CVE-2026-30927

Admidio is an open-source user management solution. Prior to 5.0.6, in modules/events/eventsfunction.php, the event participation logic allows any user who can participate in an event to register OTHER users by manipulating the useruuid GET parameter. The condition uses || OR, meaning if...

CVE-2026-30927

creationtimestamp| type| source ---|---|--- 2026-03-10 16:40:16+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-30927...

Adobe Experience Manager cross-site scripting vulnerability (CNVD-2025-30927)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

CVE-2025-30927

Missing Authorization vulnerability in Wordapp Team Wordapp wordapp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wordapp: from n/a through = 1.7.0...

CVE-2025-30927 WordPress Wordapp plugin <= 1.7.0 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Wordapp Team Wordapp wordapp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wordapp: from n/a through = 1.7.0...

CVE-2025-30927 WordPress Wordapp plugin <= 1.7.0 - Broken Access Control Vulnerability

Missing Authorization vulnerability in Wordapp Team Wordapp wordapp allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wordapp: from n/a through = 1.7.0...

WordPress Wordapp plugin <= 1.7.0 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by HLog in WordPress Plugin Wordapp versions = 1.7.0...

CVE-2021-30927

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. An application may be able to execute arbitrary code with kernel privileges...

CVE-2024-30927

Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary code via the racer-results.php component...

CVE-2024-30927

CVE-2024-30927 affects DerbyNet v9.0 and earlier, with a Cross Site Scripting vulnerability in the racer-results.php component. The issue stems from improper handling/validation of user-supplied input (notably the racerid parameter), allowing an attacker to inject arbitrary script that can be exe...

CVE-2024-30927

Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary code via the racer-results.php component...

CVE-2024-30927

creationtimestamp| type| source ---|---|--- 2024-04-06 09:41:43+00:00| seen| https://t.me/ctinow/214254...

CVE-2023-30927

creationtimestamp| type| source ---|---|--- 2023-07-12 12:48:26+00:00| seen| https://t.me/cibsecurity/66504...

CVE-2023-30927

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

CVE-2023-30927

Summary : CVE-2023-30927 is a local information disclosure vulnerability due to a missing permission check in the telephony service. The NVD entry reports a CVSSv3.1 base score of 5.5 (LOW privileges required, LOCAL exploit, HIGH confidentiality impact). Connected sources corroborate the issue an...

CVE-2022-30927

creationtimestamp| type| source ---|---|--- 2022-06-07 02:30:28+00:00| seen| https://t.me/cibsecurity/43904...

CVE-2022-30927

CVE-2022-30927 describes a SQL injection vulnerability in the software named “Simple Task Scheduling System 1.0” when using MySQL as the application database. The vulnerability allows an attacker to issue SQL commands through the vulnerable id parameter. The connected documents confirm the affect...

CVE-2022-30927

A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable "id" parameter...

CVE-2021-30927

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. An application may be able to execute arbitrary code with kernel privileges...

CVE-2021-30927

CVE-2021-30927 is a use-after-free memory vulnerability in Apple platforms that is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, and watchOS 8.3. The issue may allow an application to execute arbitrary code with kernel ...