11 matches found
CVE-2026-33650
WWBN AVideo is an open source video platform. In versions up to and including 26.0, a user with the "Videos Moderator" permission can escalate privileges to perform full video management operations — including ownership transfer and deletion of any video — despite the permission being documented ...
CVE-2026-33650
creationtimestamp| type| source ---|---|--- 2026-03-22 23:17:27+00:00| published-proof-of-concept| https://github.com/WWBN/AVideo/security/advisories/GHSA-8x77-f38v-4m5j 2026-03-23 19:22:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhqrulbogn24 2026-03-23 20:21:55+00:0...
CVE-2021-33650
When performing the inference shape operation of the SparseToDense operator, if the number of inputs is less than three, it will access data outside of bounds of inputs which allocated from heap buffers...
EUVD-2025-33650
Malicious code in bird-clean-sky-request npm...
CVE-2024-33650 WordPress Serious Slider plugin <= 1.2.4 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Cryout Creations Serious Slider.This issue affects Serious Slider: from n/a through 1.2.4...
CVE-2024-33650
The CVE-2024-33650 CSRF vulnerability in Cryout Creations Serious Slider affects Serious Slider versions up to 1.2.4 (and unspecified earlier ranges “from n/a through 1.2.4”). The connected Red Hat entry confirms a Cross-Site Request Forgery issue for this product. No technical exploit details, i...
WordPress Serious Slider Plugin <= 1.2.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software Serious Slider Type Plugin Vulnerable versions = 1.2.4 Fixed in 1.2.5 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-33650 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID e5af7123ddcc Credits Steven Julian Requir...
CVE-2022-33650
Azure Site Recovery Elevation of Privilege Vulnerability...
CVE-2022-33650
CVE-2022-33650 is an elevation-of-privilege vulnerability affecting Microsoft Azure Site Recovery. The connected Nessus doc confirms multiple-related vulnerabilities in Azure Site Recovery and its components, reported when the Azure Site Recovery installation is missing security updates. The vuln...
CVE-2021-33650
creationtimestamp| type| source ---|---|--- 2022-06-27 20:34:50+00:00| seen| https://t.me/cibsecurity/45195...
CVE-2021-33650
CVE-2021-33650 affects Huawei MindSpore Community’s SparseToDense operator. During the inference shape operation, if the number of inputs is less than three, the code may read beyond allocated heap buffers, potentially exposing sensitive data via an out-of-bounds access. Documented as information...