Lucene search
K

16 matches found

Debian CVE
Debian CVE
added 2026/06/30 10:38 p.m.7 views

CVE-2026-13961

Insufficient validation of untrusted input in DevTools in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security...

5.3CVSS5.8AI score0.00265EPSS
Exploits0
CVE
CVE
added 2026/06/30 10:38 p.m.18 views

CVE-2026-13961

The CVE-2026-13961 issue affects Google Chrome on Windows, specifically DevTools. It arises from insufficient validation of untrusted input, allowing a remote attacker who convinces a user to perform certain UI gestures to potentially read sensitive data from process memory via a crafted HTML pag...

5.3CVSS5.8AI score0.00265EPSS
Exploits0References2Affected Software1
Circl
Circl
added 2025/12/12 8:21 a.m.4 views

CVE-2025-13961

creationtimestamp| type| source ---|---|--- 2025-12-12 08:21:00+00:00| seen| https://gist.github.com/Darkcrai86/67d480a4d6410dc250328d8e656f125c...

6.4CVSS5.7AI score0.00237EPSS
Exploits0References1
NVD
NVD
added 2025/05/09 4:15 p.m.12 views

CVE-2024-13961

Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU...

7.8CVSS0.00142EPSS
Exploits0References1
Circl
Circl
added 2025/05/09 4:5 p.m.12 views

CVE-2024-13961

creationtimestamp| type| source ---|---|--- 2025-05-09 16:05:01+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3loqsk3e5ehc2 2025-05-09 16:12:29+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114478753232862764 2025-07-29...

7.8CVSS6.5AI score0.00142EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/05/09 3:20 p.m.8 views

CVE-2024-13961 Avast Cleanup Premium TuneupSvc Link Following Local Privilege Escalation Vulnerability

Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU...

7.8CVSS8AI score0.00142EPSS
Exploits0References1
CVE
CVE
added 2025/05/09 3:20 p.m.53 views

CVE-2024-13961

CVE-2024-13961 affects Avast Cleanup Premium (TuneupSvc) on Windows 10 Pro x64, version 24.2.16593.17810. A local attacker can create a symbolic link and abuse a TOCTTOU flaw in TuneupSvc to escalate privileges to SYSTEM and execute arbitrary code. No public exploit details are provided in the in...

7.8CVSS7.9AI score0.00142EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/09 3:20 p.m.18 views

CVE-2024-13961 Avast Cleanup Premium TuneupSvc Link Following Local Privilege Escalation Vulnerability

Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU...

7.8CVSS0.00142EPSS
Exploits0References1
Circl
Circl
added 2025/04/12 9:2 p.m.10 views

CVE-2019-13961

creationtimestamp| type| source ---|---|--- 2025-04-12 21:02:15+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lmngl2ugap2h...

8.8CVSS6.9AI score0.02254EPSS
Exploits4References1
Packet Storm
Packet Storm
added 2025/04/11 12:0 a.m.156 views

📄 flatCore Cross Site Request Forgery

flatCore versions prior to 1.5 suffer from a cross site request forgery vulnerability. Exploit Title: flatCore CSRF PoC Replace Your Domain Name...

8.8CVSS8.5AI score0.02254EPSS
Exploits4
NVD
NVD
added 2023/09/14 7:15 p.m.9 views

CVE-2017-13961

Rejected reason: This candidate is unused by its CNA...

6.6AI score
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/24 5:21 p.m.9 views

@depup/strapi (=2.0.2-depup.0), @symbol-it/strapi-plugin-mailjet (>=0.0.1 <=0.0.2) +8 more potentially affected by CVE-2020-13961 via strapi (>=2.0.2 <=3.0.0)

strapi NPM version =2.0.2, =0.0.1, =0.0.34, =2.0.0, =2.0.0, =0.0.1-alpha.1, =0.0.1-alpha.2 - strapi-plugin-mailjet =0.0.2 Source cves: CVE-2020-13961 Source advisory: OSV:GHSA-65WV-528R-M892...

6.5CVSS6.6AI score0.01666EPSS
Exploits0
Cvelist
Cvelist
added 2021/11/23 7:59 p.m.11 views

CVE-2018-13961

...

Exploits0
CVE
CVE
added 2021/11/23 7:59 p.m.21 views

CVE-2018-13961

This CVE entry is rejected/not used as stated in the Initial Description.

7.3AI score
Exploits0
CVE
CVE
added 2020/06/19 4:29 p.m.54 views

CVE-2020-13961

CVE-2020-13961 affects Strapi before 3.0.2. A remote authenticated attacker can bypass security restrictions by exploiting templates stored in a global variable without sanitation, compelling an update to email templates for password reset and account confirmation via a crafted request. Impact is...

6.5CVSS6.3AI score0.01666EPSS
Exploits0References3Affected Software1
CVE
CVE
added 1976/01/01 12:0 a.m.17 views

CVE-2017-13961

This CVE entry is rejected/not used and does not represent an active vulnerability.

6.8AI score
Exploits0
Rows per page
Query Builder