20 matches found
CVE-2026-13923 vulnerabilities
Vulnerabilities for packages: chromium...
CVE-2026-13923 vulnerabilities
Vulnerabilities for packages: chromium...
Linux Distros Unpatched Vulnerability : CVE-2026-13923
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Uninitialized Use in GPU in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process...
CVE-2026-13923
CVE-2026-13923 : The connected documents specify that Google Chrome on Android is affected by an uninitialized GPU use vulnerability that can allow a remote attacker to read potentially sensitive data from a process memory via a crafted HTML page. Root cause: uninitialized use in the GPU componen...
CVE-2026-13923
Uninitialized Use in GPU in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...
CVE-2019-13923
A vulnerability has been identified in IE/WSN-PA Link WirelessHART Gateway All versions. The integrated configuration web server of the affected device could allow Cross-Site Scripting XSS attacks if unsuspecting users are tricked into accessing a malicious link. User interaction is required for ...
CVE-2024-13923
The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.6.0 via the validatefile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web...
CVE-2024-13923
creationtimestamp| type| source ---|---|--- 2025-03-20 15:43:46+00:00| seen| https://t.me/cvedetector/20735...
CVE-2024-13923
The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.6.0 via the validatefile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web...
CVE-2024-13923 Order Export & Order Import for WooCommerce <= 2.6.0 - Authenticated (Administrator+) Server-Side Request Forgery via validate_file Function
The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.6.0 via the validatefile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web...
CVE-2024-13923 Order Export & Order Import for WooCommerce <= 2.6.0 - Authenticated (Administrator+) Server-Side Request Forgery via validate_file Function
The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.6.0 via the validatefile function. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web...
CVE-2024-13923
CVE-2024-13923 : The Order Export & Order Import for WooCommerce WordPress plugin is vulnerable to Server-Side Request Forgery via the validate_file() function in all versions up to and including 2.6.0. Exploitation requires authenticated Administrator-level access or higher and allows web reques...
CVE-2017-13923
Rejected reason: This candidate is unused by its CNA...
CVE-2018-13923
...
CVE-2018-13923
CVE-2018-13923 entry is rejected/not used and does not represent an active vulnerability.
CVE-2020-13923
CVE-2020-13923 is an IDOR vulnerability in the order processing feature of the ERP/commerce component of Apache OFBiz, affecting versions prior to 17.12.04. The connected CNVD entry characterizes the issue as an input validation error that enables bypassing security restrictions and direct access...
CVE-2019-13923
The CVE-2019-13923 issue affects all versions of Siemens IE/WSN-PA Link WirelessHART Gateway. The vulnerability is Cross-Site Scripting (CWE-79) in the integrated configuration web server, allowing a malicious link to trigger client-side code execution when a logged-in user with browser access vi...
CVE-2025-13923
CVE-2025-13923 entry is rejected/not used and does not represent an active vulnerability.
CVE-2025-13923
...
CVE-2017-13923
CVE-2017-13923 entry is rejected/not used per Initial Description.