CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

ATTACKERKB•added 2026/02/20 6:35 p.m.•5 views

CVE-2018-13270

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2018. Notes: none...

5.5AI score

Exploits0References1

Circl•added 2025/11/17 8:40 a.m.•9 views

CVE-2025-13270

creationtimestamp| type| source ---|---|--- 2025-11-17 08:40:33+00:00| seen| https://bsky.app/profile/potato.software/post/3m5staijhiu2c 2025-11-17 11:23:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m5t4ei7cgx2w...

8.8CVSS5.8AI score0.00027EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-13270

Malicious code in bioql PyPI...

6.3CVSS6.6AI score0.12487EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 10:6 a.m.•6 views

CVE-2019-13270

Edimax BR-6208AC V1 devices have Insufficient Compartmentalization between a host network and a guest network that are established by the same device. In order to transfer data from the host network to the guest network, the sender joins and then leaves an IGMP group. After it leaves, the router...

8.8CVSS7AI score0.00115EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 1:45 p.m.•8 views

CVE-2020-13270

Missing permission check on fork relation creation in GitLab CE/EE 11.3 and later through 13.0.1 allows guest users to create a fork relation on restricted public projects via API...

8.8CVSS6.3AI score0.00358EPSS

Exploits0

Circl•added 2025/01/09 8:16 p.m.•1 views

CVE-2024-13270

creationtimestamp| type| source ---|---|--- 2025-01-09 20:16:22+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfdinhg7el22...

4.3CVSS6.9AI score0.00096EPSS

Exploits0References1

NVD•added 2025/01/09 8:15 p.m.•8 views

CVE-2024-13270

Incorrect Authorization vulnerability in Drupal Freelinking allows Forceful Browsing.This issue affects Freelinking: from 0.0.0 before 4.0.1...

4.3CVSS0.00096EPSS

Exploits0References1

CVE•added 2025/01/09 7:19 p.m.•41 views

CVE-2024-13270

The CVE-2024-13270 entry relates to the Drupal Freelinking module. Both NVD/NVD-derived and Drupal security advisory data indicate an Incorrect Authorization vulnerability in Freelinking prior to 4.0.1, which enables forceful browsing via insufficient access checks when rendering links. The issue...

4.3CVSS6.7AI score0.00096EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/01/09 7:19 p.m.•4 views

CVE-2024-13270 Freelinking - Moderately critical - Information Disclosure - SA-CONTRIB-2024-034

Incorrect Authorization vulnerability in Drupal Freelinking allows Forceful Browsing.This issue affects Freelinking: from 0.0.0 before 4.0.1...

4.8AI score0.00096EPSS

Exploits0References1

Tenable Nessus•added 2024/05/17 12:0 a.m.•17 views

GitLab 11.3 < 12.9.8 / 12.10 < 12.10.7 / 13.0 < 13.0.1 (CVE-2020-13270)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Missing permission check on fork relation creation in GitLab CE/EE 11.3 and later through 13.0.1 allows guest users to create a fork relation on restricted public projects via API CVE-2020-13270 Note...

8.8CVSS7.8AI score0.00358EPSS

Exploits0References4

Prion•added 2021/10/25 5:15 p.m.•7 views

Stack overflow

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2020 1.01rc001 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the var:menu parameter provided to the webpr...

5.8CVSS8.8AI score0.01524EPSS

Exploits0References2Affected Software1

Cvelist•added 2021/10/25 5:10 p.m.•15 views

CVE-2021-34862

8.8CVSS9AI score0.01524EPSS

Exploits0References2

CVE•added 2021/10/25 5:10 p.m.•47 views

CVE-2021-34862

The CVE-2021-34862 entry pertains to D-Link DAP-2020 routers (firmware around 1.01rc001) with a stack-based buffer overflow in the webproc endpoint caused by improper validation of the var:menu parameter. Reported as a remote code execution vulnerability, it can be exploited by network-adjacent a...

8.8CVSS8.8AI score0.01524EPSS

Exploits0References2Affected Software1

CVE•added 2020/06/10 2:35 p.m.•60 views

CVE-2020-13270

CVE-2020-13270 affects GitLab Community and Enterprise Editions (CE/EE) from 11.3 up to 13.0.1, due to a missing permission check when creating fork relations. The underlying issue allows guest users to create fork relationships on restricted public projects via the API. The available sources con...

8.8CVSS8.2AI score0.00358EPSS

Exploits0References3Affected Software1

Debian CVE•added 2020/06/10 2:35 p.m.•21 views

CVE-2020-13270

Removed by vendor...

8.8CVSS7.3AI score0.00358EPSS

Exploits0

Cvelist•added 2019/08/27 5:3 p.m.•9 views

CVE-2019-13270

8.7AI score0.00115EPSS

Exploits1References2

CVE•added 2019/08/27 5:3 p.m.•103 views

CVE-2019-13270

Edimax BR-6208AC V1 devices are affected by a cross-router covert-channel vulnerability where insufficient isolation between host and guest networks allows data to be transferred within the Group IP field of an IGMP packet. The vulnerability arises from withingroup communication enabled by the se...

8.8CVSS8.6AI score0.00115EPSS

Exploits1References2Affected Software1

Cvelist•added 2019/01/07 6:0 p.m.•6 views

CVE-2018-13270

...

Exploits0

CVE•added 2019/01/07 6:0 p.m.•23 views

CVE-2018-13270

CVE-2018-13270 entry is rejected and does not represent an active vulnerability.

7.3AI score

Exploits0

NVD•added 2018/04/04 5:29 p.m.•12 views