CVE-2023-40680

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Team Yoast Yoast SEO allows Stored XSS.This issue affects Yoast SEO: from n/a through 21.0...

CVE-2025-40680 Encryption of sensitive data in CapillaryScope missing

Lack of sensitive data encryption in CapillaryScope v2.5.0 of Capillary io, which stores both the proxy credentials and the JWT session token in plain text within different registry keys on the Windows operating system. Any authenticated local user with read access to the registry can extract the...

CVE-2022-40680

A improper neutralization of input during web page generation 'cross-site scripting' in Fortinet FortiOS 6.0.7 - 6.0.15, 6.2.2 - 6.2.12, 6.4.0 - 6.4.9 and 7.0.0 - 7.0.3 allows a privileged attacker to execute unauthorized code or commands via storing malicious payloads in replacement messages...

Security Bulletin: Multiple Vulnerabilities have been identified in IBM MQ shipped with IBM WebSphere Remote Server

Summary IBM MQ is shipped with IBM WebSphere Remote Server. Information about security vulnerabilities affecting IBM MQ have been published in a security bulletin CVE-2024-40681, CVE-2024-40680, CVE-2024-2511, CVE-2024-21085 Vulnerability Details Refer to the security bulletins listed in the...

CVE-2024-40680

creationtimestamp| type| source ---|---|--- 2024-09-07 16:50:08+00:00| seen| https://t.me/cvedetector/5023...

CVE-2024-40680

IBM MQ 9.3 CD and 9.4 LTS/CD could allow a local user to cause a denial of service due to improper memory allocation causing a segmentation fault...

CVE-2024-40680 IBM MQ denial of service

IBM MQ 9.3 CD and 9.4 LTS/CD could allow a local user to cause a denial of service due to improper memory allocation causing a segmentation fault...

CVE-2024-40680 IBM MQ denial of service

IBM MQ 9.3 CD and 9.4 LTS/CD could allow a local user to cause a denial of service due to improper memory allocation causing a segmentation fault...

CVE-2023-40680

creationtimestamp| type| source ---|---|--- 2023-12-17 18:47:45+00:00| seen| https://t.me/ctinow/155653 2025-03-28 15:38:44+00:00| seen| https://t.me/itsecnews/5634...

CVE-2023-40680

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Team Yoast Yoast SEO allows Stored XSS.This issue affects Yoast SEO: from n/a through 21.0...

CVE-2023-40680

CVE-2023-40680 describes a stored XSS in WordPress Yoast SEO Plugin

CVE-2023-40680 WordPress Yoast SEO Plugin <= 21.0 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Team Yoast Yoast SEO allows Stored XSS.This issue affects Yoast SEO: from n/a through 21.0...

WordPress Yoast SEO Plugin <= 21.0 is vulnerable to Cross Site Scripting (XSS)

Software Yoast SEO Type Plugin Vulnerable versions = 21.0 Fixed in 21.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-40680 Patch priority Medium CVSS severity Medium 5.9 Developer Claim ownership PSID c49205f84c75 Credits Rafie Muhammad Patchstack Required...

CVE-2022-40680

creationtimestamp| type| source ---|---|--- 2022-12-06 20:40:57+00:00| seen| https://t.me/cibsecurity/54078...

CVE-2022-40680

Fortinet FortiOS contains a cross-site scripting (XSS) vulnerability (CVE-2022-40680) caused by improper neutralization of input during web page generation, enabling a privileged attacker to store and execute malicious payloads in replacement messages. Affected FortiOS versions are 6.0.7–6.0.15, ...

CVE-2021-40680

creationtimestamp| type| source ---|---|--- 2022-04-25 12:30:57+00:00| seen| https://t.me/cibsecurity/41369...

CVE-2021-36628

CVE-2021-36628 is a reservation duplicate of CVE-2021-40680; however, the connected records provide concrete details for CVE-2021-40680: there is a Directory Traversal vulnerability in Artica Proxy via the filename parameter to /cgi-bin/main.cgi. Affected are Artica Proxy versions 4.30.000000 SP2...

CVE-2021-40680

CVE-2021-40680 describes a Directory Traversal vulnerability in Artica Proxy and its VMware Appliance. The vulnerability arises from lack of input filtering on the filename parameter to /cgi-bin/main.cgi, allowing potentially unauthorized access to files. Affected products are Artica Proxy (versi...