Lucene search
K

37 matches found

Circl
Circl
added 2026/07/02 7:45 a.m.8 views

CVE-2026-13920

creationtimestamp| type| source ---|---|--- 2026-07-02 07:45:55+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260702 2026-07-06 07:18:43+00:00| seen| https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities20260706...

9.6CVSS5.9AI score0.00316EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-13920

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of untrusted input in Media in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the rendere...

9.6CVSS6.2AI score0.00316EPSS
Exploits0References2
OSV
OSV
added 2026/06/30 11:17 p.m.4 views

DEBIAN-CVE-2026-13920

Insufficient validation of untrusted input in Media in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.8AI score0.00316EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/30 10:38 p.m.4 views

CVE-2026-13920

Insufficient validation of untrusted input in Media in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.8AI score0.00316EPSS
Exploits0
Circl
Circl
added 2026/01/24 3:59 p.m.8 views

CVE-2025-13920

creationtimestamp| type| source ---|---|--- 2026-01-24 15:59:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3md6lhavi642c 2026-03-17 02:22:55+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-13920.yaml 2026-03-17...

5.3CVSS5.8AI score0.00669EPSS
Exploits0References4
NVD
NVD
added 2026/01/24 1:15 p.m.7 views

CVE-2025-13920

The WP Directory Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.9 via the wdkpublicaction AJAX handler. This makes it possible for unauthenticated attackers to extract email addresses for users with Directory Kit-specific user...

5.3CVSS0.00669EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:7 a.m.8 views

CVE-2019-13920

A vulnerability has been identified in SINEMA Remote Connect Server All versions V2.0 SP1. Some parts of the web application are not protected against Cross Site Request Forgery CSRF attacks. The security vulnerability could be exploited by an attacker that is able to trigger requests of a...

4.3CVSS6.2AI score0.00426EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:33 a.m.9 views

CVE-2018-13920

Use-after-free condition due to Improper handling of hrtimers when the PMU driver tries to access its events in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9206, MDM9607, MDM9650, MSM8909W, QCS605, Qualcomm 215, SD 425, SD 439...

7.8CVSS7.3AI score0.00211EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/22 2:0 p.m.27 views

CVE-2024-13920

The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.6.0 via the downloadfile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents ...

4.9CVSS6.8AI score0.00713EPSS
Exploits0References1
Circl
Circl
added 2025/03/20 3:43 p.m.7 views

CVE-2024-13920

creationtimestamp| type| source ---|---|--- 2025-03-20 15:43:43+00:00| seen| https://t.me/cvedetector/20732...

4.9CVSS8.4AI score0.00713EPSS
Exploits0References1
NVD
NVD
added 2025/03/20 12:15 p.m.32 views

CVE-2024-13920

The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.6.0 via the downloadfile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents ...

4.9CVSS0.00713EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/03/20 11:11 a.m.32 views

CVE-2024-13920 Order Export & Order Import for WooCommerce <= 2.6.0 - Directory Traversal to Authenticated (Administrator+) Limited Arbitrary File Read via download_file Function

The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.6.0 via the downloadfile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents ...

4.9CVSS0.00713EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/03/20 11:11 a.m.13 views

CVE-2024-13920 Order Export & Order Import for WooCommerce <= 2.6.0 - Directory Traversal to Authenticated (Administrator+) Limited Arbitrary File Read via download_file Function

The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.6.0 via the downloadfile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents ...

4.9CVSS4.9AI score0.00713EPSS
Exploits0References4
CVE
CVE
added 2025/03/20 11:11 a.m.58 views

CVE-2024-13920

CVE-2024-13920 affects the WordPress plugin Order Export & Order Import for WooCommerce (

4.9CVSS4.8AI score0.00713EPSS
Exploits0References4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/02 12:46 p.m.62 views

Security Bulletin: Multiple Vulnerabilities in IBM Application Performance Management

Summary Multiple vulnerabilities were addressed in IBM Application Performance Management 8.1.4.0 IF15 patch Vulnerability Details CVEID:CVE-2020-13920 DESCRIPTION: Apache ActiveMQ is vulnerable to a man-in-the-middle attack, caused by improper authentication validation when connecting to the JMX...

9.8CVSS9.8AI score0.98518EPSS
Exploits26Affected Software1
OpenVAS
OpenVAS
added 2023/11/21 12:0 a.m.35 views

Debian: Security Advisory (DLA-3657-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.5AI score0.99654EPSS
Exploits31References6
Debian
Debian
added 2023/11/20 9:14 p.m.48 views

[SECURITY] [DLA 3657-1] activemq security update

Debian LTS Advisory DLA-3657-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany November 20, 2023 https://wiki.debian.org/LTS Package : activemq Version : 5.15.16-0+deb10u1 CVE ID : CVE-2020-13920 CVE-2021-26117 CVE-2023-46604 Debian Bug : 1054909 982590 Several...

10CVSS7.3AI score0.99654EPSS
Exploits31
Tenable Nessus
Tenable Nessus
added 2023/11/20 12:0 a.m.60 views

Debian dla-3657 : activemq - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3657 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3657-1 [email protected]...

10CVSS8.2AI score0.99654EPSS
Exploits31References8
NVD
NVD
added 2023/09/14 7:15 p.m.8 views

CVE-2017-13920

Rejected reason: This candidate is unused by its CNA...

6.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/10/01 12:0 a.m.40 views

FreeBSD : nexus2-oss -- Apache ActiveMQ JMX vulnerability (730e922f-20e7-11ec-a574-080027eedc6a)

Sonatype reports : - CVE-2020-13920: Apache ActiveMQ JMX is vulnerable to a MITM attack %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2021 Jacques Vidrine and contributors...

5.9CVSS6.8AI score0.04561EPSS
Exploits0References3
Rows per page
Query Builder