CVE-2016-11013

The wp-listings plugin before 2.0.2 for WordPress has includes/views/single-listing.php XSS...

CVE-2024-11013

Command Injection vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for Ver10.8 up to Ver10.8.27, for Ver10.9 up to Ver10.9.14 and UNIVERGE IX-R/IX-V Ver1.2.15 and earlier allows a attacker to inject an arbitrary CLI commands to be executed on the device via the management...

JVN#53958863: Multiple vulnerabilities in UNIVERGE IX/IX-R/IX-V series routers

UNIVERGE IX/IX-R/IX-V series routers provided by NEC Corporation contain multiple vulnerabilities listed below. Command injection CWE-77 CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H Base Score 7.2 CVE-2024-11013 Cross-site request forgery CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N Base...

CVE-2024-11013

creationtimestamp| type| source ---|---|--- 2024-11-29 08:09:58+00:00| seen| https://infosec.exchange/users/cve/statuses/113565224033105350...

Security fix for the ALT Linux 10 package helm version 3.4.1-alt1

Nov. 23, 2020 Aleksei Nikiforov 3.4.1-alt1 - Updated to upstream version 3.4.1 Fixes: CVE-2020-4053, CVE-2020-11013, CVE-2020-15184, CVE-2020-15185, CVE-2020-15186, CVE-2020-15187...

CVE-2020-11013

Their is an information disclosure vulnerability in Helm from version 3.1.0 and before version 3.2.0. lookup is a Helm template function introduced in Helm v3. It is able to lookup resources in the cluster to check for the existence of specific resources and get details about them. This can be us...

CVE-2020-11013 lookup Function Information Discolosure in Helm

Their is an information disclosure vulnerability in Helm from version 3.1.0 and before version 3.2.0. lookup is a Helm template function introduced in Helm v3. It is able to lookup resources in the cluster to check for the existence of specific resources and get details about them. This can be us...

CVE-2020-11013

The CVE-2020-11013 issue affects Helm before 3.2.0, where the template function lookup can perform cluster lookups during helm template, helm install/update/delete/rollback --dry-run, potentially disclosing information from the cluster via template output. Helm 2 is unaffected. The root cause is ...

CVE-2016-11013

CVE-2016-11013 affects the WordPress plugin wp-listings (IMPress Listings) prior to version 2.0.2. The vulnerability is an XSS in includes/views/single-listing.php that can be triggered via user input, with network access and no authentication required per the CVE description. The exposure can le...

Nimble Streamer 3.0.2-2 3.5.4-9 - Directory Traversal

Nimble Streamer 3.0.2-2 3.5.4-9 - Directory Traversal Nimble Streamer 3.0.2-2 to 3.5.4-9 - Path Traversal Exploit Author: MAYASEVEN Source at "https://mayaseven.com/nimble-directory-traversal-in-nimble-streamer-version-3-0-2-2-to-3-5-4-9/" Published on 08/04/2019 Vendor Homepage at...

Nimble Streamer 3.x Directory Traversal

Nimble Streamer 3.0.2-2 to 3.5.4-9 - Path Traversal Exploit Author: MAYASEVEN Source at "https://mayaseven.com/nimble-directory-traversal-in-nimble-streamer-version-3-0-2-2-to-3-5-4-9/" Published on 08/04/2019 Vendor Homepage at "https://wmspanel.com/nimble" Affected Version 3.0.2-2 to 3.5.4-9...

CVE-2019-11013

Nimble Streamer 3.0.2-2 through 3.5.4-9 has a ../ directory traversal vulnerability. Successful exploitation could allow an attacker to traverse the file system to access files or directories that are outside of the restricted directory on the remote server...

CVE-2019-11013

CVE-2019-11013 affects Nimble Streamer versions 3.0.2-2 through 3.5.4-9, with a local file inclusion/directory-traversal flaw that lets an attacker access files outside the restricted directory by using path traversal (../). The underlying issue is a failure to properly sanitize file paths, enabl...

CVE-2018-11013

Stack-based buffer overflow in the websRedirect function in GoAhead on D-Link DIR-816 A2 CN routers with firmware version 1.10B05 allows unauthenticated remote attackers to execute arbitrary code via a request with a long HTTP Host header...

CVE-2018-11013

Stack-based buffer overflow in the websRedirect function in GoAhead on D-Link DIR-816 A2 CN routers with firmware version 1.10B05 allows unauthenticated remote attackers to execute arbitrary code via a request with a long HTTP Host header...

CVE-2018-11013

Affected product: D-Link DIR-816 A2 routers running firmware 1.10B05. The vulnerability is a stack-based buffer overflow in the GoAhead websRedirect function that can be triggered by a long HTTP Host header, allowing unauthenticated remote code execution. Multiple sources (CNVD and NVD entries) c...

CVE-2017-11013

CVE-2017-11013 is a Qualcomm WLAN/Android kernel vulnerability where countOffset in UnpackCore increments per loop without bounds checking pIe->arraybound. Documented as a Remote Code Execution in the Qualcomm WLAN driver affecting CAF Android kernel builds; exploitation could occur via crafte...