Lucene search
K

15 matches found

Nuclei
Nuclei
added yesterday24 views

WordPress Super Socializer <7.13.30 - Cross-Site Scripting

WordPress Super Socializer plugin before 7.13.30 contains a reflected cross-site scripting vulnerability. It does not sanitize and escape the urls parameter in its thechampsharingcount AJAX action available to both unauthenticated and authenticated users before outputting it back in the response...

6.1CVSS6.2AI score0.01938EPSS
Exploits1References3
Circl
Circl
added 2026/04/08 11:30 p.m.7 views

CVE-2026-24987

creationtimestamp| type| source ---|---|--- 2026-04-08 23:30:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mizh5uqn4j2h...

6.5CVSS5.9AI score0.00363EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:48 a.m.10 views

CVE-2020-24987

Tenda AC18 Router through V15.03.05.05EN and through V15.03.05.196318 CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck function in /usr/lib/lua/ngxauthserver/ngxwdas.lua file if the administrator UI Interface is set to "radius"...

9.8CVSS8.1AI score0.03104EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/14 12:23 p.m.15 views

CVE-2025-24987

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack...

6.6CVSS8.3AI score0.00624EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/03/11 4:59 p.m.12 views

CVE-2025-24987 Windows USB Video Class System Driver Elevation of Privilege Vulnerability

...

6.6CVSS6.6AI score0.00624EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/11 4:59 p.m.26 views

CVE-2025-24987 Windows USB Video Class System Driver Elevation of Privilege Vulnerability

...

6.6CVSS0.00624EPSS
Exploits0References1
Circl
Circl
added 2025/03/11 4:39 p.m.15 views

CVE-2025-24987

creationtimestamp| type| source ---|---|--- 2025-03-11 16:39:36+00:00| seen| https://www.thezdi.com/blog/2025/3/11/the-march-2025-security-update-review 2025-03-11 18:42:29+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7214 2025-03-11 20:06:15+00:00| seen|...

6.8CVSS8AI score0.00624EPSS
Exploits0References3
Circl
Circl
added 2023/02/14 2:35 p.m.4 views

CVE-2023-24987

creationtimestamp| type| source ---|---|--- 2023-02-14 14:35:54+00:00| seen| https://t.me/cibsecurity/58082...

7.8CVSS7.5AI score0.00217EPSS
Exploits0References1
CVE
CVE
added 2023/02/14 10:36 a.m.54 views

CVE-2023-24987

CVE-2023-24987 affects Siemens Tecnomatix Plant Simulation (all versions

7.8CVSS7.7AI score0.00217EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2022/04/11 6:16 p.m.5 views

CVE-2021-24987

creationtimestamp| type| source ---|---|--- 2022-04-11 18:16:02+00:00| seen| https://t.me/cibsecurity/40466...

6.1CVSS6.1AI score0.01938EPSS
Exploits1References1
CVE
CVE
added 2022/04/11 2:40 p.m.105 views

CVE-2021-24987

CVE-2021-24987 affects the WordPress plugin “Social Share, Social Login and Social Comments” (WordPress Super Socializer) prior to 7.13.30. The issue is a reflected Cross‑Site Scripting vulnerability in the_champ_sharing_count AJAX action, where the urls parameter is not sanitized/escaped before ...

6.1CVSS6.1AI score0.01938EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/04/11 2:40 p.m.14 views

CVE-2021-24987 Super Socializer < 7.13.30 - Reflected Cross-Site Scripting

The Social Share, Social Login and Social Comments Plugin WordPress plugin before 7.13.30 does not sanitise and escape the urls parameter in its thechampsharingcount AJAX action available to both unauthenticated and authenticated users before outputting it back in the response, leading to a...

6.2AI score0.01938EPSS
Exploits1References1
NVD
NVD
added 2020/09/04 8:15 p.m.11 views

CVE-2020-24987

Tenda AC18 Router through V15.03.05.05EN and through V15.03.05.196318 CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck function in /usr/lib/lua/ngxauthserver/ngxwdas.lua file if the administrator UI Interface is set to "radius"...

9.8CVSS9.9AI score0.03104EPSS
Exploits0References3
OSV
OSV
added 2020/09/04 8:15 p.m.4 views

CVE-2020-24987

Tenda AC18 Router through V15.03.05.05EN and through V15.03.05.196318 CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck function in /usr/lib/lua/ngxauthserver/ngxwdas.lua file if the administrator UI Interface is set to "radius"...

9.8CVSS7.9AI score0.03104EPSS
Exploits0References3
CVE
CVE
added 2020/09/04 7:24 p.m.56 views

CVE-2020-24987

The CVE-2020-24987 issue affects Tenda AC18 Router firmware V15.03.05.05_EN and V15.03.05.19(6318) CN, where remote code execution can occur due to incorrect authentication handling in the logincheck() function located at /usr/lib/lua/ngx_authserver/ngx_wdas.lua when the administrator UI interfac...

9.8CVSS9.8AI score0.03104EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder