Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.1

    MEDIUM
    CVE-2013-1760

    The Bug Genie before 3.2.6 has Multiple XSS and HTML Injection Vulnerabilities... Read more

    Affected Products : the_bug_genie
    • EPSS Score: %0.35
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-1753

    The gzip_decode function in the xmlrpc client library in Python 3.4 and earlier allows remote attackers to cause a denial of service (memory consumption) via a crafted HTTP request.... Read more

    Affected Products : python
    • EPSS Score: %0.42
    • Published: Mar. 11, 2020
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-1751

    TWiki before 5.1.4 allows remote attackers to execute arbitrary shell commands by sending a crafted '%MAKETEXT{}%' parameter value containing Perl backtick characters.... Read more

    Affected Products : twiki
    • EPSS Score: %4.69
    • Published: Nov. 07, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-1744

    IRIS citations management tool through 1.3 allows remote attackers to execute arbitrary commands.... Read more

    Affected Products : iris_citations_management_tool
    • EPSS Score: %19.52
    • Published: Jan. 25, 2020
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2013-1689

    Mozilla Firefox 20.0a1 and earlier allows remote attackers to cause a denial of service (crash), related to event handling with frames.... Read more

    Affected Products : firefox
    • EPSS Score: %0.36
    • Published: Dec. 10, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-1666

    Foswiki before 1.1.8 contains a code injection vulnerability in the MAKETEXT macro.... Read more

    Affected Products : foswiki
    • EPSS Score: %4.13
    • Published: Nov. 01, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-1642

    Multiple cross-site scripting (XSS) vulnerabilities in QuiXplorer before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via the (1) dir, (2) item, (3) order, (4) searchitem, (5) selitems[], or (6) srt parameter to index.php or (7) the... Read more

    Affected Products : quixplorer
    • EPSS Score: %0.57
    • Published: Jan. 02, 2020
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-1634

    A denial of service vulnerability exists in some motherboard implementations of Intel e1000e/82574L network controller devices through 2013-02-06 where the device can be brought into a non-processing state when parsing 32 hex, 33 hex, or 34 hex byte value... Read more

    • EPSS Score: %7.18
    • Published: Feb. 13, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-1631

    Verax NMS prior to 2.1.0 leaks connection details when any user executes a Repair Table action... Read more

    Affected Products : network_management_system
    • EPSS Score: %0.21
    • Published: Jan. 30, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-1607

    Ruby PDFKit gem prior to 0.5.3 has a Code Execution Vulnerability... Read more

    Affected Products : pdfkit
    • EPSS Score: %1.26
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-1603

    An Authentication vulnerability exists in D-LINK WCS-1100 1.02, TESCO DCS-2121 1.05_TESCO, TESCO DCS-2102 1.05_TESCO, DCS-7510 1.00, DCS-7410 1.00, DCS-6410 1.00, DCS-5635 1.01, DCS-5605 1.01, DCS-5230L 1.02, DCS-5230 1.02, DCS-3430 1.02, DCS-3411 1.02, D... Read more

    • EPSS Score: %57.38
    • Published: Jan. 28, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-1602

    An Information Disclosure vulnerability exists due to insufficient validation of authentication cookies for the RTSP session in D-Link DCS-5635 1.01, DCS-1100L 1.04, DCS-1130L 1.04, DCS-1100 1.03/1.04_US, DCS-1130 1.03/1.04_US , DCS-2102 1.05_RU/1.06/1.06... Read more

    • EPSS Score: %48.32
    • Published: Jan. 28, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-1601

    An Information Disclosure vulnerability exists due to a failure to restrict access on the lums.cgi script when processing a live video stream in D-LINK An Information Disclosure vulnerability exists due to a failure to restrict access on the lums.cgi scri... Read more

    • EPSS Score: %37.42
    • Published: Jan. 28, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-1600

    An Authentication Bypass vulnerability exists in upnp/asf-mp4.asf when streaming live video in D-Link TESCO DCS-2121 1.05_TESCO, TESCO DCS-2102 1.05_TESCO, DCS-2121 1.06_FR, 1.06, and 1.05_RU, DCS-2102 1.06_FR. 1.06, and 1.05_RU, which could let a malicio... Read more

    • EPSS Score: %72.69
    • Published: Jan. 28, 2020
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-1599

    A Command Injection vulnerability exists in the /var/www/cgi-bin/rtpd.cgi script in D-Link IP Cameras DCS-3411/3430 firmware 1.02, DCS-5605/5635 1.01, DCS-1100L/1130L 1.04, DCS-1100/1130 1.03, DCS-1100/1130 1.04_US, DCS-2102/2121 1.05_RU, DCS-3410 1.02, D... Read more

    • EPSS Score: %92.28
    • Published: Jan. 28, 2020
    • Modified: Nov. 21, 2024

  • 9.0

    HIGH
    CVE-2013-1598

    A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary code.... Read more

    Affected Products : pt7135_firmware pt7135
    • EPSS Score: %32.16
    • Published: Jan. 24, 2020
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2013-1597

    A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via a specially crafted GET request, which could let a malicious user obtain user credentials.... Read more

    Affected Products : pt7135_firmware pt7135
    • EPSS Score: %10.88
    • Published: Jan. 24, 2020
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-1596

    An Authentication Bypass Vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via specially crafted RTSP packets to TCP port 554.... Read more

    Affected Products : pt7135_firmware pt7135
    • EPSS Score: %21.88
    • Published: Jan. 24, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-1595

    A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial ... Read more

    Affected Products : pt7135_firmware pt7135
    • EPSS Score: %3.88
    • Published: Jan. 24, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-1594

    An Information Disclosure vulnerability exists via a GET request in Vivotek PT7135 IP Camera 0300a and 0400a due to wireless keys and 3rd party credentials stored in clear text.... Read more

    Affected Products : pt7135_firmware pt7135
    • EPSS Score: %22.44
    • Published: Jan. 24, 2020
    • Modified: Nov. 21, 2024
Showing 20 of 291736 Results