CVE-2026-27202

creationtimestamp| type| source ---|---|--- 2026-02-24 16:07:30+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfmkessg5i2s 2026-02-24 16:07:36+00:00| seen| https://mastodon.social/ap/users/115755483699003887/statuses/116126464556997178...

CVE-2026-27202

GetSimple CMS is a content management system. All versions of GetSimple CMS have a flaw in the Uploaded Files feature that allows for arbitrary file reads. This issue has not been fixed at the time of publication...

CVE-2022-27202

Jenkins Extended Choice Parameter Plugin 346.vd87693c5a86c and earlier does not escape the value and description of extended choice parameters of radio buttons or check boxes type, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...

CVE-2025-27202

Animate versions 24.0.7, 23.0.10 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a vict...

CVE-2025-27202

Animate versions 24.0.7, 23.0.10 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a vict...

CVE-2025-27202 Animate | Out-of-bounds Read (CWE-125)

Animate versions 24.0.7, 23.0.10 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a vict...

CVE-2025-27202 Animate | Out-of-bounds Read (CWE-125)

Animate versions 24.0.7, 23.0.10 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a vict...

CVE-2025-27202

CVE-2025-27202 affects Adobe Animate. Affected are Animate versions 24.0.7, 23.0.10 and earlier, with an out-of-bounds read that can disclose memory and potentially bypass ASLR. Exploitation requires user interaction: a victim must open a malicious file. The issue is caused by an out-of-bounds re...

F5 Networks BIG-IP : BIG-IP Configuration utility vulnerability (K000138520)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.4 / 16.1.4.3 / 17.1.1.3. It is, therefore, affected by a vulnerability as referenced in the K000138520 advisory. - A DOM-based cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP...

CVE-2024-27202

A DOM-based cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2024-27202

CVE-2024-27202 is a DOM-based XSS in the BIG-IP Configuration utility. Affected BIG-IP versions include 17.1.0–17.1.1, 16.1.0–16.1.4, and 15.1.0–15.1.10. An attacker can run JavaScript in the context of an authenticated admin session via a malicious page, a control-plane issue with no data-plane ...

CVE-2024-27202 BIG-IP TMUI XSS vulnerability

A DOM-based cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2023-27202

creationtimestamp| type| source ---|---|--- 2023-03-10 00:20:42+00:00| seen| https://t.me/cibsecurity/59761 2025-03-05 18:30:16+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6565 2025-03-06 02:16:33+00:00| seen| Telegram/sKkv5emVPQaIkqkewFMPEQ4a1wORzuY6MsmKqscAew58u3cZ...

CVE-2023-27202

Best POS Management System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /kruxton/receipt.php...

CVE-2023-27202

Best POS Management System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /kruxton/receipt.php...

CVE-2023-27202

CVE-2023-27202 affects Best POS Management System 1.0. The vulnerability is a SQL injection in the /kruxton/receipt.php endpoint, exploitable via the id parameter. According to the CVSS/metrics in the records, it yields a CRITICAL impact with high confidentiality, integrity, and availability risk...

CVE-2023-27202

Best POS Management System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /kruxton/receipt.php...

com.cloudbees.jenkins.plugins:custom-tools-plugin (>=0.4 <=0.6) potentially affected by CVE-2022-27202 via org.jenkins-ci.plugins:extended-choice-parameter (=0.28)

org.jenkins-ci.plugins:extended-choice-parameter MAVEN version =0.28 is affected by a known vulnerability. The following packages have a transitive dependency on org.jenkins-ci.plugins:extended-choice-parameter and may be impacted: - com.cloudbees.jenkins.plugins:custom-tools-plugin =0.4, =0.6...

CVE-2022-27202

creationtimestamp| type| source ---|---|--- 2022-03-15 19:19:29+00:00| seen| https://t.me/cibsecurity/38938...

CVE-2022-27202

Jenkins Extended Choice Parameter Plugin 346.vd87693c5a86c and earlier does not escape the value and description of extended choice parameters of radio buttons or check boxes type, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure permission...