General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2026-24591 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in yasir129 Turn Yoa… | Medium (5.4) | 2026-01-23 | General-Purpose |
| CVE-2026-24589 | Insertion of Sensitive Information Into Sent Data vulnerability in Cargus eCommerce Cargus cargus allows Retrieve Embed… | Medium (5.3) | 2026-01-23 | General-Purpose |
| CVE-2026-24587 | Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiti… | Medium (5.4) | 2026-01-23 | General-Purpose |
| CVE-2026-24585 | Missing Authorization vulnerability in Hyyan Abo Fakher Hyyan WooCommerce Polylang Integration woo-poly-integration all… | Medium (6.5) | 2026-01-23 | General-Purpose |
| CVE-2026-24584 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeum Tutor LMS… | Medium (5.9) | 2026-01-23 | General-Purpose |