@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (=0.8.3-beta.1) +10 more potentially affected by CVE-2026-33580 via openclaw (>=2026.3.22 <=2026.3.24)

openclaw NPM version =2026.3.22, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.15.0 Source cves: CVE-2026-33580 Source advisory: SNYK:JS-OPENCLAW-15857174...

CVE-2026-33580

creationtimestamp| type| source ---|---|--- 2026-03-31 15:42:30+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3miejcd5b5v2c 2026-03-31 17:24:58+00:00| seen| Telegram/ky16Z8CpY9UfGCFQKDuXqskkeRzODLCHisg6zhKBGmfTV8...

CVE-2023-33580

Phpgurukul Student Study Center Management System V1.0 is vulnerable to Cross Site Scripting XSS in the "Admin Name" field on Admin Profile page...

CVE-2024-33580

A DLL hijack vulnerability was reported in Lenovo Personal Cloud that could allow a local attacker to execute code with elevated privileges...

CVE-2023-33580

Phpgurukul Student Study Center Management System V1.0 is affected by a Stored Cross-Site Scripting (XSS) vulnerability in the Admin Name field on the Admin Profile page. The root cause is inadequate input sanitization/validation for the Admin Name, allowing injected JavaScript to be stored and e...

Student Study Center Management System 1.0 Cross Site Scripting

Exploit Title: Student Study Center Management System v1.0 - Stored Cross-Site Scripting XSS Date of found: 12/05/2023 Exploit Author: VIVEK CHOUDHARY @sudovivek Version: V1.0 Tested on: Windows 10 Vendor Homepage: https://phpgurukul.com Software Link:...

CVE-2023-33580

creationtimestamp| type| source ---|---|--- 2023-06-19 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/51528 2023-06-26 20:52:04+00:00| seen| https://t.me/cibsecurity/65519 2025-02-17 16:00:07+00:00| published-proof-of-concept| Telegram/Lk08SRcMS-SPvUQrC5iLhxWRyIgExecorO8K45SNl9E-Q...

Student Study Center Management System v1.0 - Stored Cross-Site Scripting Vulnerability

Exploit Title: Student Study Center Management System v1.0 - Stored Cross-Site Scripting XSS Exploit Author: VIVEK CHOUDHARY @sudovivek Version: V1.0 Tested on: Windows 10 Vendor Homepage: https://phpgurukul.com Software Link:...

Student Study Center Management System v1.0 - Stored Cross-Site Scripting (XSS)

Exploit Title: Student Study Center Management System v1.0 - Stored Cross-Site Scripting XSS Date of found: 12/05/2023 Exploit Author: VIVEK CHOUDHARY @sudovivek Version: V1.0 Tested on: Windows 10 Vendor Homepage: https://phpgurukul.com Software Link:...

CVE-2021-33580

creationtimestamp| type| source ---|---|--- 2021-08-18 12:16:51+00:00| seen| https://t.me/cibsecurity/27489...

CVE-2021-33580 regex injection leading to DoS

User controlled request.getHeader"Referer", request.getRequestURL and request.getQueryString are used to build and run a regex expression. The attacker doesn't have to use a browser and may send a specially crafted Referer header programmatically. Since the attacker controls the string and the...

CVE-2021-33580

Apache Roller suffers a vulnerability where user-controlled inputs from Referer, Request URL, and QueryString are used to build and execute a regex, enabling regular-expression DoS (ReDoS) via catastrophic backtracking on the server. Impact described as availability issues; fixed in Roller 6.0.2....

uscellular.com XSS vulnerability

Vulnerable URL: https://www.uscellular.com/campaigns/4G-service/smart-phones-plans.html=%22-confirm%60OPENBUGBOUNTY%60-%22 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 03.08.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 33580 VIP...