Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2013-10008

    A vulnerability was found in sheilazpy eShop. It has been classified as critical. Affected is an unknown function. The manipulation leads to sql injection. The name of the patch is e096c5849c4dc09e1074104531014a62a5413884. It is recommended to apply a pat... Read more

    Affected Products : eshop
    • EPSS Score: %0.04
    • Published: Jan. 06, 2023
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-10007

    A vulnerability classified as problematic has been found in ethitter WP-Print-Friendly up to 0.5.2. This affects an unknown part of the file wp-print-friendly.php. The manipulation leads to information disclosure. It is possible to initiate the attack rem... Read more

    Affected Products : wp_print_friendly
    • EPSS Score: %0.08
    • Published: Jan. 03, 2023
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-10006

    A vulnerability classified as problematic was found in Ziftr primecoin up to 0.8.4rc1. Affected by this vulnerability is the function HTTPAuthorized of the file src/bitcoinrpc.cpp. The manipulation of the argument strUserPass/strRPCUserColonPass leads to ... Read more

    Affected Products : primecoin
    • EPSS Score: %0.08
    • Published: Jan. 01, 2023
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-10004

    A vulnerability classified as critical was found in Telecommunication Software SAMwin Contact Center Suite 5.1. This vulnerability affects the function passwordScramble in the library SAMwinLIBVB.dll of the component Password Handler. Incorrect implementa... Read more

    Affected Products : samwin_agent samwin_contact_center
    • EPSS Score: %0.38
    • Published: May. 24, 2022
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-10003

    A vulnerability classified as critical has been found in Telecommunication Software SAMwin Contact Center Suite 5.1. This affects the function getCurrentDBVersion in the library SAMwinLIBVB.dll of the database handler. The manipulation leads to sql inject... Read more

    Affected Products : samwin_agent samwin_contact_center
    • EPSS Score: %0.10
    • Published: May. 24, 2022
    • Modified: Nov. 21, 2024

  • 9.1

    CRITICAL
    CVE-2013-10002

    A vulnerability was found in Telecommunication Software SAMwin Contact Center Suite 5.1. It has been rated as critical. Affected by this issue is the function getCurrentDBVersion in the library SAMwinLIBVB.dll of the credential handler. Authentication is ... Read more

    Affected Products : samwin_agent samwin_contact_center
    • EPSS Score: %0.20
    • Published: May. 24, 2022
    • Modified: Nov. 21, 2024

  • 5.9

    MEDIUM
    CVE-2013-10001

    A vulnerability was found in HTC One/Sense 4.x. It has been rated as problematic. Affected by this issue is the certification validation of the mail client. An exploit has been disclosed to the public and may be used.... Read more

    Affected Products : mail sdk_api one_sv sense one_x
    • EPSS Score: %0.25
    • Published: May. 17, 2022
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-0803

    A PHP File Upload Vulnerability exists in PolarBear CMS 2.5 via upload.php, which could let a malicious user execute arbitrary code.... Read more

    Affected Products : polarbear_cms
    • EPSS Score: %83.94
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-0739

    Chamilo 1.9.4 has XSS due to improper validation of user-supplied input by the chat.php script.... Read more

    Affected Products : chamilo_lms chamilo
    • EPSS Score: %0.23
    • Published: Jan. 30, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-0738

    Chamilo 1.9.4 has Multiple XSS and HTML Injection Vulnerabilities: blog.php and announcements.php.... Read more

    Affected Products : chamilo_lms chamilo
    • EPSS Score: %0.23
    • Published: Jan. 30, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-0737

    Cross-site scripting (XSS) vulnerability in BoltWire 3.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the fieldnames parameter.... Read more

    Affected Products : boltwire
    • EPSS Score: %0.20
    • Published: Jan. 02, 2020
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-0725

    ERDAS ER Viewer 13.0 has dwmapi.dll and irml.dll libraries arbitrary code execution vulnerabilities... Read more

    Affected Products : erdas_er_viewer
    • EPSS Score: %0.06
    • Published: Jan. 30, 2020
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-0594

    Open redirect vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. IBM X-Force ID: 83383.... Read more

    Affected Products : inotes
    • EPSS Score: %0.15
    • Published: Jul. 11, 2018
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2013-0592

    Cross-site scripting (XSS) vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force ID: 83815.... Read more

    Affected Products : inotes
    • EPSS Score: %0.13
    • Published: Jul. 11, 2018
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-0589

    IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to bypass the remote image filtering mechanism and obtain sensitive information via a crafted e-mail message. IBM X-Force ID: 83371.... Read more

    Affected Products : inotes
    • EPSS Score: %0.17
    • Published: Jul. 11, 2018
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2013-0570

    The Fibre Channel over Ethernet (FCoE) feature in IBM System Networking and Blade Network Technology (BNT) switches running IBM Networking Operating System (aka NOS, formerly BLADE Operating System) floods data frames with unknown MAC addresses out on all... Read more

    • EPSS Score: %0.18
    • Published: Jul. 13, 2018
    • Modified: Nov. 21, 2024

  • 7.0

    HIGH
    CVE-2013-0522

    The Notes Client Single Logon feature in IBM Notes 8.0, 8.0.1, 8.0.2, 8.5, 8.5.1, 8.5.2, 8.5.3, and 9.0 on Windows allows local users to discover passwords via vectors involving an unspecified operating system communication mechanism for password transmis... Read more

    Affected Products : lotus_notes notes
    • EPSS Score: %0.04
    • Published: Jul. 16, 2018
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-0517

    A Command Execution Vulnerability exists in IBM Sterling External Authentication Server 2.2.0, 2.3.01, 2.4.0, and 2.4.1 via an unspecified OS command, which could let a local malicious user execute arbitrary code.... Read more

    • EPSS Score: %0.12
    • Published: Feb. 11, 2020
    • Modified: Nov. 21, 2024

  • 8.1

    HIGH
    CVE-2013-0507

    IBM InfoSphere Information Server 8.1, 8.5, 8.7, 9.1 has a Session Fixation Vulnerability... Read more

    Affected Products : infosphere_information_server
    • EPSS Score: %0.23
    • Published: Feb. 05, 2020
    • Modified: Nov. 21, 2024

  • 4.3

    MEDIUM
    CVE-2013-0342

    The CreateID function in packet.py in pyrad before 2.1 uses sequential packet IDs, which makes it easier for remote attackers to spoof packets by predicting the next ID, a different vulnerability than CVE-2013-0294.... Read more

    Affected Products : pyrad
    • EPSS Score: %1.29
    • Published: Dec. 09, 2019
    • Modified: Nov. 21, 2024
Showing 20 of 291717 Results