Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 4.3

    MEDIUM
    CVE-2013-2682

    Cisco Linksys E4200 1.0.05 Build 7 devices contain a Clickjacking Vulnerability which allows remote attackers to obtain sensitive information.... Read more

    • EPSS Score: %5.40
    • Published: Feb. 05, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-2681

    Cisco Linksys E4200 1.0.05 Build 7 devices contain a Security Bypass Vulnerability which could allow remote attackers to gain unauthorized access.... Read more

    • EPSS Score: %43.17
    • Published: Feb. 05, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-2680

    Cisco Linksys E4200 1.0.05 Build 7 devices store passwords in cleartext allowing remote attackers to obtain sensitive information.... Read more

    • EPSS Score: %15.67
    • Published: Feb. 05, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-2679

    Multiple cross-site scripting (XSS) vulnerabilities in Cisco Linksys E4200 router with firmware 1.0.05 build 7 allow remote attackers to inject arbitrary web script or HTML via the (1) log_type, (2) ping_ip, (3) ping_size, (4) submit_type, or (5) tracerou... Read more

    • EPSS Score: %0.60
    • Published: Feb. 18, 2020
    • Modified: Nov. 21, 2024

  • 8.1

    HIGH
    CVE-2013-2678

    Cisco Linksys E4200 1.0.05 Build 7 routers contain a Local File Include Vulnerability which could allow remote attackers to obtain sensitive information or execute arbitrary code by sending a crafted URL request to the apply.cgi script using the submit_ty... Read more

    • EPSS Score: %71.30
    • Published: Feb. 04, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-2676

    Brother MFC-9970CDW 1.10 firmware L devices contain an information disclosure vulnerability which allows remote attackers to view private IP addresses and other sensitive information.... Read more

    Affected Products : mfc-9970cdw_firmware mfc-9970cdw
    • EPSS Score: %1.86
    • Published: Feb. 04, 2020
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2013-2675

    Brother MFC-9970CDW 1.10 devices with Firmware L contain a Frameable response (Clickjacking) vulnerability which could allow remote attackers to obtain sensitive information.... Read more

    Affected Products : mfc-9970cdw_firmware mfc-9970cdw
    • EPSS Score: %2.07
    • Published: Feb. 05, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-2674

    Brother MFC-9970CDW 1.10 firmware L devices contain an information disclosure vulnerability which allows remote attackers to view sensitive information from referrer logs due to inadequate handling of HTTP referrer headers.... Read more

    Affected Products : mfc-9970cdw_firmware mfc-9970cdw
    • EPSS Score: %2.31
    • Published: Feb. 03, 2020
    • Modified: Nov. 21, 2024

  • 6.8

    MEDIUM
    CVE-2013-2673

    Brother MFC-9970CDW 1.10 firmware L devices contain a security bypass vulnerability which allows physically proximate attackers to gain unauthorized access.... Read more

    Affected Products : mfc-9970cdw_firmware mfc-9970cdw
    • EPSS Score: %0.09
    • Published: Feb. 03, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-2672

    Brother MFC-9970CDW devices with firmware 0D allow cleartext submission of passwords.... Read more

    Affected Products : mfc-9970cdw_firmware mfc-9970cdw
    • EPSS Score: %0.68
    • Published: Feb. 03, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-2646

    TP-LINK TL-WR1043ND V1_120405 devices contain an unspecified denial of service vulnerability.... Read more

    Affected Products : tl-wr1043nd_firmware tl-wr1043nd
    • EPSS Score: %0.32
    • Published: Feb. 03, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-2637

    A Cross-Site Scripting (XSS) Vulnerability exists in OTRS ITSM prior to 3.2.4, 3.1.8, and 3.0.7 and FAQ prior to 2.1.4 and 2.0.8 via changes, workorder items, and FAQ articles, which could let a remote malicious user execute arbitrary code.... Read more

    Affected Products : opensuse otrs_itsm faq
    • EPSS Score: %1.43
    • Published: Feb. 12, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-2631

    TinyWebGallery (TWG) 1.8.9 and earlier contains a full path disclosure vulnerability which allows remote attackers to obtain sensitive information through the parameters "twg_browserx" and "twg_browsery" in the page image.php.... Read more

    Affected Products : tinywebgallery
    • EPSS Score: %0.31
    • Published: Feb. 03, 2020
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2013-2625

    An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified... Read more

    • EPSS Score: %0.18
    • Published: Nov. 27, 2019
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-2624

    Telean before 1.3.1 contains a full path disclosure vulnerability which could allow remote attackers to obtain sensitive information through a specially crafted URL request.... Read more

    Affected Products : telaen
    • EPSS Score: %9.40
    • Published: Feb. 03, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-2623

    Cross-site Scripting (XSS) in Telaen before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the "f_email" parameter in index.php.... Read more

    Affected Products : telaen
    • EPSS Score: %2.63
    • Published: Feb. 03, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-2622

    Cross-site Scripting (XSS) in UebiMiau 2.7.11 and earlier allows remote attackers to inject arbitrary web script or HTML via the "selected_theme" parameter in error.php.... Read more

    Affected Products : uebimiau
    • EPSS Score: %0.30
    • Published: Feb. 03, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-2621

    Open Redirection Vulnerability in the redir.php script in Telaen before 1.3.1 allows remote attackers to redirect victims to arbitrary websites via a crafted URL.... Read more

    Affected Products : telaen
    • EPSS Score: %10.19
    • Published: Feb. 03, 2020
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-2612

    Command-injection vulnerability in Huawei E587 3G Mobile Hotspot 11.203.27 allows remote attackers to execute arbitrary shell commands with root privileges due to an error in the Web UI.... Read more

    Affected Products : e587_firmware e587
    • EPSS Score: %5.72
    • Published: Jan. 27, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-2600

    MiniUPnPd has information disclosure use of snprintf()... Read more

    Affected Products : debian_linux miniupnpd
    • EPSS Score: %0.49
    • Published: Nov. 01, 2019
    • Modified: Nov. 21, 2024
Showing 20 of 291736 Results