CVE-2025-13683

Exposure of credentials in unintended requests in Devolutions Server, Remote Desktop Manager on Windows.This issue affects Devolutions Server: through 2025.3.8.0; Remote Desktop Manager: through 2025.3.23.0...

Devolutions Server < 2025.3.10.0 AI Integration API Key Exposure (DEVO-2025-0017)

The version of Devolutions Server installed on the remote host is prior to 2025.3.10.0, and is, therefore, affected by an AI integration API key exposure vulnerability: - Exposure of credentials in unintended requests in Devolutions Server, Remote Desktop Manager on Windows. This issue affects...

Devolutions Remote Desktop Manager <= 2025.3.23.0 AI Integration API Key Exposure (DEVO-2025-0017)

The version of Devolutions Remote Desktop Manager installed on the remote host is prior or equal to 2025.2.23.0 and is, therefore, affected by an AI integration API key exposure vulnerability: - Exposure of credentials in unintended requests in Devolutions Server, Remote Desktop Manager on Window...

CVE-2025-13683

creationtimestamp| type| source ---|---|--- 2025-11-28 18:28:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6pja42fen2u...

CVE-2025-13683

Exposure of credentials in unintended requests in Devolutions Server, Remote Desktop Manager on Windows.This issue affects Devolutions Server: through 2025.3.8.0; Remote Desktop Manager: through 2025.3.23.0...

CVE-2025-13683

CVE-2025-13683 describes exposure of credentials via unintended requests in Devolutions Server and Devolutions Remote Desktop Manager on Windows. Affected versions: Devolutions Server up to 2025.3.8.0 and Remote Desktop Manager up to 2025.3.23.0. Impact is high confidentiality exposure over netwo...

CVE-2024-13683

The Automate Hub Free by Sperse.IO plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7.0. This is due to missing or incorrect nonce validation on the 'automatehub' page. This makes it possible for unauthenticated attackers to update an...

CVE-2024-13683

creationtimestamp| type| source ---|---|--- 2025-01-24 08:03:57+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2883 2025-01-24 09:23:03+00:00| seen| https://t.me/cvedetector/16252...

CVE-2024-13683

The Automate Hub Free by Sperse.IO plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7.0. This is due to missing or incorrect nonce validation on the 'automatehub' page. This makes it possible for unauthenticated attackers to update an...

CVE-2024-13683 Automate Hub Free by Sperse.IO <= 1.7.0 - Cross-Site Request Forgery to Activation Status Update

The Automate Hub Free by Sperse.IO plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7.0. This is due to missing or incorrect nonce validation on the 'automatehub' page. This makes it possible for unauthenticated attackers to update an...

CVE-2024-13683 Automate Hub Free by Sperse.IO <= 1.7.0 - Cross-Site Request Forgery to Activation Status Update

The Automate Hub Free by Sperse.IO plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7.0. This is due to missing or incorrect nonce validation on the 'automatehub' page. This makes it possible for unauthenticated attackers to update an...

CVE-2024-13683

CVE-2024-13683 – Automate Hub Free by Sperse.IO (WordPress) Impact: Cross-Site Request Forgery (CSRF) on the Automate Hub page could allow unauthenticated attackers to update an activation status if a site administrator is tricked into performing an action. Root cause: missing or incorrect nonce ...

CVE-2019-13683

creationtimestamp| type| source ---|---|--- 2024-02-27 09:46:18+00:00| seen| https://t.me/ctinow/194157...

CVE-2019-13683

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2019-13683

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2019-13683

Insufficient policy enforcement in developer tools in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2019-13683

CVE-2019-13683 affects Google Chrome prior to 77.0.3865.75, where insufficient policy enforcement in developer tools could allow a crafted HTML page to leak cross-origin data. The vulnerability is a cross-origin data disclosure via the browser’s developer tools surface, with network-vector exposu...

Fedora 31 : chromium (2019-9a5e81214f)

Chromium update to 77.0.3865.120. For the upstream announcement see https://chromereleases.googleblog.com/2019/10/stable-channel-update-fo r-desktop.html. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

Updated chromium-browser-stable packages fix security vulnerabilities

Multiple flaws were found in the way Chromium 73.0.3683.103 processes various types of web content, where loading a web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information. CVE-2019-5805, CVE-2019-5806, CVE-2019-5807,...

openSUSE Security Update : chromium (openSUSE-2019-2153)

This update for chromium fixes the following issues : Security issues fixed : - CVE-2019-5870: Fixed a use-after-free in media. boo1150425 - CVE-2019-5871: Fixed a heap overflow in Skia. boo1150425 - CVE-2019-5872: Fixed a use-after-free in Mojo boo1150425 - CVE-2019-5874: Fixed a behavior that...