Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Circl
Circladded 2026/04/10 7:30 p.m.1 views

CVE-2026-39613

creationtimestamp| type| source ---|---|--- 2026-04-10 19:30:17+00:00| published-proof-of-concept| Telegram/nKWnjkmkE0KCaEQFUYveErvXFFBY-D0bq9FDU2ZECdeJKSY...

7.5CVSS4.8AI score0.00147EPSS
Exploits0
NVD
NVDadded 2026/04/08 9:16 a.m.2 views

CVE-2026-39613

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in kutethemes Boutique kute-boutique allows PHP Local File Inclusion.This issue affects Boutique: from n/a through = 2.3.3...

7.5CVSS0.00147EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 9:3 a.m.9 views

CVE-2024-39613

Mattermost Desktop App versions =5.8.0 fail to specify an absolute path when searching the cmd.exe file, which allows a local attacker who is able to put an cmd.exe file in the Downloads folder of a user's machine to cause remote code execution on that machine...

7.8CVSS7.5AI score0.0147EPSS
Exploits0References1
Circl
Circladded 2024/09/16 10:20 a.m.2 views

CVE-2024-39613

creationtimestamp| type| source ---|---|--- 2024-09-16 10:20:31+00:00| seen| https://t.me/cvedetector/5715...

7.8CVSS4.8AI score0.0147EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/09/16 6:40 a.m.13 views

CVE-2024-39613 RCE in desktop app in Windows by local attacker

Mattermost Desktop App versions =5.8.0 fail to specify an absolute path when searching the cmd.exe file, which allows a local attacker who is able to put an cmd.exe file in the Downloads folder of a user's machine to cause remote code execution on that machine...

5.3CVSS7.6AI score0.0147EPSS
Exploits0References1
Circl
Circladded 2021/08/24 2:23 a.m.1 views

CVE-2021-39613

creationtimestamp| type| source ---|---|--- 2021-08-24 02:23:21+00:00| seen| https://t.me/cibsecurity/27753...

9.8CVSS8.7AI score0.01301EPSS
Exploits1References1
Cvelist
Cvelistadded 2021/08/23 9:20 p.m.12 views

CVE-2021-39613

D-Link DVG-3104MS version 1.0.2.0.3, 1.0.2.0.4, and 1.0.2.0.4E contains hard-coded credentials for undocumented user accounts in the '/etc/passwd' file. As weak passwords have been used, the plaintext passwords can be recovered from the hash values. NOTE: This vulnerability only affects products...

9.8AI score0.01301EPSS
Exploits1References3
CVE
CVEadded 2021/08/23 9:20 p.m.42 views

CVE-2021-39613

The CVE affects D-Link DVG-3104MS devices (firmware versions 1.0.2.0.3, 1.0.2.0.4, and 1.0.2.0.4E) where hard-coded credentials for undocumented accounts exist in /etc/passwd. This leads to plaintext passwords recoverable from stored hashes, with impact described as confidentially/high integrity/...

9.8CVSS9.5AI score0.01301EPSS
Exploits1References3Affected Software1
CNVD
CNVDadded 2019/10/24 12:0 a.m.1 views

Cisco SPA100 Series Analog Telephone Adapters Remote Code Execution Vulnerability (CNVD-2019-39613)

The Cisco SPA100 Series Analog Telephone Adapters ATAs are an SPA100 series analog telephone adapter. A remote code execution vulnerability exists in the Cisco SPA100 Series Analog Telephone Adapters that stems from not properly validating user input submitted to the web-based management interfac...

8CVSS8.5AI score0.00255EPSS
Exploits0References1
Rows per page
Query Builder