CVE-2026-25451

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in boldthemes Bold Page Builder bold-page-builder allows Stored XSS.This issue affects Bold Page Builder: from n/a through = 5.6.9...

CVE-2021-25451

A PendingIntent hijacking in NetworkPolicyManagerService prior to SMR Sep-2021 Release 1 allows attackers to get IMSI data...

CVE-2025-25451

creationtimestamp| type| source ---|---|--- 2025-03-06 15:44:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljptkzlsma2f 2025-03-06 17:10:56+00:00| seen| https://t.me/cvedetector/19705 2025-03-08 04:35:52+00:00| seen| Telegram/My9mZil9QWoCdHsRZ395amlu9zHp9MhsLusHSoj-hqrIG2I...

CVE-2025-25451

An issue in TAAGSOLUTIONS GmbH MyTaag v.2024-11-24 and before allows a physically proximate attacker to escalate privileges via the "2faauthorized" Local Storage key...

CVE-2024-25451

creationtimestamp| type| source ---|---|--- 2024-02-09 16:27:19+00:00| seen| https://t.me/ctinow/182124 2024-02-13 02:16:33+00:00| seen| https://t.me/ctinow/183549 2024-03-03 08:41:46+00:00| seen| https://t.me/ctinow/198605 2025-06-12 15:34:10+00:00| published-proof-of-concept|...

CVE-2024-25451

Bento4 v1.6.0-640 was discovered to contain an out-of-memory bug via the AP4DataBuffer::ReallocateBuffer function...

CVE-2024-25451

CVE-2024-25451 concerns Bento4 v1.6.0-640, which contains an out-of-memory bug in the AP4_DataBuffer::ReallocateBuffer() function. Multiple sources confirm the issue and tie it to Bento4’s MP4 reading/writing library, with the vulnerability enabling an OOM condition that can impact system availab...

CVE-2023-25451

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WPChill CPO Content Types plugin = 1.1.0 versions...

CVE-2023-25451

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WPChill CPO Content Types plugin = 1.1.0 versions...

CVE-2023-25451

CVE-2023-25451 is a stored cross-site scripting (XSS) vulnerability in the WordPress plugin WPChill CPO Content Types (versions

CVE-2023-25451 WordPress CPO Content Types Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WPChill CPO Content Types plugin = 1.1.0 versions...

WordPress CPO Content Types Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)

Software CPO Content Types Type Plugin Vulnerable versions = 1.1.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25451 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 1449c76ab8ca Credits Rio Darmawan Required...

CVE-2022-25451

creationtimestamp| type| source ---|---|--- 2022-03-18 23:23:14+00:00| seen| https://t.me/cibsecurity/39277 2023-07-31 12:41:12+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8765...

CVE-2022-25451

The CVE-2022-25451 issue affects Tenda AC6, specifically version V15.03.05.09 multi, where a stack overflow exists in the setstaticroutecfg function and can be triggered via the list parameter. Impact described across sources includes potential arbitrary command execution and broader impacts on c...

CVE-2021-25451

creationtimestamp| type| source ---|---|--- 2021-09-09 22:30:06+00:00| seen| https://t.me/cibsecurity/28624...

CVE-2021-25451

A PendingIntent hijacking in NetworkPolicyManagerService prior to SMR Sep-2021 Release 1 allows attackers to get IMSI data...

CVE-2021-25451

A PendingIntent hijacking in NetworkPolicyManagerService prior to SMR Sep-2021 Release 1 allows attackers to get IMSI data...

CVE-2021-25451

CVE-2021-25451 affects Android’s NetworkPolicyManagerService where a PendingIntent hijack can lead to exposure of IMSI data. The vulnerability is local, requiring user interaction, with a low-moderate CVSS (3.3 on 3.1, base score 3.3; confidentiality impact: Low). Root cause stated: manipulation ...