16 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-1000013
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakness CVE-2017-1000013 Note that Nessus relies on the presence of the package as reported by...
CVE-2015-1000013
creationtimestamp| type| source ---|---|--- 2025-06-26 21:02:21+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lsjzkche4y2e...
Fedora 32 : marked (2020-d714c08261)
The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2020-d714c08261 advisory. New upstream release with bug and security fixes. Also, consolidates duplicate pakages marked and nodejs- marked. I tested upgrades from both, but m...
Fedora 31 : marked (2020-5eca570e16)
The remote Fedora 31 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2020-5eca570e16 advisory. New upstream release with bug and security fixes. Also, consolidates duplicate pakages marked and nodejs- marked. I tested upgrades from both, but m...
CVE-2019-1000013
Hex package manager hexcore version 0.3.0 and earlier contains a Signing oracle vulnerability in Package registry verification that can result in Package modifications not detected, allowing code execution. This attack appears to be exploitable via victim fetches packages from malicious/compromis...
CVE-2019-1000013
Hex package manager hexcore version 0.3.0 and earlier contains a Signing oracle vulnerability in Package registry verification that can result in Package modifications not detected, allowing code execution. This attack appears to be exploitable via victim fetches packages from malicious/compromis...
CVE-2019-1000013
Hex Core (Hex package manager) versions 0.3.0 and earlier contain a Signing oracle vulnerability in the Package registry verification that can allow code execution. The issue arises when a victim fetches packages from a malicious or compromised mirror, potentially modifying packages without detec...
CVE-2016-1000013
...
CVE-2016-1000013
CVE-2016-1000013 is a reserved/duplicate entry of CVE-2016-10531 and is not an active vulnerability entry. The connected documents confirm that the underlying issue is a cross-site scripting vulnerability in the Node.js marked module (marked
CVE-2018-1000013
CVE-2018-1000013 concerns the Jenkins Release Plugin (versions 2.9 and earlier). The vulnerability arises because release-triggering requests do not require form submissions to be sent via POST, enabling cross-site request forgery (CSRF) attacks that can trigger release builds. Documented impact ...
CVE-2017-1000013
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakness...
CVE-2017-1000013
CVE-2017-1000013 affects phpMyAdmin 4.0, 4.4, and 4.6, which are vulnerable to an open redirect weakness. The available documents confirm the vulnerable product versions and the nature of the flaw (open redirect). No detailed root-cause, affected files, or concrete exploitation steps are provided...
phpMyAdmin 4.0.x < 4.0.10.19, 4.4.x < 4.4.15.10, 4.6.x < 4.6.6 Multiple Vulnerabilities - Windows
phpMyAdmin is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin";...
CVE-2015-1000013
Remote file upload vulnerability in wordpress plugin csv2wpec-coupon v1.1...
CVE-2015-1000013
Remote file upload vulnerability in wordpress plugin csv2wpec-coupon v1.1...
CVE-2015-1000013
CVE-2015-1000013 affects WordPress plugin csv2wpec-coupon v1.1. The vulnerability is an arbitrary file upload via csv2wpecCoupon_FileUpload.php caused by improper input sanitization of the uploaded file. The provided PoC indicates unauthenticated remote file upload is possible, using a crafted re...