CVE-2022-42967

Caret is vulnerable to an XSS attack when the user opens a crafted Markdown file when preview mode is enabled. This directly leads to client-side code execution...

CVE-2025-42967

creationtimestamp| type| source ---|---|--- 2025-07-08 01:16:36+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114814969134379111 2025-07-08 03:29:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltgecvixxm2b 2025-07-08 12:19:34+00:00| seen|...

CVE-2024-42967

Incorrect access control in TOTOLINK LR350 V9.3.5u.6369B20220309 allows attackers to obtain the apmib configuration file, which contains the username and the password, via a crafted request to /cgi-bin/ExportSettings.sh...

CVE-2024-42967

creationtimestamp| type| source ---|---|--- 2024-08-15 20:09:11+00:00| seen| https://t.me/cvedetector/3265...

CVE-2022-42967

creationtimestamp| type| source ---|---|--- 2023-01-11 16:29:21+00:00| seen| https://t.me/cibsecurity/56338 2025-04-08 14:46:57+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10910...

CVE-2021-42967

creationtimestamp| type| source ---|---|--- 2022-05-13 16:27:49+00:00| seen| https://t.me/cibsecurity/42636...

CVE-2021-42967

Unrestricted file upload in /novel-admin/src/main/java/com/java2nb/common/controller/FileController.java in novel-plus all versions allows allows an attacker to upload malicious JSP files...

CVE-2021-42967

Unrestricted file upload in /novel-admin/src/main/java/com/java2nb/common/controller/FileController.java in novel-plus all versions allows allows an attacker to upload malicious JSP files...

CVE-2021-42967

CVE-2021-42967 affects novel-plus; unrestricted file upload in /novel-admin/src/main/java/com/java2nb/common/controller/FileController.java allows uploading JSP files across all versions. Root cause is lack of file upload restrictions, enabling remote attackers to plant hostile JSPs (impact: part...