Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.1

    MEDIUM
    CVE-2013-6022

    A Cross-Site Scripting (XSS) vulnerability exists in Tiki Wiki CMG Groupware 11.0 via the id paraZeroClipboard.swf, which could let a remote malicious user execute arbitrary code.... Read more

    Affected Products : tikiwiki_cms\/groupware
    • EPSS Score: %0.21
    • Published: Feb. 12, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-5988

    A Cross-site Scripting (XSS) vulnerability exists in the All in One SEO Pack plugin before 2.0.3.1 for WordPress via the Search parameter.... Read more

    Affected Products : all_in_one_seo_pack
    • EPSS Score: %0.17
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-5978

    Multiple cross-site scripting (XSS) vulnerabilities in products.php in the Cart66 Lite plugin before 1.5.1.15 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) Product name or (2) Price description fields via a reques... Read more

    Affected Products : cart66_lite_plugin
    • EPSS Score: %2.48
    • Published: Dec. 11, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-5945

    Multiple SQL injection vulnerabilities in D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware before 1.08B77 al... Read more

    • EPSS Score: %10.45
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-5743

    Multiple SQL injection vulnerabilities in Zabbix 1.8.x before 1.8.18rc1, 2.0.x before 2.0.9rc1, and 2.1.x before 2.1.7.... Read more

    Affected Products : zabbix
    • EPSS Score: %82.37
    • Published: Dec. 11, 2019
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-5687

    RiskNet Acquirer before hotfix 6.0 b7+ADHOC-443 ApplicationServiceBean contains a service information disclosure.... Read more

    Affected Products : risknet_acquirer
    • EPSS Score: %0.30
    • Published: Feb. 14, 2020
    • Modified: Nov. 21, 2024

  • 5.9

    MEDIUM
    CVE-2013-5661

    Cache Poisoning issue exists in DNS Response Rate Limiting.... Read more

    Affected Products : enterprise_linux bind knot_resolver nsd
    • EPSS Score: %1.07
    • Published: Nov. 05, 2019
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-5659

    Wiz 5.0.3 has a user mode write access violation... Read more

    Affected Products : wiz
    • EPSS Score: %0.33
    • Published: Jan. 27, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-5658

    AultWare pwStore 2010.8.30.0 has XSS... Read more

    Affected Products : pwstore
    • EPSS Score: %1.46
    • Published: Jan. 07, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-5657

    AultWare pwStore 2010.8.30.0 has DoS via an empty HTTP request... Read more

    Affected Products : pwstore
    • EPSS Score: %23.86
    • Published: Jan. 07, 2020
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-5656

    FuzeZip 1.0.0.131625 has a Local Buffer Overflow vulnerability... Read more

    Affected Products : fuzezip
    • EPSS Score: %0.22
    • Published: Jan. 07, 2020
    • Modified: Nov. 21, 2024

  • 9.4

    HIGH
    CVE-2013-5654

    Vulnerability in YingZhi Python Programming Language v1.9 allows arbitrary anonymous uploads to the phone's storage... Read more

    Affected Products : yingzhipython
    • EPSS Score: %0.78
    • Published: Feb. 15, 2019
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2013-5638

    Transcend WiFiSD 1.8 has persistent XSS... Read more

    Affected Products : wifisd_firmware wifisd
    • EPSS Score: %0.21
    • Published: Jan. 07, 2020
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2013-5637

    PQI AirCard has persistent XSS... Read more

    Affected Products : air_card_firmware air_card
    • EPSS Score: %0.19
    • Published: Jan. 07, 2020
    • Modified: Nov. 21, 2024

  • 4.3

    MEDIUM
    CVE-2013-5594

    Mozilla Firefox before 25 allows modification of anonymous content of pluginProblem.xml binding... Read more

    Affected Products : firefox
    • EPSS Score: %0.26
    • Published: Feb. 18, 2020
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-5582

    Ammyy Admin 3.2 and earlier stores the client ID at a fixed memory location, which might make it easier for user-assisted remote attackers to bypass authentication by running a local program that extracts a field from the AA_v3.2.exe file.... Read more

    Affected Products : ammyy_admin
    • EPSS Score: %3.84
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 5.9

    MEDIUM
    CVE-2013-5571

    HMailServer 5.3.x and prior: Memory Corruption which could cause DOS... Read more

    Affected Products : hmailserver
    • EPSS Score: %0.33
    • Published: Jan. 07, 2020
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2013-5461

    IBM Endpoint Manager for Remote Control 9.0.0 and 9.0.1 and Tivoli Remote Control 5.1.2 store multiple hashes of partial passwords, which makes it easier for remote attackers to decrypt passwords by leveraging access to the hashes. IBM X-Force ID: 88309.... Read more

    • EPSS Score: %0.34
    • Published: Apr. 27, 2018
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-5391

    IBM Worklight Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 and 6.0.x before 6.0.0 Fix Pack 2, and Mobile Foundation Consumer and Enterprise Editions 5.0.x before 5.0.6 Fix Pack 2 and 6.0.0 Fix Pack 2 make it easier for attackers to defea... Read more

    Affected Products : mobile_foundation worklight
    • EPSS Score: %0.21
    • Published: Apr. 27, 2018
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-5212

    Cross-site Scripting (XSS) in EasyXDM before 2.4.18 allows remote attackers to inject arbitrary web script or html via the easyxdm.swf file.... Read more

    Affected Products : easyxdm
    • EPSS Score: %0.30
    • Published: Feb. 14, 2020
    • Modified: Nov. 21, 2024
Showing 20 of 291756 Results