CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Circl•added 2025/05/17 9:7 p.m.•17 views

CVE-2024-13965

creationtimestamp| type| source ---|---|--- 2025-05-17 21:07:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpfh7bot3p2e...

7AI score

Exploits0References1

Circl•added 2024/06/26 6:10 p.m.•6 views

CVE-2020-13965

creationtimestamp| type| source ---|---|--- 2024-06-26 18:10:02+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-06-27 07:06:52+00:00| seen| MISP/2f4aabd1-905a-4667-b431-a7319f429751 2025-02-14 10:09:22+00:00| seen| Telegram/VcMsCDQYQPLwn2p2dVnu04wKaYurHxHCIr7NIBw3mJv46Xk 2025-02-23...

6.3CVSS6.9AI score0.71819EPSS

Exploits2References1

NVD•added 2023/09/14 7:15 p.m.•7 views

CVE-2017-13965

Rejected reason: This candidate is unused by its CNA...

6.6AI score

Exploits0

CVE•added 2021/11/23 7:59 p.m.•23 views

CVE-2018-13965

This CVE entry is rejected and does not represent an active vulnerability entry.

7.3AI score

Exploits0

Debian•added 2020/06/11 6:20 a.m.•27 views

[SECURITY] [DSA 4700-1] roundcube security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4700-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 11, 2020 https://www.debian.org/security/faq -...

4.3CVSS2.1AI score0.71819EPSS

Exploits2

OSV•added 2020/06/09 3:15 a.m.•0 views

UBUNTU-CVE-2020-13965

An issue was discovered in Roundcube Webmail before 1.3.12 and 1.4.x before 1.4.5. There is XSS via a malicious XML attachment because text/xml is among the allowed types for a preview...

6.3CVSS6.9AI score0.71819EPSS

Exploits2References8

UbuntuCve•added 2020/06/09 3:15 a.m.•26 views

CVE-2020-13965

An issue was discovered in Roundcube Webmail before 1.3.12 and 1.4.x before 1.4.5. There is XSS via a malicious XML attachment because text/xml is among the allowed types for a preview...

6.3CVSS6.9AI score0.71819EPSS

Exploits2References7

CVE•added 2020/06/09 2:45 a.m.•214 views

CVE-2020-13965

CVE-2020-13965 concerns Roundcube Webmail prior to 1.3.12 and prior to 1.4.5, where an XSS can be triggered via a malicious XML attachment because text/xml is among allowed preview types. The vulnerability affects Roundcube Webmail versions before these fixed releases; remediation is to upgrade t...

6.3CVSS7AI score0.71819EPSS

In wildExploits2References10Affected Software1

OpenVAS•added 2020/06/08 12:0 a.m.•48 views

Roundcube Webmail < 1.3.12, 1.4.x < 1.4.5 Multiple Vulnerabilities

Roundcube Webmail is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:roundcube:webmail"; if...

9.8CVSS8.1AI score0.93275EPSS

Exploits5References3

NVD•added 2020/02/14 10:15 p.m.•10 views

CVE-2019-13965

Because of a lack of sanitization around error messages, multiple Reflective XSS issues exist in iTop through 2.6.0 via the paramfile parameter to webservices/export.php, webservices/cron.php, or env-production/itop-backup/backup.php. By default, any XSS sent to the administrator can be transform...

6.1CVSS6.5AI score0.00469EPSS

Exploits0References2

CVE•added 2020/02/14 9:1 p.m.•114 views

CVE-2019-13965

CVE-2019-13965 affects iTop up to 2.6.0, with Reflective XSS via the param_file parameter to webservices/export.php, webservices/cron.php, or env-production/itop-backup/backup.php. The root cause is lack of sanitization around error messages, enabling XSS to reach an administrator; this can, per ...

6.1CVSS6.3AI score0.00469EPSS

Exploits0References2Affected Software1

CVE•added 1976/01/01 12:0 a.m.•3 views

CVE-2025-13965

CVE-2025-13965 is rejected/not used; reference CVE-2025-12500 instead.

5.4AI score

Exploits0