CVE-2021-25933

creationtimestamp| type| source ---|---|--- 2025-04-30 21:15:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14175...

CVE-2024-25933

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Pepro Dev. Group PeproDev Ultimate Invoice.This issue affects PeproDev Ultimate Invoice: from n/a through 1.9.7...

CVE-2024-25933 WordPress PeproDev Ultimate Invoice plugin <= 1.9.7 - Sensitive Data Exposure vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Pepro Dev. Group PeproDev Ultimate Invoice.This issue affects PeproDev Ultimate Invoice: from n/a through 1.9.7...

CVE-2024-25933

CVE-2024-25933 concerns PeproDev Ultimate Invoice plugin for WordPress. Public details in connected sources indicate unauthenticated exposure of sensitive information via the init_plugin path, affecting PeproDev Ultimate Invoice versions up to 1.9.7. The NVD metrics assign a high base score (7.5)...

WordPress PeproDev Ultimate Invoice Plugin <= 1.9.7 is vulnerable to Sensitive Data Exposure

Software PeproDev Ultimate Invoice Type Plugin Vulnerable versions = 1.9.7 Fixed in 1.9.8 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-25933 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 06191f6ec08b Credits Abdi Pranata...

CVE-2023-25933

creationtimestamp| type| source ---|---|--- 2023-05-19 02:32:46+00:00| seen| https://t.me/cibsecurity/64446...

CVE-2023-25933

A type confusion bug in TypedArray prior to commit e6ed9c1a4b02dc219de1648f44cd808a56171b81 could have been used by a malicious attacker to execute arbitrary code via untrusted JavaScript. Note that this is only exploitable in cases where Hermes is used to execute untrusted JavaScript. Hence, mos...

CVE-2023-25933

CVE-2023-25933 concerns the Hermes JavaScript engine in React Native. A type confusion bug in TypedArray prior to commit e6ed9c1a4b02dc219de1648f44cd808a56171b81 could allow arbitrary code execution via untrusted JavaScript when Hermes processes such code. Most React Native apps are not affected ...

CVE-2021-25933

In OpenNMS Horizon and Meridian, a Stored Cross-Site Scripting (XSS) vulnerability arises because validateFormInput() performs improper validation on groupName and groupComment inputs. This affects OpenNMS Horizon versions opennms-1-0-stable through opennms-27.1.0-1 and OpenNMS Meridian versions ...

CVE-2021-25933

In OpenNMS Horizon, versions opennms-1-0-stable through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-foundation-2015.1.0-1 through meridian-foundation-2019.1.18-1; meridian-foundation-2020.1.0-1 through meridian-foundation-2020.1.6-1 are vulnerable to Stored Cross-Site Scripting, since t...