18 matches found
CVE-2026-13553
creationtimestamp| type| source ---|---|--- 2026-06-29 11:51:57+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpggeworr225 2026-06-29 14:06:08+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mpgnuv2el52b...
CVE-2025-13553
creationtimestamp| type| source ---|---|--- 2025-11-23 15:34:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6cn6rixfk2u 2025-11-24 03:03:15+00:00| seen| https://infosec.exchange/users/offseq/statuses/115602449624603247 2025-11-24 03:03:16+00:00| seen|...
CVE-2019-13553
Rittal Chiller SK 3232-Series web interface as built upon Carel pCOWeb firmware A1.5.3 – B1.2.4. The authentication mechanism on affected systems is configured using hard-coded credentials. These credentials could allow attackers to influence the primary operations of the affected systems, namely...
CVE-2024-13553
The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.7.9. This is due to the plugin using the Host header to determine if the plugin is in a playground environment. This makes it...
WordPress SMS Alert Order Notifications – WooCommerce plugin <= 3.7.9 - Unauthenticated Account Takeover/Privilege Escalation vulnerability
Unauthenticated Account Takeover/Privilege Escalation vulnerability discovered by Lucio Sá in WordPress Plugin SMS Alert Order Notifications versions = 3.7.9...
CVE-2024-13553
The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.7.9. This is due to the plugin using the Host header to determine if the plugin is in a playground environment. This makes it...
CVE-2024-13553
creationtimestamp| type| source ---|---|--- 2025-04-01 11:34:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9873 2025-04-01 12:40:17+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3llqvfffeth2v 2025-04-01 13:48:33+00:00| seen|...
CVE-2024-13553 SMS Alert Order Notifications – WooCommerce <= 3.7.9 - Unauthenticated Account Takeover/Privilege Escalation
The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.7.9. This is due to the plugin using the Host header to determine if the plugin is in a playground environment. This makes it...
CVE-2024-13553
CVE-2024-13553 affects the WordPress plugin SMS Alert Order Notifications – WooCommerce . The vulnerability arises because the plugin uses the Host header to detect a “playground” environment, enabling unauthenticated attackers to spoof the Host header and cause the OTP code to be “1234”, leading...
CVE-2024-13553 SMS Alert Order Notifications – WooCommerce <= 3.7.9 - Unauthenticated Account Takeover/Privilege Escalation
The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.7.9. This is due to the plugin using the Host header to determine if the plugin is in a playground environment. This makes it...
CVE-2019-13553
creationtimestamp| type| source ---|---|--- 2024-01-27 14:41:32+00:00| seen| https://t.me/ctinow/174780...
CVE-2020-13553
creationtimestamp| type| source ---|---|--- 2021-02-17 22:49:18+00:00| seen| https://t.me/cibsecurity/23771 2021-02-21 12:53:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2750...
CVE-2020-13553
An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation folder of WebAccess, an attacker can either replace binary or loaded modules to execute code with ...
CVE-2020-13553
Advantech WebAccess/SCADA 9.0.1 is affected by local privilege escalation vulnerabilities described across multiple sources (CVE-2020-13553; TALOS-2020-1169; Red Hat CVE page; CNVD/NVD entries). TALOS summarizes multiple exploitable vectors enabling NT SYSTEM-level execution by abusing weak permi...
CVE-2019-13553
The CVE-2019-13553 entry describes a vulnerability in the Rittal Chiller SK 3232-Series web interface built on Carel pCOWeb firmware (A1.5.3–B1.2.4). The underlying issue is hard-coded credentials in the authentication mechanism, which could allow an attacker to influence core operations of the c...
Rittal Chiller SK 3232-Series
1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rittal Equipment: Rittal Chiller SK 3232-Series Vulnerabilities: Missing Authentication for Critical Function, Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of these...
Silicon Graphics LibTIFF Integer Overflow Vulnerability (CNVD-2020-13553)
Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files.GDAL is an open source geospatial data abstraction library . An integer overflow vulnerabilit...
CVE-2018-13553
The CVE-2018-13553 entry concerns Micro BTC (MBTC), an Ethereum ERC-20 token. Connected documents confirm a concrete vulnerability in the token’s smart contract: the mintToken function contains an integer overflow that lets the contract owner set the balance of any arbitrary user to any value. Th...