CVE-2025-13002 XSS in Farktor Software's E-Commerce Package

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Farktor Software E-Commerce Services Inc. E-Commerce Package allows Cross-Site Scripting XSS. This issue affects E-Commerce Package: through 27112025...

CVE-2019-13002

An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.0.2. Unauthorized users were able to read pipeline information of the last merge request. It has Incorrect Access Control...

Linux Distros Unpatched Vulnerability : CVE-2017-13002

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The AODV parser in tcpdump before 4.9.2 has a buffer over-read in print-aodv.c:aodvextension. CVE-2017-13002 Note that Nessus relies on the presence of the...

CVE-2024-13002

A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /orderprocess.php. The manipulation of the argument fnm leads to sql injection. The attack can be launched remotely...

CVE-2024-13002

A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /orderprocess.php. The manipulation of the argument fnm leads to sql injection. The attack can be launched remotely...

CVE-2024-13002

CVE-2024-13002 affects 1000 Projects Bookstore Management System v1.0. The vulnerability is an SQL injection in the /order_process.php endpoint, triggered by manipulating the fnm parameter. It is exploitable remotely, with exploitation information disclosed publicly. Several connected sources cor...

CVE-2024-13002 1000 Projects Bookstore Management System order_process.php sql injection

A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /orderprocess.php. The manipulation of the argument fnm leads to sql injection. The attack can be launched remotely...

CVE-2024-13002 1000 Projects Bookstore Management System order_process.php sql injection

A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /orderprocess.php. The manipulation of the argument fnm leads to sql injection. The attack can be launched remotely...

SUSE CVE-2017-13002

The AODV parser in tcpdump before 4.9.2 has a buffer over-read in print-aodv.c:aodvextension...

CVE-2020-13002

...

CVE-2020-13002

CVE-2020-13002 entry is rejected/not used per description.

SUSE SLES11 Security Update : tcpdump (SUSE-SU-2019:14191-1)

The remote SUSE Linux SLES11 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2019:14191-1 advisory. - The SMB/CIFS parser in tcpdump before 4.9.2 has a buffer over-read in smbutil.c:namelen. CVE-2017-12893 - Several protocol parsers in tcpdum...

CVE-2019-13002

CVE-2019-13002 affects GitLab Community and Enterprise Edition from 11.10 through 12.0.2, where unauthorized users could read the pipeline information of the last merge request due to an incorrect access control vulnerability. The issue impacts GitLab installations using those versions; remediati...

CVE-2018-13002

The CVE-2018-13002 entry concerns Weblication CMS Core & Grid v12.6.24. A cross-site scripting (XSS) flaw exists in the wFilemanager.php and index.php files within the /grid5/scripts/ module. The vulnerability targets the Project Title field in the Inhaltsprojekte listing, allowing remote attacke...

Weblication CMS Core & Grid v12.6.24 - XSS Vulnerabilities

Document Title: =============== Weblication CMS Core & Grid v12.6.24 - XSS Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2121 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-13002 CVE-ID: ======= CVE-2018-13002 Release Date:...

DEBIAN-CVE-2017-13002

The AODV parser in tcpdump before 4.9.2 has a buffer over-read in print-aodv.c:aodvextension...

CVE-2017-13002

tcpdump 4.x before 4.9.2 contains a buffer over-read in the AODV parser (print-aodv.c:aodv_extension). This is CVE-2017-13002. The issue stems from reading memory beyond bounds in the AODV extension handling, which could crash the application or cause memory disclosure. Fix: upgrade tcpdump to 4....

CVE-2017-13002

The AODV parser in tcpdump before 4.9.2 has a buffer over-read in print-aodv.c:aodvextension...

Debian: Security Advisory (DSA-3971-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AWStats 6.2-6.1 - configdir Command Injection

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...