Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2013-1401

    Multiple security bypass vulnerabilities in the editAnswer, deleteAnswer, addAnswer, and deletePoll functions in WordPress Poll Plugin 34.5 for WordPress allow a remote attacker to add, edit, and delete an answer and delete a poll.... Read more

    Affected Products : wordpress_poll
    • EPSS Score: %4.56
    • Published: Feb. 13, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-1400

    Multiple SQL injection vulnerabilities in CWPPoll.js in WordPress Poll Plugin 34.5 for WordPress allow attackers to execute arbitrary SQL commands via the pollid or poll_id parameter in a viewPollResults or userlogs action.... Read more

    Affected Products : wordpress_poll
    • EPSS Score: %2.31
    • Published: Feb. 13, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-1391

    Authentication bypass vulnerability in the the web interface in Hunt CCTV, Capture CCTV, Hachi CCTV, NoVus CCTV, and Well-Vision Inc DVR systems allows a remote attacker to retrieve the device configuration.... Read more

    • EPSS Score: %84.10
    • Published: Oct. 30, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-1360

    An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the S... Read more

    • EPSS Score: %57.72
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-1359

    An Authentication Bypass Vulnerability exists in DELL SonicWALL Analyzer 7.0, Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0; Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, 5.1, and 6.0 via the skipSessionCheck ... Read more

    • EPSS Score: %89.13
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2013-1353

    Orange HRM 2.7.1 allows XSS via the vacancy name.... Read more

    Affected Products : orangehrm
    • EPSS Score: %0.18
    • Published: Feb. 10, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-1352

    Verax NMS prior to 2.1.0 uses an encryption key that is hardcoded in a JAR archive.... Read more

    Affected Products : network_management_system
    • EPSS Score: %0.88
    • Published: Jan. 30, 2020
    • Modified: Nov. 21, 2024

  • 5.9

    MEDIUM
    CVE-2013-1351

    Verax NMS prior to 2.10 allows authentication via the encrypted password without knowing the cleartext password.... Read more

    Affected Products : network_management_system
    • EPSS Score: %0.84
    • Published: Jan. 30, 2020
    • Modified: Nov. 21, 2024

  • 9.1

    CRITICAL
    CVE-2013-1350

    Verax NMS prior to 2.1.0 has multiple security bypass vulnerabilities... Read more

    Affected Products : network_management_system
    • EPSS Score: %0.61
    • Published: Jan. 30, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-1202

    Cisco ACE A2(3.6) allows log retention DoS.... Read more

    • EPSS Score: %0.39
    • Published: Feb. 07, 2020
    • Modified: Nov. 21, 2024

  • 4.3

    MEDIUM
    CVE-2013-1055

    The unity-firefox-extension package could be tricked into dropping a C callback which was still in use, which Firefox would then free, causing Firefox to crash. This could be achieved by adding an action to the launcher and updating it with new callbacks ... Read more

    • EPSS Score: %0.21
    • Published: Apr. 07, 2021
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2013-1054

    The unity-firefox-extension package could be tricked into destroying the Unity webapps context, causing Firefox to crash. This could be achieved by spinning the event loop inside the webapps initialization callback. Fixed in 3.0.0+14.04.20140416-0ubuntu1.... Read more

    • EPSS Score: %0.22
    • Published: Apr. 07, 2021
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2013-1053

    In crypt.c of remote-login-service, the cryptographic algorithm used to cache usernames and passwords is insecure. An attacker could use this vulnerability to recover usernames and passwords from the file. This issue affects version 1.0.0-0ubuntu3 and pri... Read more

    Affected Products : remote-login-service
    • EPSS Score: %0.02
    • Published: Jan. 13, 2021
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-10030

    A vulnerability, which was classified as problematic, has been found in Exit Box Lite Plugin up to 1.06 on WordPress. Affected by this issue is some unknown functionality of the file wordpress-exit-box-lite.php. The manipulation leads to information discl... Read more

    Affected Products : wordpress_exit_box_lite
    • EPSS Score: %0.26
    • Published: Jun. 05, 2023
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2013-10029

    A vulnerability classified as problematic was found in Exit Box Lite Plugin up to 1.06 on WordPress. Affected by this vulnerability is the function exitboxadmin of the file wordpress-exit-box-lite.php. The manipulation leads to cross-site request forgery.... Read more

    • EPSS Score: %0.07
    • Published: Jun. 05, 2023
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-10028

    A vulnerability was found in EELV Newsletter Plugin 2.x on WordPress. It has been rated as problematic. Affected by this issue is the function style_newsletter of the file lettreinfo.php. The manipulation of the argument email leads to cross site scriptin... Read more

    Affected Products : eelv_newsletter
    • EPSS Score: %0.08
    • Published: Jun. 04, 2023
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2013-10027

    A vulnerability was found in Blogger Importer Plugin up to 0.5 on WordPress. It has been classified as problematic. Affected is the function start/restart of the file blogger-importer.php. The manipulation leads to cross-site request forgery. It is possib... Read more

    Affected Products : blogger_importer
    • EPSS Score: %0.07
    • Published: Jun. 04, 2023
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-10026

    A vulnerability, which was classified as problematic, has been found in Mail Subscribe List Plugin up to 2.0.10 on WordPress. This issue affects some unknown processing of the file index.php. The manipulation of the argument sml_name/sml_email leads to cr... Read more

    Affected Products : mail_subscribe_list
    • EPSS Score: %0.08
    • Published: May. 02, 2023
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2013-10025

    A vulnerability was found in Exit Strategy Plugin 1.55 on WordPress and classified as problematic. Affected by this issue is the function exitpageadmin of the file exitpage.php. The manipulation leads to cross-site request forgery. The attack may be launc... Read more

    Affected Products : exit_strategy
    • EPSS Score: %0.07
    • Published: Apr. 08, 2023
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-10024

    A vulnerability has been found in Exit Strategy Plugin 1.55 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the file exitpage.php. The manipulation leads to information disclosure. The attack can b... Read more

    Affected Products : exit_strategy
    • EPSS Score: %0.28
    • Published: Apr. 08, 2023
    • Modified: Nov. 21, 2024
Showing 20 of 291712 Results