Export limit exceeded: 340949 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 24763 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (24763 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2013-6455 | 1 Mediawiki | 1 Mediawiki | 2024-11-21 | 5.3 Medium |
| The CentralAuth extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to obtain usernames via vectors related to writing the names to the DOM of a page. | ||||
| CVE-2013-5687 | 1 Aicorporation | 1 Risknet Acquirer | 2024-11-21 | 7.5 High |
| RiskNet Acquirer before hotfix 6.0 b7+ADHOC-443 ApplicationServiceBean contains a service information disclosure. | ||||
| CVE-2013-5106 | 1 Python-mode Project | 1 Python-mode | 2024-11-21 | 8.8 High |
| A Code Execution vulnerability exists in select.py when using python-mode 2012-12-19. | ||||
| CVE-2013-4868 | 1 Karotz | 1 Api | 2024-11-21 | 5.3 Medium |
| Karotz API 12.07.19.00: Session Token Information Disclosure | ||||
| CVE-2013-4856 | 1 Dlink | 2 Dir-865l, Dir-865l Firmware | 2024-11-21 | 6.5 Medium |
| D-Link DIR-865L has Information Disclosure. | ||||
| CVE-2013-4751 | 3 Fedoraproject, Redhat, Sensiolabs | 3 Fedora, Enterprise Linux, Symfony | 2024-11-21 | 8.1 High |
| php-symfony2-Validator has loss of information during serialization | ||||
| CVE-2013-4535 | 2 Qemu, Redhat | 8 Qemu, Enterprise Linux, Enterprise Linux Desktop and 5 more | 2024-11-21 | 8.8 High |
| The virtqueue_map_sg function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary files via a crafted savevm image, related to virtio-block or virtio-serial read. | ||||
| CVE-2013-4518 | 1 Redhat | 2 Enterprise Linux, Update Infrastructure | 2024-11-21 | 5.5 Medium |
| RHUI (Red Hat Update Infrastructure) 2.1.3 has world readable PKI entitlement certificates | ||||
| CVE-2013-4409 | 3 Fedoraproject, Redhat, Reviewboard | 4 Fedora, Enterprise Linux, Djblets and 1 more | 2024-11-21 | 9.8 Critical |
| An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag Review Board before 1.7.15 when parsing JSON requests. | ||||
| CVE-2013-4317 | 1 Apache | 1 Cloudstack | 2024-11-21 | N/A |
| In Apache CloudStack 4.1.0 and 4.1.1, when calling the CloudStack API call listProjectAccounts as a regular, non-administrative user, the user is able to see information for accounts other than their own. | ||||
| CVE-2013-4245 | 2 Debian, Gnome | 2 Debian Linux, Orca | 2024-11-21 | 7.3 High |
| Orca has arbitrary code execution due to insecure Python module load | ||||
| CVE-2013-4209 | 1 Redhat | 1 Automatic Bug Reporting Tool | 2024-11-21 | N/A |
| Automatic Bug Reporting Tool (ABRT) before 2.1.6 allows local users to obtain sensitive information about arbitrary files via vectors related to sha1sums. | ||||
| CVE-2013-4187 | 1 Flippy Project | 1 Flippy | 2024-11-21 | 6.5 Medium |
| The Flippy module 7.x-1.x before 7.x-1.2 for Drupal does not properly restrict access to nodes, which allows remote authenticated users with the permission to access content to read a link or alias to a restricted node. | ||||
| CVE-2013-4176 | 1 Mysecureshell Project | 1 Mysecureshell | 2024-11-21 | 5.5 Medium |
| mysecureshell 1.31: Local Information Disclosure Vulnerability | ||||
| CVE-2013-4166 | 2 Gnome, Redhat | 6 Evolution, Evolution Data Server, Enterprise Linux and 3 more | 2024-11-21 | 7.5 High |
| The gpg_ctx_add_recipient function in camel/camel-gpg-context.c in GNOME Evolution 3.8.4 and earlier and Evolution Data Server 3.9.5 and earlier does not properly select the GPG key to use for email encryption, which might cause the email to be encrypted with the wrong key and allow remote attackers to obtain sensitive information. | ||||
| CVE-2013-4144 | 1 Swfupload Project | 1 Swfupload | 2024-11-21 | 9.8 Critical |
| There is an object injection vulnerability in swfupload plugin for wordpress. | ||||
| CVE-2013-4110 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 5.3 Medium |
| Cryptocat has an Unspecified Chat Participant User List Disclosure | ||||
| CVE-2013-4105 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 7.5 High |
| Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure | ||||
| CVE-2013-4103 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 9.8 Critical |
| Cryptocat before 2.0.22 has Remote Script Injection due to improperly sanitizing user input | ||||
| CVE-2013-4101 | 1 Cryptocat Project | 1 Cryptocat | 2024-11-21 | 5.3 Medium |
| Cryptocat before 2.0.22 Link Markup Decorator HTML Handling Weakness | ||||