CVE-2025-13670

The High Level Synthesis Compiler i++ command for Windows is vulnerable to a DLL planting vulnerability...

EUVD-2021-18416

Malware in sbrugna...

RHEL 9 : mod_security (RHSA-2025:13670)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:13670 advisory. ModSecurity is an open source intrusion detection and prevention engine for web applications. Security Fixes: modsecurity: ModSecurity Denial of...

CVE-2024-13670 Music Sheet Viewer <= 4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Music Sheet Viewer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pnmsv' shortcode in all versions up to, and including, 4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2024-13670 Music Sheet Viewer <= 4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Music Sheet Viewer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pnmsv' shortcode in all versions up to, and including, 4.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2024-13670

CVE-2024-13670 covers a stored XSS in the WordPress Music Sheet Viewer plugin (pn_msv shortcode) across versions up to 4.1 due to insufficient input sanitization and output escaping on user-supplied attributes. It is exploitable by authenticated attackers with contributor+ privileges to inject sc...

CVE-2019-13670

creationtimestamp| type| source ---|---|--- 2024-02-27 09:16:41+00:00| seen| https://t.me/ctinow/194141...

SUSE CVE-2019-13670

Insufficient data validation in JavaScript in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

CVE-2020-13670

Information Disclosure vulnerability in file module of Drupal Core allows an attacker to gain access to the file metadata of a permanent private file that they do not have access to by guessing the ID of the file. This issue affects: Drupal Core 8.8.x versions prior to 8.8.10; 8.9.x versions prio...

CVE-2020-13670

Information Disclosure vulnerability in file module of Drupal Core allows an attacker to gain access to the file metadata of a permanent private file that they do not have access to by guessing the ID of the file. This issue affects: Drupal Core 8.8.x versions prior to 8.8.10; 8.9.x versions prio...

CVE-2020-13670

Information Disclosure vulnerability in file module of Drupal Core allows an attacker to gain access to the file metadata of a permanent private file that they do not have access to by guessing the ID of the file. This issue affects: Drupal Core 8.8.x versions prior to 8.8.10; 8.9.x versions prio...

CVE-2020-13670

Information Disclosure vulnerability in file module of Drupal Core allows an attacker to gain access to the file metadata of a permanent private file that they do not have access to by guessing the ID of the file. This issue affects: Drupal Core 8.8.x versions prior to 8.8.10; 8.9.x versions prio...

CVE-2020-13670

CVE-2020-13670 affects Drupal Core file module: an attacker can access the metadata of a permanent private file by guessing its file ID. Exposed versions: Drupal Core 8.8.x before 8.8.10, 8.9.x before 8.9.6, and 9.0.x before 9.0.6. The issue is documented across multiple sources (NVD/NIST, Drupal...

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Vector 35 Binary Ninja 2.3.2660 Build ID 88f343c3. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific fla...

CVE-2021-31516

CVE-2021-31516 affects Vector 35 Binary Ninja 2.3.2660 (Build ID 88f343c3). The flaw is in BNDB file parsing where the code does not validate the existence of an object before performing operations, enabling a remote attacker to execute code in the current process. Exploitation requires user inte...

Fedora 32 : drupal8 (2020-d50d74d6f2)

https://www.drupal.org/project/drupal/releases/8.9.11 - https://www.drupal.org/project/drupal/releases/8.9.10 - https://www.drupal.org/sa-core-2020-013 CVE-2020-28948 / CVE-2020-28949 - https://www.drupal.org/project/drupal/releases/8.9.9 - https://www.drupal.org/sa-core-2020-012 CVE-2020-13671 -...

Drupal 8.x, 9.x Multiple Vulnerabilities (SA-CORE-2020-008, SA-CORE-2020-009, SA-CORE-2020-010, SA-CORE-2020-011) - Linux

Drupal is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:drupal:drupal"; ifdescription...

CVE-2020-13670

creationtimestamp| type| source ---|---|--- 2020-09-16 20:36:47+00:00| seen| https://t.me/thehackernews/845 2020-09-17 05:50:07+00:00| seen| https://t.me/alexmakus/3642...

CVE-2019-13670

Insufficient data validation in JavaScript in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

CVE-2019-13670

Insufficient data validation in JavaScript in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...