144 matches found
CVE-2026-2213
A security flaw has been discovered in code-projects Online Music Site 1.0. Affected by this issue is some unknown functionality of the file /Administrator/PHP/AdminAddAlbum.php. The manipulation of the argument txtimage results in unrestricted upload. The attack may be performed from remote. The...
EUVD-2026-2213
In the Linux kernel, the following vulnerability has been resolved: drm/xe/oa: Fix potential UAF in xeoaaddconfigioctl In xeoaaddconfigioctl, we accessed oaconfig-id after dropping metricslock. Since this lock protects the lifetime of oaconfig, an attacker could guess the id and call...
CVE-2019-2213
In binderfreetransaction of binder.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
EUVD-2020-14596
Malware in sbrugna...
CVE-2024-2213
An issue was discovered in zenml-io/zenml versions up to and including 0.55.4. Due to improper authentication mechanisms, an attacker with access to an active user session can change the account password without needing to know the current password. This vulnerability allows for unauthorized...
RHSA-2024:2213
creationtimestamp| type| source ---|---|--- 2025-04-01 16:32:22+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9940...
CVE-2025-2213
A vulnerability was found in Castlenet CBW383G2N up to 20250301. It has been declared as problematic. This vulnerability affects unknown code of the file /wlanPrimaryNetwork.asp of the component Wireless Menu. The manipulation of the argument SSID with the input leads to cross site scripting. The...
CVE-2025-2213
A vulnerability was found in Castlenet CBW383G2N up to 20250301. It has been declared as problematic. This vulnerability affects unknown code of the file /wlanPrimaryNetwork.asp of the component Wireless Menu. The manipulation of the argument SSID with the input leads to cross site scripting. The...
CVE-2025-2213 Castlenet CBW383G2N Wireless Menu wlanPrimaryNetwork.asp cross site scripting
A vulnerability was found in Castlenet CBW383G2N up to 20250301. It has been declared as problematic. This vulnerability affects unknown code of the file /wlanPrimaryNetwork.asp of the component Wireless Menu. The manipulation of the argument SSID with the input leads to cross site scripting. The...
CVE-2025-2213 Castlenet CBW383G2N Wireless Menu wlanPrimaryNetwork.asp cross site scripting
A vulnerability was found in Castlenet CBW383G2N up to 20250301. It has been declared as problematic. This vulnerability affects unknown code of the file /wlanPrimaryNetwork.asp of the component Wireless Menu. The manipulation of the argument SSID with the input leads to cross site scripting. The...
CVE-2025-2213
The CVE-2025-2213 entry corresponds to Castlenet CBW383G2N (Wireless Menu /wlanPrimaryNetwork.asp). The vulnerability is a cross-site scripting flaw triggered by manipulating the SSID parameter (example payload: ). It can be exploited remotely and affects unknown code paths in the Wireless Menu c...
ZenML < 0.56.3 Vulnerability - CVE-2024-2213
The version of ZenML installed on the remote host is prior to 0.56.3. It is, therefore, affected by an improper authentication mechanisms. An attacker with access to an active user session can change the account password without needing to know the current password. This vulnerability allows for...
CVE-2024-2213
An issue was discovered in zenml-io/zenml versions up to and including 0.55.4. Due to improper authentication mechanisms, an attacker with access to an active user session can change the account password without needing to know the current password. This vulnerability allows for unauthorized...
CVE-2024-2213 Improper Authentication in zenml-io/zenml
An issue was discovered in zenml-io/zenml versions up to and including 0.55.4. Due to improper authentication mechanisms, an attacker with access to an active user session can change the account password without needing to know the current password. This vulnerability allows for unauthorized...
CVE-2024-2213
CVE-2024-2213 affects zenml-io/zenml up to and including 0.55.4. The root cause is improper authentication that lets an attacker with an active session change a user’s password without the current password, enabling unauthorized account takeover. The issue has been fixed in version 0.56.3. In pub...
Oracle Linux 9 : pcp (ELSA-2024-2213)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2213 advisory. 6.2.0-1.0.1 - Fixed libpcp derived metric issue for ol9 Orabug: 36538820 6.2.0-1 - Rebase to latest stable version of PCP RHEL-2317 6.1.1-4 - Fix pcp-ss1 handli...
CVE-2014-2213
creationtimestamp| type| source ---|---|--- 2024-02-26 14:11:36+00:00| seen| https://t.me/ctinow/193345...
CVE-2019-2213
creationtimestamp| type| source ---|---|--- 2024-02-13 18:37:08+00:00| seen| https://t.me/ctinow/184019...
Amazon Linux 2 : wavpack (ALAS-2023-2213)
The version of wavpack installed on the remote host is prior to 4.60.1-9. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2213 advisory. A null pointer dereference bug was found in wavpack-5.4.0 The results from the ASAN log: AddressSanitizer:DEADLYSIGNAL...
CVE-2023-2213
creationtimestamp| type| source ---|---|--- 2023-04-21 14:41:53+00:00| seen| https://t.me/cibsecurity/62586...