MAL-2025-13391 Malicious code in @zalastax/nolb-promisey (npm)

The package @zalastax/nolb-promisey was found to contain malicious code...

CVE-2024-13391

The MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Tokens Wallet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhispercontentuploadguest' shortcode in all versions up to, and including, 2.9.29 due to insufficient input...

CVE-2024-13391

creationtimestamp| type| source ---|---|--- 2025-01-18 07:15:59+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfyrabncqt2s 2025-01-18 07:23:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113848157389547327 2025-01-18 07:39:16+00:00| seen|...

CVE-2024-13391

The MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Tokens Wallet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhispercontentuploadguest' shortcode in all versions up to, and including, 2.9.29 due to insufficient input...

CVE-2024-13391 MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Tokens Wallet <= 2.9.29 - Authenticated (Contributor+) Stored Cross-Site Scripting

The MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Tokens Wallet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhispercontentuploadguest' shortcode in all versions up to, and including, 2.9.29 due to insufficient input...

CVE-2024-13391

CVE-2024-13391 relates to a Stored Cross‑Site Scripting vulnerability in the WordPress plugin MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Wallet . The flaw exists in the shortcode videowhisper_content_upload_guest and arises from insufficient input sanitization and o...

Radareorg Radare2 Buffer Overflow Vulnerability (CNVD-2022-13391)

radare2 is a set of libraries and tools for working with binary files. radareorg Radare2 suffers from a buffer overflow vulnerability that stems from the product's failure to effectively determine memory boundaries, which could be exploited by an attacker to cause a buffer overflow...

Huawei EulerOS: Security Advisory for ImageMagick (EulerOS-SA-2020-1806)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Tenda Buffer Overflow (CVE-2020-13389; CVE-2020-13390; CVE-2020-13391; CVE-2020-13392; CVE-2020-13393)

A buffer overflow vulnerability exists in Tenda. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

CVE-2020-13391

creationtimestamp| type| source ---|---|--- 2020-05-27 07:55:32+00:00| seen| https://t.me/cibsecurity/12300...

CVE-2020-13391

An issue was discovered on Tenda AC6 V1.0 V15.03.05.19multiTD01, AC9 V1.0 V15.03.05.196318CN, AC9 V3.0 V15.03.06.42multi, AC15 V1.0 V15.03.05.19multiTD01, and AC18 V15.03.05.196318CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. While processing the...

CVE-2020-13391

CVE-2020-13391 affects Tenda AC6/AC9/AC15/AC18 devices (various firmwares). A buffer overflow exists in the httpd when handling the POST /goform/SetSpeedWan with the speed_dir parameter, where the input is directly used in a sprintf to a local stack variable, overwriting the return address and en...

Security Bulletin: IBM Integration Bus Hyper visor Edition V9.0 require customer action for security vulnerabilities in Red Hat Linux

Summary IBM Integration Bus Hypervisor Edition V9.0 ship with Red Hat Enterprise Linux RHEL Server 6.2 which is vulnerable to: CVE-2019-13391 Vulnerability Details CVEID: CVE-2019-13391 DESCRIPTION: In ImageMagick 7.0.8-50 Q16, ComplexImages in MagickCore/fourier.c has a heap-based buffer over-re...

SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2019:2010-1)

This update for ImageMagick fixes the following issues : CVE-2019-13301: Fixed a memory leak in AcquireMagickMemory bsc1140554. CVE-2019-13310: Fixed a memory leak at AcquireMagickMemory because of an error in MagickWand/mogrify.c bsc1140501. CVE-2019-13311: Fixed a memory leak at...

CVE-2019-13391

creationtimestamp| type| source ---|---|--- 2019-07-08 00:59:54+00:00| seen| https://t.me/cveNotify/292...

DEBIAN-CVE-2019-13391

In ImageMagick 7.0.8-50 Q16, ComplexImages in MagickCore/fourier.c has a heap-based buffer over-read because of incorrect calls to GetCacheViewVirtualPixels...

UBUNTU-CVE-2019-13391

In ImageMagick 7.0.8-50 Q16, ComplexImages in MagickCore/fourier.c has a heap-based buffer over-read because of incorrect calls to GetCacheViewVirtualPixels...

CVE-2019-13391

In ImageMagick 7.0.8-50 Q16, ComplexImages in MagickCore/fourier.c has a heap-based buffer over-read because of incorrect calls to GetCacheViewVirtualPixels...

CVE-2019-13391

CVE-2019-13391 affects ImageMagick 7.0.8-50 Q16 where ComplexImages in MagickCore/fourier.c can trigger a heap-based buffer over-read due to incorrect calls to GetCacheViewVirtualPixels. The vulnerability is described as a heap-based over-read in ComplexImages, with the CVSS v3.0 vector indicatin...

CVE-2018-13391

The CVE-2018-13391 issue affects Atlassian Jira Server across multiple versions, enabling remote attackers who can access and view an issue to obtain the reporter’s and assignee’s email addresses even when email visibility is configured to hidden. Affected ranges are: Jira Server before 7.6.8; 7....