|
2891
|
7.1 |
HIGH
Network
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NooTheme CitiLights noo-citilights allows Reflected XSS.This issue affects CitiLights: from n/a t…
|
CWE-79
Cross-site Scripting
|
CVE-2026-24973
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2892
|
7.1 |
HIGH
Network
|
-
|
-
|
Neutralización Incorrecta de Entrada Durante la Generación de Páginas Web ('cross-site scripting') vulnerabilidad en NooTheme CitiLights noo-citilights permite XSS Reflejado. Este problema afecta a C…
|
CWE-79
Cross-site Scripting
|
CVE-2026-24973
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2893
|
8.8 |
HIGH
Network
|
-
|
-
|
Deserialization of Untrusted Data vulnerability in NooTheme CitiLights noo-citilights allows Object Injection.This issue affects CitiLights: from n/a through <= 3.7.1.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-24974
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2894
|
8.8 |
HIGH
Network
|
-
|
-
|
Deserialización de Datos No Confiables vulnerabilidad en NooTheme CitiLights noo-citilights permite Inyección de Objetos. Este problema afecta a CitiLights: desde n/a hasta <= 3.7.1.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-24974
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2895
|
7.1 |
HIGH
Network
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NooTheme Organici Library noo-organici-library allows Reflected XSS.This issue affects Organici L…
|
CWE-79
Cross-site Scripting
|
CVE-2026-24975
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2896
|
7.1 |
HIGH
Network
|
-
|
-
|
Neutralización incorrecta de la entrada durante la generación de páginas web ('cross-site scripting') vulnerabilidad en la biblioteca NooTheme Organici noo-organici-library permite XSS reflejado. Est…
|
CWE-79
Cross-site Scripting
|
CVE-2026-24975
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2897
|
8.8 |
HIGH
Network
|
-
|
-
|
Deserialization of Untrusted Data vulnerability in NooTheme Organici Library noo-organici-library allows Object Injection.This issue affects Organici Library: from n/a through <= 2.1.2.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-24976
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2898
|
8.8 |
HIGH
Network
|
-
|
-
|
Vulnerabilidad de deserialización de datos no confiables en NooTheme Organici Biblioteca noo-organici-library permite la inyección de objetos. Este problema afecta a Organici Biblioteca: desde n/a ha…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2026-24976
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2899
|
8.5 |
HIGH
Network
|
-
|
-
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NooTheme Organici Library noo-organici-library allows Blind SQL Injection.This issue affects Orga…
|
CWE-89
SQL Injection
|
CVE-2026-24977
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2900
|
8.5 |
HIGH
Network
|
-
|
-
|
Vulnerabilidad de Neutralización Incorrecta de Elementos Especiales utilizados en un Comando SQL ('Inyección SQL') en la biblioteca Organici de NooTheme noo-organici-library permite Inyección SQL Cie…
|
CWE-89
SQL Injection
|
CVE-2026-24977
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
