CVE-2026-29096

creationtimestamp| type| source ---|---|--- 2026-03-19 23:25:31+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhh5l7fcku2c...

CVE-2024-29096

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt Manning MJM Clinic.This issue affects MJM Clinic: from n/a through 1.1.22...

CVE-2024-29096

creationtimestamp| type| source ---|---|--- 2024-03-19 17:26:55+00:00| seen| https://t.me/ctinow/211731...

CVE-2024-29096

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt Manning MJM Clinic.This issue affects MJM Clinic: from n/a through 1.1.22...

CVE-2024-29096 WordPress MJM Clinic plugin <= 1.1.22 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt Manning MJM Clinic.This issue affects MJM Clinic: from n/a through 1.1.22...

CVE-2024-29096

CVE-2024-29096 is an XSS vulnerability in the MJM Clinic WordPress plugin (MJM Clinic), affecting versions from unspecified up to and including 1.1.22. The root cause is improper neutralization/escaping of user input during web page generation, enabling cross‑site scripting. The Red Hat entry rei...

CVE-2023-29096

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BestWebSoft Contact Form to DB by BestWebSoft – Messages Database Plugin For WordPress.This issue affects Contact Form to DB by BestWebSoft – Messages Database Plugin For WordPress: from n/a throug...

CVE-2023-29096

CVE-2023-29096 affects the WordPress plugin Contact Form to DB by BestWebSoft – Messages Database, with an SQL Injection due to improper neutralization of input in an SQL command. Affected versions:

WordPress Contact Form to DB by BestWebSoft Plugin <= 1.7.0 is vulnerable to SQL Injection

Software Contact Form to DB by BestWebSoft Type Plugin Vulnerable versions = 1.7.0 Fixed in 1.7.1 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-29096 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 44860e7fab20 Credits easyBug Required privilege...

Dell Wyse Management Suite < 3.7 Multiple Vulnerabilities (DSA-2022-143)

The version of Dell Wyse Management Suite installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the DSA-2022-143 advisory. - jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of t...

CVE-2022-29096

Dell Wyse Management Suite before 3.7 (3.6.1 and below) contains a Reflected Cross-Site Scripting vulnerability in the saveGroupConfigurations page. An authenticated attacker could inject malicious HTML/JavaScript, running in the victim’s browser context and enabling information disclosure, sessi...

CVE-2021-29096 ArcGIS general raster security update: use-after-free

A use-after-free vulnerability when parsing a specially crafted file in Esri ArcReader, ArcGIS Desktop, ArcGIS Engine 10.8.1 and earlier and ArcGIS Pro 2.7 and earlier allows an unauthenticated attacker to achieve arbitrary code execution in the context of the current user...

CVE-2021-29096

The CVE-2021-29096 issue affects Esri ArcReader, ArcGIS Desktop/Engine (10.8.1 and earlier) and ArcGIS Pro (2.7 and earlier). It is a use-after-free in PMF file parsing that allows an unauthenticated attacker to achieve arbitrary code execution in the context of the current user. In the described...