CVE-2025-14003 Image Gallery – Photo Grid & Video Gallery <= 2.13.3 - Missing Authorization to Authenticated (Author+) Arbitrary Gallery Modification

The Image Gallery – Photo Grid & Video Gallery plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the addimagestogallerycallback function in all versions up to, and including, 2.13.3. This makes it possible for authenticated attackers, wit...

CVE-2024-14003

creationtimestamp| type| source ---|---|--- 2025-10-30 21:53:17+00:00| seen| Telegram/H-WBq35-lHROmIrLJnnETr3lfhDdKpDiPyOusqLuUbPMRV0...

CVE-2019-14003

Null pointer exception can happen while parsing invalid MKV clip where cue information is parsed before segment information in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...

CVE-2020-14003

creationtimestamp| type| source ---|---|--- 2024-10-29 18:33:22+00:00| seen| https://t.me/CyberSecurityTechnologies/1283...

Zoho ManageEngine ServiceDesk Plus 14003 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine ServiceDesk Plus Unauthenticated SAML RCE', 'Description' = %q This exploits an unauthenticated remote code execution vulnerability...

CVE-2019-14003

creationtimestamp| type| source ---|---|--- 2020-01-21 13:37:50+00:00| seen| https://t.me/cveNotify/362...

CVE-2019-14003

Null pointer exception can happen while parsing invalid MKV clip where cue information is parsed before segment information in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...

CVE-2019-14003

Null pointer exception can happen while parsing invalid MKV clip where cue information is parsed before segment information in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...

CVE-2019-14003

CVE-2019-14003 describes a NULL pointer dereference during MKV parsing where cue information is parsed before segment information in Snapdragon-based devices (a wide set of Snapdragon Auto/Compute/Connectivity/IoT/Wearables platforms). The issue is triggered when parsing invalid MKV clips and aff...

CVE-2018-14003

The CVE-2018-14003 entry concerns WeMediaChain (WMC), an Ethereum token smart contract. The vulnerability is an integer overflow in the batchTransfer function, which could allow an attacker to set any user’s balance. Root cause: integer overflow in the transfer logic. Impact: unauthorized balance...

CVE-2017-14003

An Authentication Bypass by Spoofing issue was discovered in LAVA Ether-Serial Link ESL running firmware versions 6.01.00/29.03.2007 and prior versions. An improper authentication vulnerability has been identified, which, if exploited, would allow an attacker with the same IP address to bypass...

CVE-2017-14003

The CVE-2017-14003 issue affects LAVA Computer MFG Ether-Serial Link (ESL) devices running firmware 6.01.00/29.03.2007 and earlier. An improper authentication vulnerability allows an attacker with the same IP address to bypass authentication by accessing a specific resource locator, effectively e...

LAVA Computer MFG Inc. Ether-Serial Link

CVSS v3 8.1 ATTENTION: Low skill level to exploit. Vendor: LAVA Computer MFG Inc. Equipment: Ether-Serial Link Vulnerability: Authentication Bypass by Spoofing AFFECTED PRODUCTS The following versions of LAVA Computer MFG Inc.’s Ether-Serial Links ESL are affected: All ESLs running firmware...

CVE-2010-2020

creationtimestamp| type| source ---|---|--- 2010-06-23 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/14002 2010-06-23 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/14003...