CVE-2025-13205

CVE-2025-13205 affects the SurveyJS: Drag & Drop Form Builder for WordPress, versions up to and including 1.12.20. The root cause is missing or incorrect nonce validation on the SurveyJS_CloneSurvey AJAX action, enabling CSRF. Impact: unauthenticated attackers could duplicate surveys by tricking ...

CVE-2024-13205

A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/createproduct.php of the component Create Product Page. The manipulation of the argument Name leads to cross site scripting. Th...

CVE-2024-13205

creationtimestamp| type| source ---|---|--- 2025-01-09 02:58:10+00:00| seen| https://infosec.exchange/users/cve/statuses/113796152684603958 2025-01-09 03:12:54+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/874 2025-01-09 03:15:59+00:00| seen|...

CVE-2024-13205 kurniaramadhan E-Commerce-PHP Create Product Page create_product.php cross site scripting

A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/createproduct.php of the component Create Product Page. The manipulation of the argument Name leads to cross site scripting. Th...

CVE-2024-13205 kurniaramadhan E-Commerce-PHP Create Product Page create_product.php cross site scripting

A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/createproduct.php of the component Create Product Page. The manipulation of the argument Name leads to cross site scripting. Th...

CVE-2020-13205

...

CVE-2020-13205

CVE-2020-13205 is rejected/not used according to the Initial Description.

CVE-2019-13205

All configuration parameters of certain Kyocera printers such as the ECOSYS M5526cdw 2R72000.001.701 were accessible by unauthenticated users. This information was only presented in the menus when authenticated, and the pages that loaded this information were also protected. However, all files th...

CVE-2019-13205

All configuration parameters of certain Kyocera printers such as the ECOSYS M5526cdw 2R72000.001.701 were accessible by unauthenticated users. This information was only presented in the menus when authenticated, and the pages that loaded this information were also protected. However, all files th...

CVE-2019-13205

CVE-2019-13205 affects Kyocera printers (e.g., ECOSYS M5526cdw with firmware 2R7_2000.001.701). Unauthenticated users could access configuration parameters; information was shown only to authenticated users in menus, yet the underlying files containing parameters (including users, community strin...

CVE-2018-13205

CVE-2018-13205 affects the ohni_2 (OHNI) Ethereum token smart contract. The sell function allows an integer overflow where amount * sellPrice can evaluate to zero, which can reduce a seller’s assets. Documents consistently describe a numeric overflow in the sale flow but do not provide detailed a...

CVE-2017-13205

An information disclosure vulnerability in the Android media framework libmpeg2. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64550583...

CVE-2017-13205

CVE-2017-13205 is described as an information disclosure vulnerability in Android’s media framework (libmpeg2) affecting Android 7.0–8.1. The initial description provides affected versions and an Android ID but no exploitation details. Connected records (Pixel/Nexus bulletin) reference this CVE w...