1378 matches found
CVE-2024-27988
CVE-2024-27988 affects the WordPress plugin WEN Responsive Columns (
CVE-2024-27989
CVE-2024-27989 is a Cross‑site Scripting vulnerability in the WordPress plugin WP Responsive Tabs horizontal, vertical, and accordion Tabs. Multiple connected sources confirm a stored XSS flaw arising from improper neutralization of input during web page generation, affecting the plugin’s tab com...
CVE-2024-27991
CVE-2024-27991 affects the WordPress plugin SupportCandy (up to version 3.2.3). The issue is a Stored XSS caused by improper input neutralization during web page generation. Impact is stored XSS on affected pages; patch is available in 3.2.3 (upgrade to 3.2.3 or later). Other sources (Red Hat, NV...
CVE-2024-28418
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-28383
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-27986
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-25650
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-25649
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-25228
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-1654
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-1222
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-1221
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-1223
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-1176
RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided...
CVE-2024-26048
Technical details for CVE-2024-26048 are not publicly available in the provided documents. No impacted products, versions, or root cause are specified. Monitor for updates.
CVE-2023-20907
CVE-2023-20907 is listed in the Android 14 security release notes as a high-severity DoS in the Framework component. The Android bulletin groups it among Framework vulnerabilities for Android 14, with reference A-239415997. The document does not provide specific affected product versions beyond A...
CVE-2020-40750
CVE-2020-40750 is referenced in IBM security bulletins for IBM WebSphere Application Server: cross-site scripting in the Admin Console. Affected products/versions include WebSphere Application Server 9.0, 8.5, 8.0, and 7.0. The IBM bulletin also notes additional references to related issues (e.g....
CVE-2020-38712
The IBM bulletin ties CVE-2020-38712 to SOAPAction spoofing in JAX-WS Web Services processing, affecting IBM WebSphere Application Server and IBM Security Verify Governance/Identity Manager component. Affected products include WebSphere Application Server versions 9.0, 8.5, 8.0, and 7.0, and the ...
CVE-2022-14262
Technical details for CVE-2022-14262 are not publicly provided in the supplied documents. Monitor for updates.
CAN-2005-2475
The CVE-2005-2475 entry is confirmed through multiple connected documents: unzip contains a race condition in file permission handling during extraction that could let a local attacker modify permissions of extracted files. The issue is tied to the unzip utility and is addressed by the backported...