Lucene search
K

17 matches found

Circl
Circl
added 2026/06/24 11:18 p.m.6 views

CVE-2026-13208

creationtimestamp| type| source ---|---|--- 2026-06-24 23:18:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp32fkx4mk25...

6.5CVSS5.8AI score0.0009EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/24 8:38 p.m.12 views

CVE-2026-13208

A flaw was found in KubeVirt's virt-handler domain notify server. The gRPC handlers for HandleDomainEvent and HandleK8SEvent derive the VMI identity namespace/name solely from the request body without validating it against the connection's origin. Each virt-launcher pod connects through a per-VMI...

6.5CVSS5.8AI score0.0009EPSS
Exploits0References3
CVE
CVE
added 2025/11/15 6:2 p.m.12 views

CVE-2025-13208

CVE-2025-13208 affects FantasticLBP Hotels Server, with an SQL injection in controller/api/hotelList.php where manipulating the subjectId/cityName parameter can expose or modify data. The vulnerability is exploitable remotely and public exploits exist. Affected versions are stated as prior to 67b...

6.5CVSS6.3AI score0.00232EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 4:26 a.m.7 views

CVE-2019-13208

WavesSysSvc in Waves MAXX Audio allows privilege escalation because the General registry key has Full Control access for the Users group, leading to DLL side loading. This affects WavesSysSvc64.exe 1.9.29.0...

7.3CVSS7.2AI score0.00422EPSS
Exploits1References1
NVD
NVD
added 2025/02/15 6:15 a.m.18 views

CVE-2024-13208

The Maps Plugin using Google Maps for WordPress WordPress plugin before 1.9.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in...

4.3CVSS0.00295EPSS
Exploits1References1
Circl
Circl
added 2025/02/15 6:5 a.m.13 views

CVE-2024-13208

creationtimestamp| type| source ---|---|--- 2025-02-15 06:05:43+00:00| seen| https://infosec.exchange/users/cve/statuses/114006395679188174 2025-02-15 06:15:59+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li72wrpebe2o 2025-02-15 07:11:13+00:00| seen|...

4.3CVSS8.7AI score0.00295EPSS
Exploits1References5
CVE
CVE
added 2025/02/15 6:0 a.m.55 views

CVE-2024-13208

The CVE-2024-13208 entry refers to the Maps Plugin using Google Maps for WordPress that, prior to version 1.9.4, does not sanitize and escape certain settings. This could allow stored XSS by high-privilege users (e.g., admins) even when unfiltered_html is not allowed (such as in multisite). The v...

4.3CVSS5.8AI score0.00295EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/15 6:0 a.m.11 views

CVE-2024-13208 WP Google Map < 1.9.4 - Admin+ Stored XSS

The Maps Plugin using Google Maps for WordPress WordPress plugin before 1.9.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in...

4.3AI score0.00295EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/02/15 6:0 a.m.21 views

CVE-2024-13208 WP Google Map < 1.9.4 - Admin+ Stored XSS

The Maps Plugin using Google Maps for WordPress WordPress plugin before 1.9.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in...

0.00295EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/01/22 9:43 p.m.12 views

CVE-2020-13208

...

Exploits0
CVE
CVE
added 2021/01/22 9:43 p.m.27 views

CVE-2020-13208

CVE-2020-13208 is rejected/not used; this CVE ID does not represent an active vulnerability entry.

6.9AI score
Exploits0
OSV
OSV
added 2019/07/03 11:15 p.m.3 views

CVE-2019-13208

WavesSysSvc in Waves MAXX Audio allows privilege escalation because the General registry key has Full Control access for the Users group, leading to DLL side loading. This affects WavesSysSvc64.exe 1.9.29.0...

7.3CVSS7.1AI score0.00422EPSS
Exploits1References1
NVD
NVD
added 2019/07/03 11:15 p.m.19 views

CVE-2019-13208

WavesSysSvc in Waves MAXX Audio allows privilege escalation because the General registry key has Full Control access for the Users group, leading to DLL side loading. This affects WavesSysSvc64.exe 1.9.29.0...

7.3CVSS7.4AI score0.00422EPSS
Exploits1References1
CVE
CVE
added 2019/07/03 10:1 p.m.271 views

CVE-2019-13208

The CVE-2019-13208 vulnerability affects Waves MAXX Audio: WavesSysSvc64.exe (v1.9.29.0) suffers privilege escalation due to DLL side loading caused by the General registry key granting Full Control to the Users group. This is a local escalation scenario with potential high impact as described in...

7.3CVSS7.3AI score0.00422EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/07/03 10:1 p.m.25 views

CVE-2019-13208

WavesSysSvc in Waves MAXX Audio allows privilege escalation because the General registry key has Full Control access for the Users group, leading to DLL side loading. This affects WavesSysSvc64.exe 1.9.29.0...

7.4AI score0.00422EPSS
Exploits1References1
CVE
CVE
added 2018/07/05 2:0 a.m.37 views

CVE-2018-13208

The CVE-2018-13208 entry concerns MoneyTree (TREE) Ethereum token: the sell function of its smart contract is vulnerable to an integer overflow where amount * sellPrice can become zero, thereby reducing the seller’s assets. This is documented as a vulnerability in the contract’s sell operation, w...

7.5CVSS7.7AI score0.00988EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/01/12 11:0 p.m.71 views

CVE-2017-13208

CVE-2017-13208 affects Android via libnetutils/packet.c receive_packet, enabling a possible remote code execution through an out-of-bounds write on DHCP responses. Impacted Android versions: 5.1.1–8.1. Vector: network; no user interaction required; no additional privileges needed. The Android Sec...

10CVSS9.2AI score0.08533EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder