scramble - Remote Code Execution

Exploit Title: scramble - Remote Code Execution Google Dork: inurl:/docs/api.json "dedoc/scramble" Date: 2026-05-07 Exploit Author: Joshua van der Poll https://github.com/joshuavanderpoll Vendor Homepage: https://scramble.dedoc.co Software Link: https://github.com/dedoc/scramble Version: =0.13.2,...

CVE-2026-44262

creationtimestamp| type| source ---|---|--- 2026-05-07 11:00:04+00:00| seen| https://t.me/GithubRedTeam/83199 2026-05-07 15:00:07+00:00| seen| Telegram/Oe3myBcohAaGdxUcA5YqeGGADBaBeF3XGiX3aOj54Bo8U 2026-05-07 15:00:15+00:00| seen| Telegram/N3SJRV4ZtVW52SnI4hPtvo0ahEWVD2vwvltAM5Jrkt0Pak 2026-05-13...

CVE-2024-44262

This issue was addressed with improved redaction of sensitive information. This issue is fixed in visionOS 2.1. A user may be able to view sensitive user information...

CVE-2023-44262

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Renzo Johnson Blocks plugin = 1.6.41 versions...

CVE-2024-44262

This issue was addressed with improved redaction of sensitive information. This issue is fixed in visionOS 2.1. A user may be able to view sensitive user information...

CVE-2024-44262

This issue was addressed with improved redaction of sensitive information. This issue is fixed in visionOS 2.1. A user may be able to view sensitive user information...

CVE-2024-44262

This issue was addressed with improved redaction of sensitive information. This issue is fixed in visionOS 2.1. A user may be able to view sensitive user information...

CVE-2024-44262

Apple visionOS 2.1 fixes CVE-2024-44262, a redaction flaw that could let a user view sensitive information. The vulnerability affects visionOS prior to 2.1 (including Vision Pro context) and is addressed by upgrading to visionOS 2.1 . The issue is described consistently across NVD and Red Hat/App...

CVE-2023-44262

creationtimestamp| type| source ---|---|--- 2023-10-02 14:40:29+00:00| seen| https://t.me/cibsecurity/71400...

CVE-2023-44262

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Renzo Johnson Blocks plugin = 1.6.41 versions...

CVE-2023-44262

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Renzo Johnson Blocks plugin = 1.6.41 versions...

CVE-2023-44262

CVE-2023-44262 affects the WordPress Blocks plugin up to version 1.6.41. The vulnerability is an Auth. (admin+) Stored Cross-Site Scripting (XSS) caused by insufficient input validation/escaping of parameters, allowing stored XSS for authenticated administrators. Public exploitation details are n...

WordPress Blocks Plugin <= 1.6.42 is vulnerable to Cross Site Scripting (XSS)

Software Blocks Type Plugin Vulnerable versions = 1.6.42 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-44262 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 02f792d40bcd Credits Rio Darmawan Required privilege...

io.github.together.modules:core (>=2.0 <=3.0.0), org.ff4j:ff4j-aop (>=1.8.1 <=1.8.13) +34 more potentially affected by CVE-2022-44262 via org.ff4j:ff4j-core (>=1.8.1 <=1.8.9)

org.ff4j:ff4j-core MAVEN version =1.8.1, =2.0, =1.8.1, =1.8.1, =1.8.7, =1.8.7, =1.8.1, =1.8.6, =1.8.1, =1.8.1, =1.8.4, =1.8.1, =1.8.1, =1.8.1, =1.8.1, =1.8.1, =1.8.13 and more Source cves: CVE-2022-44262 Source advisory: OSV:GHSA-65HJ-9PPW-77XC...

CVE-2022-44262

ff4j 1.8.1 is vulnerable to Remote Code Execution RCE...

CVE-2022-44262

CVE-2022-44262 affects the FF4J library (ff4j) version 1.8.1, with confirmed Remote Code Execution (RCE) risk. Multiple sources (Red Hat, GHSA, OSV, NVD, CNNVD, PT-2022-27160) document this vulnerability and indicate it has been patched in version 1.9. The root cause details are not expanded in t...

CVE-2022-44262

ff4j 1.8.1 is vulnerable to Remote Code Execution RCE...

CVE-2021-44262

creationtimestamp| type| source ---|---|--- 2022-03-17 15:21:34+00:00| seen| https://t.me/cibsecurity/39134...

CVE-2021-44262

The CVE-2021-44262 entry concerns Netgear W104/WAC104-V1.0.4.13. The connected sources confirm a vulnerability in the MNU_top.htm page that allows a remote attacker to access this page without authentication, leading to disclosure of sensitive device information. Affected product/version: Netgear...