CVE-2026-29140

creationtimestamp| type| source ---|---|--- 2026-04-02 10:11:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miixquho7j2g 2026-04-02 11:20:38+00:00| seen| Telegram/gqnqvxcLpfM-QzjKR2b1lJqF9lh4WXmMivWkzQg3SSVoSEI...

CVE-2026-29140

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to cause attacker-controlled certificates to be used for future encryption to a victim by adding the certificates to S/MIME signatures...

CVE-2026-29140

CVE-2026-29140 affects SEPPmail Secure Email Gateway prior to version 15.0.3. The issue allows an attacker to cause attacker-controlled certificates to be used for future encryption on a victim by inserting those certificates into S/MIME signatures. The root cause is not explicitly broken out bey...

CVE-2024-29140

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt Manning MJM Clinic allows Stored XSS.This issue affects MJM Clinic: from n/a through 1.1.22...

CVE-2021-29140

A remote XML external entity XXE vulnerability was discovered in Aruba ClearPass Policy Manager versions: Prior to 6.9.5, 6.8.9, 6.7.14-HF1. Aruba has released patches for Aruba ClearPass Policy Manager that address this security vulnerability...

CVE-2024-29140

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt Manning MJM Clinic allows Stored XSS.This issue affects MJM Clinic: from n/a through 1.1.22...

CVE-2024-29140

CVE-2024-29140 : Stored XSS in the MJM Clinic WordPress plugin (versions up to 1.1.22). Exploitation requires Administrator privileges; input is improperly sanitized in web-page generation, allowing script execution on affected pages. Patch available in 1.1.23, upgrade recommended. Public advisor...

CVE-2024-29140 WordPress MJM Clinic plugin <= 1.1.22 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt Manning MJM Clinic allows Stored XSS.This issue affects MJM Clinic: from n/a through 1.1.22...

CVE-2024-29140 WordPress MJM Clinic plugin <= 1.1.22 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Matt Manning MJM Clinic allows Stored XSS.This issue affects MJM Clinic: from n/a through 1.1.22...

WordPress MJM Clinic Plugin <= 1.1.22 is vulnerable to Cross Site Scripting (XSS)

Software MJM Clinic Type Plugin Vulnerable versions = 1.1.22 Fixed in 1.1.23 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29140 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID e741190c1624 Credits Faizal Abroni Required privilege...

CVE-2023-29140

creationtimestamp| type| source ---|---|--- 2023-03-31 22:22:21+00:00| seen| https://t.me/cibsecurity/61270...

CVE-2023-29140

An issue was discovered in the GrowthExperiments extension for MediaWiki through 1.39.3. Attackers might be able to see edits for which the username has been hidden, because there is no check for revdeleted...

CVE-2023-29140

An issue was discovered in the GrowthExperiments extension for MediaWiki through 1.39.3. Attackers might be able to see edits for which the username has been hidden, because there is no check for revdeleted...

CVE-2023-29140

An issue was discovered in the GrowthExperiments extension for MediaWiki through 1.39.3. Attackers might be able to see edits for which the username has been hidden, because there is no check for revdeleted...

CVE-2023-29140

An issue was discovered in the GrowthExperiments extension for MediaWiki through 1.39.3. Attackers might be able to see edits for which the username has been hidden, because there is no check for revdeleted...

CVE-2023-29140

CVE-2023-29140 concerns the GrowthExperiments extension for MediaWiki up to version 1.39.3. The root cause is a missing check for rev_deleted, which could allow an attacker to view edits where the username has been hidden. The available connected documents corroborate the exact affected component...

CVE-2022-29140

Windows Print Spooler Information Disclosure Vulnerability...

CVE-2022-29140

Technical details about CVE-2022-29140 (Windows Print Spooler information disclosure) are not publicly provided in the supplied Connected Documents. No specific affected product/version or remediation is described here; monitor official advisories for updates.

CVE-2021-29140

CVE-2021-29140 is an XXE vulnerability in Aruba ClearPass Policy Manager. The issue affects versions prior to 6.9.5, 6.8.9, and 6.7.14‑HF1, where XML external entities could be processed, enabling an attacker to read arbitrary files or cause DoS via specially crafted XML. Aruba released patches t...

CVE-2020-29140

OpenEMR is affected by CVE-2020-29140: a SQL injection in interface/reports/immunization_report.php susceptible to exploitation by a remote authenticated attacker via the form_code parameter. The issue affects OpenEMR prior to version 5.0.2.5. The vulnerability is due to improper handling of user...