CVE-2026-32454

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeFusion Avada Core fusion-core allows DOM-Based XSS.This issue affects Avada Core: from n/a through 5.15.0...

CVE-2026-32454

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeFusion Avada Core fusion-core allows DOM-Based XSS.This issue affects Avada Core: from n/a through 5.15.0...

CVE-2026-32454 WordPress Avada Core plugin < 5.15.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ThemeFusion Avada Core fusion-core allows DOM-Based XSS.This issue affects Avada Core: from n/a through 5.15.0...

CVE-2024-32454

Server-Side Request Forgery SSRF vulnerability in Wappointment Appointment Bookings for Zoom GoogleMeet and more – Wappointment.This issue affects Appointment Bookings for Zoom GoogleMeet and more – Wappointment: from n/a through 2.6.0...

CVE-2025-32454

creationtimestamp| type| source ---|---|--- 2025-05-15 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-135-06 2025-06-12 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-162-01...

CVE-2025-32454

Summary (CVE-2025-32454): Siemens products Teamcenter Visualization V14.3 (prior to 14.3.0.14), V2312 (prior to 2312.0010), V2406 (prior to 2406.0008), V2412 (prior to 2412.0004) and Tecnomatix Plant Simulation V2404 (prior to 2404.0013) contain an out-of-bounds read while parsing specially craft...

CVE-2024-32454

CVE-2024-32454 is an SSRF vulnerability in the WordPress plugin Appointment Bookings for Zoom, Google Meet, and related tools (Wappointment), affecting versions up to 2.6.0. It is an authenticated (Administrator+) issue that could enable server-side requests from the plugin. The Patch status indi...

CVE-2024-32454 WordPress Wappointment plugin <= 2.6.0 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Wappointment Appointment Bookings for Zoom GoogleMeet and more – Wappointment.This issue affects Appointment Bookings for Zoom GoogleMeet and more – Wappointment: from n/a through 2.6.0...

CVE-2024-32454 WordPress Wappointment plugin <= 2.6.0 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Wappointment Appointment Bookings for Zoom GoogleMeet and more – Wappointment.This issue affects Appointment Bookings for Zoom GoogleMeet and more – Wappointment: from n/a through 2.6.0...

WordPress Appointment Bookings for Zoom GoogleMeet and more – Wappointment Plugin <= 2.6.0 is vulnerable to Server Side Request Forgery (SSRF)

Software Appointment Bookings for Zoom GoogleMeet and more – Wappointment Type Plugin Vulnerable versions = 2.6.0 Fixed in 2.6.1 OWASP Top 10 A10: Server-Side Request Forgery SSRF Classification Server Side Request Forgery SSRF CVE CVE-2024-32454 Patch priority Low CVSS severity Low 4.4 Developer...

CVE-2023-32454

creationtimestamp| type| source ---|---|--- 2024-02-06 09:26:13+00:00| seen| https://t.me/ctinow/179848 2024-03-01 09:11:15+00:00| seen| https://t.me/ctinow/197403...

CVE-2023-32454

DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service...

CVE-2023-32454

Dell DUP Framework ≤ 4.9.4.36 is affected by an insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit this to create arbitrary files, potentially causing denial of service. Affected product: Dell Update Package Framework. Root cause: insec...

CVE-2023-32454

DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service...

CVE-2022-32454

creationtimestamp| type| source ---|---|--- 2022-10-25 20:26:52+00:00| seen| https://t.me/cibsecurity/52024...

CVE-2022-32454

A stack-based buffer overflow vulnerability exists in the XCMD setIPCam functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted XCMD can lead to remote code execution. An attacker can send a malicious XML payload to trigger this vulnerability...

CVE-2022-32454

A stack-based buffer overflow vulnerability exists in the XCMD setIPCam functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted XCMD can lead to remote code execution. An attacker can send a malicious XML payload to trigger this vulnerability...

CVE-2022-32454

Abode Systems, Inc. iota All-In-One Security Kit (versions 6.9X and 6.9Z) is affected by CVE-2022-32454 due to a stack-based buffer overflow in the XCMD setIPCam handler. The root cause is an unsafe strcpy into a 32-byte ipcam_1.name field when processing a crafted XML payload, enabling attacker-...

CVE-2021-32454

The CVE-2021-32454 entry describes a vulnerability in SITEL CAP/PRX firmware version 5.2.01 where a hardcoded password is used. Affected component: SITEL CAP/PRX firmware 5.2.01. Root cause: hardcoded credentials that can be modified by an attacker with access to the device, potentially depriving...