Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.1

    MEDIUM
    CVE-2013-4752

    Symfony 2.0.X before 2.0.24, 2.1.X before 2.1.12, 2.2.X before 2.2.5, and 2.3.X before 2.3.3 have an issue in the HttpFoundation component. The Host header can be manipulated by an attacker when the framework is generating an absolute URL. A remote attack... Read more

    Affected Products : fedora symfony
    • Published: Jan. 02, 2020
    • Modified: Nov. 21, 2024

  • 8.1

    HIGH
    CVE-2013-4751

    php-symfony2-Validator has loss of information during serialization... Read more

    Affected Products : enterprise_linux fedora symfony
    • Published: Nov. 01, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-4743

    Static HTTP Server 1.0 has a Local Overflow... Read more

    Affected Products : static_http_server
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2013-4718

    Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) ITSM 3.0.x before 3.0.9, 3.1.x before 3.1.10, and 3.2.x before 3.2.7 allows remote authenticated users to inject arbitrary web script or HTML via an ITSM ConfigItem search.... Read more

    Affected Products : otrs otrs_itsm
    • Published: Aug. 09, 2021
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2013-4717

    Multiple SQL injection vulnerabilities in Open Ticket Request System (OTRS) Help Desk 3.0.x before 3.0.22, 3.1.x before 3.1.18, and 3.2.x before 3.2.9 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors related to Ke... Read more

    Affected Products : otrs otrs_itsm
    • Published: Aug. 09, 2021
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-4695

    Winamp 5.63: Invalid Pointer Dereference leading to Arbitrary Code Execution... Read more

    Affected Products : winamp
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-4693

    WordPress Xorbin Digital Flash Clock 1.0 has XSS... Read more

    Affected Products : digital_flash_clock
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-4692

    Xorbin Analog Flash Clock 1.0 extension for Joomia has XSS... Read more

    Affected Products : analog_flash_clock
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-4691

    Sencha Labs Connect has XSS with connect.methodOverride()... Read more

    Affected Products : connect
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2013-4665

    SPBAS Business Automation Software 2012 has CSRF.... Read more

    Affected Products : business_automation_software
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2013-4664

    SPBAS Business Automation Software 2012 has XSS.... Read more

    Affected Products : business_automation_software
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-4658

    Linksys EA6500 has SMB Symlink Traversal allowing symbolic links to be created to locations outside of the Samba share.... Read more

    Affected Products : ea6500_firmware ea6500
    • Published: Oct. 25, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-4657

    Symlink Traversal vulnerability in NETGEAR WNR3500U and WNR3500L due to misconfiguration in the SMB service.... Read more

    • Published: Nov. 13, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-4656

    Symlink Traversal vulnerability in ASUS RT-AC66U and RT-N56U due to misconfiguration in the SMB service.... Read more

    • Published: Nov. 13, 2019
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2013-4655

    Symlink Traversal vulnerability in Belkin N900 due to misconfiguration in the SMB service.... Read more

    Affected Products : n900_firmware n900
    • Published: Nov. 13, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2013-4654

    Symlink Traversal vulnerability in TP-LINK TL-WDR4300 and TL-1043ND..... Read more

    • Published: Nov. 13, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2013-4621

    Magnolia CMS before 4.5.9 has multiple access bypass vulnerabilities... Read more

    Affected Products : magnolia_cms
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 7.1

    HIGH
    CVE-2013-4602

    A Denial of Service (infinite loop) vulnerability exists in Avira AntiVir Engine before 8.2.12.58 via an unspecified function in the PDF Scanner Engine.... Read more

    • Published: Feb. 12, 2020
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2013-4593

    RubyGem omniauth-facebook has an access token security vulnerability... Read more

    Affected Products : omniauth-facebook
    • Published: Dec. 11, 2019
    • Modified: Nov. 21, 2024

  • 5.9

    MEDIUM
    CVE-2013-4584

    Perdition before 2.2 may have weak security when handling outbound connections, caused by an error in the STARTTLS IMAP and POP server. ssl_outgoing_ciphers not being applied to STARTTLS connections... Read more

    Affected Products : debian_linux perdition
    • Published: Nov. 15, 2019
    • Modified: Nov. 21, 2024
Showing 20 of 292764 Results