Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.4

    MEDIUM
    CVE-2013-2108

    WordPress WP Cleanfix Plugin 2.4.4 has CSRF... Read more

    Affected Products : cleanfix
    • EPSS Score: %0.23
    • Published: Feb. 10, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-2106

    webauth before 4.6.1 has authentication credential disclosure... Read more

    Affected Products : debian_linux webauth
    • EPSS Score: %0.40
    • Published: Dec. 03, 2019
    • Modified: Nov. 21, 2024

  • 8.1

    HIGH
    CVE-2013-2103

    OpenShift cartridge allows remote URL retrieval... Read more

    Affected Products : openshift
    • EPSS Score: %0.30
    • Published: Dec. 03, 2019
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2013-2101

    Katello has multiple XSS issues in various entities... Read more

    • EPSS Score: %0.26
    • Published: Dec. 03, 2019
    • Modified: Nov. 21, 2024

  • 9.3

    HIGH
    CVE-2013-2097

    ZPanel through 10.1.0 has Remote Command Execution... Read more

    Affected Products : zpanel
    • EPSS Score: %12.74
    • Published: Feb. 12, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-2095

    rubygem-openshift-origin-controller: API can be used to create applications via cartridge_cache.rb URI.prase() to perform command injection... Read more

    Affected Products : openshift-origin-controller
    • EPSS Score: %2.67
    • Published: Dec. 10, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-2093

    Dolibarr ERP/CRM 3.3.1 does not properly validate user input in viewimage.php and barcode.lib.php which allows remote attackers to execute arbitrary commands.... Read more

    Affected Products : dolibarr_erp\/crm
    • EPSS Score: %3.81
    • Published: Nov. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-2092

    Cross-site Scripting (XSS) in Dolibarr ERP/CRM 3.3.1 allows remote attackers to inject arbitrary web script or HTML in functions.lib.php.... Read more

    Affected Products : dolibarr_erp\/crm
    • EPSS Score: %0.77
    • Published: Nov. 20, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-2091

    SQL injection vulnerability in Dolibarr ERP/CRM 3.3.1 allows remote attackers to execute arbitrary SQL commands via the 'pays' parameter in fiche.php.... Read more

    Affected Products : dolibarr_erp\/crm
    • EPSS Score: %0.73
    • Published: Nov. 20, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2013-2075

    Multiple buffer overflows in the (1) R5RS char-ready, (2) tcp-accept-ready, and (3) file-select procedures in Chicken through 4.8.0.3 allows attackers to cause a denial of service (crash) by opening a file descriptor with a large integer value. NOTE: this... Read more

    Affected Products : chicken
    • EPSS Score: %0.82
    • Published: Oct. 31, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-2060

    The download_from_url function in OpenShift Origin allows remote attackers to execute arbitrary commands via shell metacharacters in the URL of a request to download a cart.... Read more

    Affected Products : openshift
    • EPSS Score: %22.01
    • Published: Jan. 28, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-2057

    YaBB through 2.5.2: 'guestlanguage' Cookie Parameter Local File Include Vulnerability... Read more

    Affected Products : yabb
    • EPSS Score: %2.02
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-2049

    Red Hat CloudForms 2 Management Engine (CFME) allows remote attackers to conduct session tampering attacks by leveraging use of a static secret_token.rb secret.... Read more

    Affected Products : cloudforms_management_engine
    • EPSS Score: %0.04
    • Published: May. 01, 2018
    • Modified: Nov. 21, 2024

  • 9.0

    HIGH
    CVE-2013-2024

    OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken before 4.9.0.... Read more

    Affected Products : debian_linux chicken
    • EPSS Score: %3.02
    • Published: Oct. 31, 2019
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-2016

    A flaw was found in the way qemu v1.3.0 and later (virtio-rng) validates addresses when guest accesses the config space of a virtio device. If the virtio device has zero/small sized config space, such as virtio-rng, a privileged guest user could use this ... Read more

    • EPSS Score: %0.07
    • Published: Dec. 30, 2019
    • Modified: Nov. 21, 2024

  • 7.3

    HIGH
    CVE-2013-2012

    autojump before 21.5.8 allows local users to gain privileges via a Trojan horse custom_install directory in the current working directory.... Read more

    Affected Products : debian_linux autojump
    • EPSS Score: %0.10
    • Published: Oct. 31, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2013-2011

    WordPress W3 Super Cache Plugin before 1.3.2 contains a PHP code-execution vulnerability which could allow remote attackers to inject arbitrary code. This issue exists because of an incomplete fix for CVE-2013-2009.... Read more

    Affected Products : w3_super_cache
    • EPSS Score: %5.91
    • Published: Dec. 26, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-2010

    WordPress W3 Total Cache Plugin 0.9.2.8 has a Remote PHP Code Execution Vulnerability... Read more

    Affected Products : w3_total_cache wp_super_cache
    • EPSS Score: %83.16
    • Published: Feb. 12, 2020
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2013-2009

    WordPress WP Super Cache Plugin 1.2 has Remote PHP Code Execution... Read more

    Affected Products : wp_super_cache
    • EPSS Score: %26.01
    • Published: Feb. 07, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-2008

    WordPress Super Cache Plugin 1.3 has XSS.... Read more

    Affected Products : wp_super_cache
    • EPSS Score: %0.26
    • Published: Feb. 07, 2020
    • Modified: Nov. 21, 2024
Showing 20 of 291647 Results