18 matches found
CVE-2025-13615
creationtimestamp| type| source ---|---|--- 2025-11-30 03:04:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/115636428433116034 2025-11-30 15:33:47+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/61214 2025-12-01 08:03:07+00:00| seen|...
CVE-2025-13615 StreamTube Core <= 4.78 - Unauthenticated Arbitrary User Password Change
The StreamTube Core plugin for WordPress is vulnerable to Arbitrary User Password Change in versions up to, and including, 4.78. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it possible for...
CVE-2024-13615
The Social Share Buttons, Social Sharing Icons, Click to Tweet — Social Media Plugin by Social Snap WordPress plugin through 1.3.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the...
CVE-2024-13615
creationtimestamp| type| source ---|---|--- 2025-03-11 09:16:02+00:00| seen| https://t.me/cvedetector/20052...
CVE-2024-13615
The Social Share Buttons, Social Sharing Icons, Click to Tweet — Social Media Plugin by Social Snap WordPress plugin through 1.3.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the...
CVE-2024-13615 Social Media Plugin by Social Snap <= 1.3.6 - Admin+ Stored XSS
The Social Share Buttons, Social Sharing Icons, Click to Tweet — Social Media Plugin by Social Snap WordPress plugin through 1.3.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the...
CVE-2024-13615 Social Media Plugin by Social Snap <= 1.3.6 - Admin+ Stored XSS
The Social Share Buttons, Social Sharing Icons, Click to Tweet — Social Media Plugin by Social Snap WordPress plugin through 1.3.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the...
SUSE CVE-2019-13615
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement...
CVE-2020-13615
CVE-2020-13615 affects Qore up to version 0.9.4.2; the root cause is missing hostname verification for X.509 certificates in lib/QoreSocket.cpp. This constitutes a trust-management vulnerability in TLS connections. Remediation/mitigation: upgrade to Qore 0.9.4.2 or later (as indicated by Red Hat/...
Update: VLC Media Player Plagued By Unpatched Critical RCE Flaw
UPDATE After a German security agency reported a critical vulnerability existed in VLC open-source media player that could enable remote code execution and other malicious actions, the developers of VLC said that the media player is not vulnerable. The VLC media player, developed by the VideoLAN...
CVE-2019-13615
creationtimestamp| type| source ---|---|--- 2019-07-22 09:16:59+00:00| seen| https://t.me/informationsecuritychannel/29545 2019-10-29 14:03:43+00:00| seen| https://t.me/sysodmins/5620 2026-05-26 05:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-146-05...
CVE-2019-13615
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement...
CVE-2019-13615
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement...
DEBIAN-CVE-2019-13615
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement...
CVE-2019-13615
CVE-2019-13615 affects VideoLAN VLC Media Player through libebml < 1.3.6 in the MKV demux module (used by VLC binaries
CVE-2019-13615
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement...
CVE-2019-13615
libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement...
CVE-2018-13615
The CVE-2018-13615 entry concerns a smart contract vulnerability in MJCToken (Ethereum). The mintToken function reportedly contains an integer overflow that allows the contract owner to set any user’s balance to an arbitrary value. Connected documents corroborate the core issue (overflow in mintT...