CVE-2026-29104

creationtimestamp| type| source ---|---|--- 2026-04-15 12:01:58+00:00| seen| https://bsky.app/profile/solomonneas.dev/post/3mjjtxtb55324...

CVE-2024-29104

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Zimma Ltd. Ticket Tailor allows Stored XSS.This issue affects Ticket Tailor: from n/a through 1.10...

CVE-2024-29104

creationtimestamp| type| source ---|---|--- 2024-03-19 17:27:02+00:00| seen| https://t.me/ctinow/211738...

CVE-2024-29104

CVE-2024-29104 is a Stored XSS in the Ticket Tailor WordPress plugin (Ticket Tailor, by Zimma Ltd.), affecting versions up to 1.10. The issue arises from improper neutralization of input during web page generation. Severity is MEDIUM (CVSS v3.1 base score 6.5). Remediation exists: the vulnerabili...

WordPress Ticket Tailor Plugin <= 1.10 is vulnerable to Cross Site Scripting (XSS)

Software Ticket Tailor Type Plugin Vulnerable versions = 1.10 Fixed in 1.12 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29104 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID bf9f96915120 Credits Ray Wilson Required privilege Contributor...

CVE-2023-29104

creationtimestamp| type| source ---|---|--- 2023-05-09 16:38:27+00:00| seen| https://t.me/cibsecurity/63593...

CVE-2023-29104

Summary: CVE-2023-29104 affects Siemens SIMATIC Cloud Connect 7 CC712 and CC716. The issue is a path traversal vulnerability in the upload feature of the device’s web-based management, allowing an authenticated privileged attacker to overwrite files that the ccuser Linux user can write to, or dow...

CVE-2023-29104

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1. The filename in the upload feature of the web based management of the affected device is susceptible to a path traversal vulnerability. This could allow an authenticated privileged remote attacke...

CVE-2022-29104

Windows Print Spooler Elevation of Privilege Vulnerability...

CVE-2022-29104 Windows Print Spooler Elevation of Privilege Vulnerability

...

Microsoft Windows Print Spooler Elevation of Privilege (CVE-2022-29104)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

CVE-2021-29104 There is a stored Cross Site Scripting (XXS) vulnerability in ArcGIS Server Manager version 10.8.1 and below.

A stored Cross Site Scripting XXS vulnerability in ArcGIS Server Manager version 10.8.1 and below may allow a remote unauthenticated attacker to pass and store malicious strings in the ArcGIS Server Manager application...

CVE-2021-29104

ArcGIS Server Manager stored Cross-Site Scripting (XXS) vulnerability affects ArcGIS Server Manager 10.8.1 and earlier. A remote, unauthenticated attacker could pass and store malicious strings in the ArcGIS Server Manager application due to the stored XXS flaw. Remediation is available via the A...