI adviso...

CVE-2022-24979

The CVE-2022-24979 vulnerability affects the Varnishcache extension for TYPO3 (before 2.0.1). The Edge Site Includes (ESI) content element renderer does not perform an access check, enabling an unauthenticated user to render various content elements and potentially access internal content (IDOR)....

CVE-2021-24979

The Paid Memberships Pro WordPress plugin before 2.6.6 does not escape the s parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting...

CVE-2021-24979

The CVE-2021-24979 entry concerns the Paid Memberships Pro WordPress plugin (before 2.6.6). Affected component: admin page output uses the s parameter without escaping, enabling reflected XSS. According to the nuclei template, attackers can inject JavaScript via reflected XSS in the search parame...

CVE-2020-24979

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none Mitigation This flaw...

CVE-2020-24979

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

CVE-2020-24979

This CVE entry is rejected/not used and does not represent an active vulnerability entry.

CVE-2020-24979

...