Lucene search
K

18 matches found

Circl
Circl
added 2026/06/29 11:51 a.m.6 views

CVE-2026-13553

creationtimestamp| type| source ---|---|--- 2026-06-29 11:51:57+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpggeworr225 2026-06-29 14:06:08+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mpgnuv2el52b...

7.5CVSS7.1AI score0.00474EPSS
Exploits0References2
Circl
Circl
added 2025/11/23 3:34 p.m.5 views

CVE-2025-13553

creationtimestamp| type| source ---|---|--- 2025-11-23 15:34:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6cn6rixfk2u 2025-11-24 03:03:15+00:00| seen| https://infosec.exchange/users/offseq/statuses/115602449624603247 2025-11-24 03:03:16+00:00| seen|...

9CVSS8.8AI score0.00631EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 8:5 a.m.8 views

CVE-2019-13553

Rittal Chiller SK 3232-Series web interface as built upon Carel pCOWeb firmware A1.5.3 – B1.2.4. The authentication mechanism on affected systems is configured using hard-coded credentials. These credentials could allow attackers to influence the primary operations of the affected systems, namely...

10CVSS7.2AI score0.0182EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/03 11:37 a.m.9 views

CVE-2024-13553

The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.7.9. This is due to the plugin using the Host header to determine if the plugin is in a playground environment. This makes it...

9.8CVSS7.6AI score0.00507EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/01 5:35 p.m.5 views

WordPress SMS Alert Order Notifications – WooCommerce plugin <= 3.7.9 - Unauthenticated Account Takeover/Privilege Escalation vulnerability

Unauthenticated Account Takeover/Privilege Escalation vulnerability discovered by Lucio Sá in WordPress Plugin SMS Alert Order Notifications versions = 3.7.9...

9.8CVSS8.4AI score0.00507EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/04/01 12:15 p.m.11 views

CVE-2024-13553

The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.7.9. This is due to the plugin using the Host header to determine if the plugin is in a playground environment. This makes it...

9.8CVSS0.00507EPSS
Exploits0References3
Circl
Circl
added 2025/04/01 11:34 a.m.5 views

CVE-2024-13553

creationtimestamp| type| source ---|---|--- 2025-04-01 11:34:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9873 2025-04-01 12:40:17+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3llqvfffeth2v 2025-04-01 13:48:33+00:00| seen|...

9.8CVSS8.7AI score0.00507EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/04/01 11:12 a.m.4 views

CVE-2024-13553 SMS Alert Order Notifications – WooCommerce <= 3.7.9 - Unauthenticated Account Takeover/Privilege Escalation

The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.7.9. This is due to the plugin using the Host header to determine if the plugin is in a playground environment. This makes it...

9.8CVSS7.6AI score0.00507EPSS
Exploits0References3
CVE
CVE
added 2025/04/01 11:12 a.m.57 views

CVE-2024-13553

CVE-2024-13553 affects the WordPress plugin SMS Alert Order Notifications – WooCommerce . The vulnerability arises because the plugin uses the Host header to detect a “playground” environment, enabling unauthenticated attackers to spoof the Host header and cause the OTP code to be “1234”, leading...

9.8CVSS7.6AI score0.00507EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/04/01 11:12 a.m.20 views

CVE-2024-13553 SMS Alert Order Notifications – WooCommerce <= 3.7.9 - Unauthenticated Account Takeover/Privilege Escalation

The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.7.9. This is due to the plugin using the Host header to determine if the plugin is in a playground environment. This makes it...

9.8CVSS0.00507EPSS
Exploits0References3
Circl
Circl
added 2024/01/27 2:41 p.m.5 views

CVE-2019-13553

creationtimestamp| type| source ---|---|--- 2024-01-27 14:41:32+00:00| seen| https://t.me/ctinow/174780...

10CVSS8.7AI score0.0182EPSS
Exploits1References1
Circl
Circl
added 2021/02/17 10:49 p.m.5 views

CVE-2020-13553

creationtimestamp| type| source ---|---|--- 2021-02-17 22:49:18+00:00| seen| https://t.me/cibsecurity/23771 2021-02-21 12:53:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2750...

8.8CVSS8.1AI score0.00504EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/02/17 6:20 p.m.28 views

CVE-2020-13553

An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation folder of WebAccess, an attacker can either replace binary or loaded modules to execute code with ...

8.8CVSS8.8AI score0.00504EPSS
Exploits1References1
CVE
CVE
added 2021/02/17 6:20 p.m.57 views

CVE-2020-13553

Advantech WebAccess/SCADA 9.0.1 is affected by local privilege escalation vulnerabilities described across multiple sources (CVE-2020-13553; TALOS-2020-1169; Red Hat CVE page; CNVD/NVD entries). TALOS summarizes multiple exploitable vectors enabling NT SYSTEM-level execution by abusing weak permi...

8.8CVSS8.7AI score0.00504EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/10/25 5:46 p.m.167 views

CVE-2019-13553

The CVE-2019-13553 entry describes a vulnerability in the Rittal Chiller SK 3232-Series web interface built on Carel pCOWeb firmware (A1.5.3–B1.2.4). The underlying issue is hard-coded credentials in the authentication mechanism, which could allow an attacker to influence core operations of the c...

10CVSS9.5AI score0.0182EPSS
Exploits1References2Affected Software1
ICS
ICS
added 2019/10/24 12:0 a.m.159 views

Rittal Chiller SK 3232-Series

1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rittal Equipment: Rittal Chiller SK 3232-Series Vulnerabilities: Missing Authentication for Critical Function, Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of these...

10CVSS9.3AI score0.0182EPSS
Exploits2References5
CNVD
CNVD
added 2019/10/14 12:0 a.m.1 views

Silicon Graphics LibTIFF Integer Overflow Vulnerability (CNVD-2020-13553)

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files.GDAL is an open source geospatial data abstraction library . An integer overflow vulnerabilit...

8.8CVSS8.5AI score0.03356EPSS
Exploits0References1
CVE
CVE
added 2018/07/09 6:0 a.m.32 views

CVE-2018-13553

The CVE-2018-13553 entry concerns Micro BTC (MBTC), an Ethereum ERC-20 token. Connected documents confirm a concrete vulnerability in the token’s smart contract: the mintToken function contains an integer overflow that lets the contract owner set the balance of any arbitrary user to any value. Th...

7.5CVSS7.7AI score0.01024EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder