15 matches found
WordPress Super Socializer <7.13.30 - Cross-Site Scripting
WordPress Super Socializer plugin before 7.13.30 contains a reflected cross-site scripting vulnerability. It does not sanitize and escape the urls parameter in its thechampsharingcount AJAX action available to both unauthenticated and authenticated users before outputting it back in the response...
CVE-2026-24987
creationtimestamp| type| source ---|---|--- 2026-04-08 23:30:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mizh5uqn4j2h...
CVE-2020-24987
Tenda AC18 Router through V15.03.05.05EN and through V15.03.05.196318 CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck function in /usr/lib/lua/ngxauthserver/ngxwdas.lua file if the administrator UI Interface is set to "radius"...
CVE-2025-24987
Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack...
CVE-2025-24987 Windows USB Video Class System Driver Elevation of Privilege Vulnerability
...
CVE-2025-24987 Windows USB Video Class System Driver Elevation of Privilege Vulnerability
...
CVE-2025-24987
creationtimestamp| type| source ---|---|--- 2025-03-11 16:39:36+00:00| seen| https://www.thezdi.com/blog/2025/3/11/the-march-2025-security-update-review 2025-03-11 18:42:29+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7214 2025-03-11 20:06:15+00:00| seen|...
CVE-2023-24987
creationtimestamp| type| source ---|---|--- 2023-02-14 14:35:54+00:00| seen| https://t.me/cibsecurity/58082...
CVE-2023-24987
CVE-2023-24987 affects Siemens Tecnomatix Plant Simulation (all versions
CVE-2021-24987
creationtimestamp| type| source ---|---|--- 2022-04-11 18:16:02+00:00| seen| https://t.me/cibsecurity/40466...
CVE-2021-24987
CVE-2021-24987 affects the WordPress plugin “Social Share, Social Login and Social Comments” (WordPress Super Socializer) prior to 7.13.30. The issue is a reflected Cross‑Site Scripting vulnerability in the_champ_sharing_count AJAX action, where the urls parameter is not sanitized/escaped before ...
CVE-2021-24987 Super Socializer < 7.13.30 - Reflected Cross-Site Scripting
The Social Share, Social Login and Social Comments Plugin WordPress plugin before 7.13.30 does not sanitise and escape the urls parameter in its thechampsharingcount AJAX action available to both unauthenticated and authenticated users before outputting it back in the response, leading to a...
CVE-2020-24987
Tenda AC18 Router through V15.03.05.05EN and through V15.03.05.196318 CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck function in /usr/lib/lua/ngxauthserver/ngxwdas.lua file if the administrator UI Interface is set to "radius"...
CVE-2020-24987
Tenda AC18 Router through V15.03.05.05EN and through V15.03.05.196318 CN devices could cause a remote code execution due to incorrect authentication handling of vulnerable logincheck function in /usr/lib/lua/ngxauthserver/ngxwdas.lua file if the administrator UI Interface is set to "radius"...
CVE-2020-24987
The CVE-2020-24987 issue affects Tenda AC18 Router firmware V15.03.05.05_EN and V15.03.05.19(6318) CN, where remote code execution can occur due to incorrect authentication handling in the logincheck() function located at /usr/lib/lua/ngx_authserver/ngx_wdas.lua when the administrator UI interfac...