CVE-2026-4613

A vulnerability was found in SourceCodester E-Commerce Site 1.0. This vulnerability affects unknown code of the file /products.php. The manipulation of the argument Search results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

CVE-2026-4613

creationtimestamp| type| source ---|---|--- 2026-03-23 23:59:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhrbdxicsf24...

CVE-2025-4613

creationtimestamp| type| source ---|---|--- 2025-06-12 09:34:02+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18155 2025-06-12 10:31:18+00:00| published-proof-of-concept| Telegram/DMiDZkfCIv8HF3lobefxqZffqbFQToSdK7CcGeqM5WbioQ 2025-06-12 10:53:51+00:00|...

CVE-2025-4613

Path traversal in Google Web Designer's template handling versions prior to 16.3.0.0407 on Windows allows attacker to achieve remote code execution by tricking users into downloading a malicious ad template...

CVE-2025-4613

CVE-2025-4613 : Google Web Designer on Windows with versions prior to 16.3.0.0407 suffers path traversal in template handling, enabling remote code execution when a user is tricked into downloading a malicious ad template. The CVE is supported by multiple connected sources confirming the same roo...

CVE-2025-4613 Client side RCE in Google Web Designer App

Path traversal in Google Web Designer's template handling versions prior to 16.3.0.0407 on Windows allows attacker to achieve remote code execution by tricking users into downloading a malicious ad template...

CVE-2025-4613 Client side RCE in Google Web Designer App

Path traversal in Google Web Designer's template handling versions prior to 16.3.0.0407 on Windows allows attacker to achieve remote code execution by tricking users into downloading a malicious ad template...

RHSA-2024:4613

creationtimestamp| type| source ---|---|--- 2025-01-13 21:12:01+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1393 2025-02-25 08:25:24+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5260 2025-05-22 19:46:06+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17351...

LG LED Assistant Path Traversal (CVE-2023-4613)

Binary data lgledassistantcve-2023-4613.nbin...

CVE-2018-4613

Rejected reason: This candidate is unused by its CNA...

CVE-2023-4613

LG LED Assistant is affected by CVE-2023-4613, a path traversal vulnerability in the /api/settings/upload endpoint. The flaw stems from inadequate validation of a user-supplied path used in file operations, enabling remote attackers to execute arbitrary code in the current user context. Public de...

CVE-2023-4613 Upload Directory Path Traversal Allows Unauthenticated Arbitrary File Read Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of LG LED Assistant. Authentication is not required to exploit this vulnerability. The specific flaw exists within the /api/settings/upload endpoint. The issue results from the lack of proper validation...

CVE-2022-4613

creationtimestamp| type| source ---|---|--- 2022-12-19 18:11:35+00:00| seen| https://t.me/cibsecurity/54884...

CVE-2022-4613

CVE-2022-4613 affects Click Studios Passwordstate and Passwordstate Browser Extension for Chrome, due to a vulnerability in the Browser Extension Provisioning component that leads to improper authorization. The issue can be exploited remotely and has been publicly disclosed. Affected users are ad...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : python-cryptography vulnerability (USN-4613-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4613-1 advisory. Hubert Kario discovered that python-cryptography incorrectly handled certain decryption. An attacker could possibly use this issue to expo...

CVE-2020-4613

CVE-2020-4613 affects IBM Data Risk Manager (iDNA) 2.0.6, where weaker-than-expected cryptographic algorithms could allow an attacker to decrypt highly sensitive information. The issue is tracked under iDNA remediation pages and IBM X-Force entries. Mitigation and Fix: upgrade to DRM 2.0.6.4 firs...

CVE-2019-4613

CVE-2019-4613 concerns a Cross-Site Request Forgery (CSRF) vulnerability in IBM Planning Analytics 2.0. The IBM Planning Analytics Planning Analytics Workspace component is implicated, enabling an attacker to cause malicious, unauthorized actions transmitted from a trusted user’s session. The iss...

CVE-2014-4613

Cross-site request forgery CSRF vulnerability in the administration panel in Piwigo before 2.6.2 allows remote attackers to hijack the authentication of administrators for requests that add users via a pwg.users.add action in a request to ws.php...

CVE-2014-4613

CVE-2014-4613 describes a cross-site request forgery in the Piwigo administration panel prior to 2.6.2. The issue allows remote attackers to hijack administrator sessions by crafting requests to ws.php with a pwg.users.add action to add new users. Affected software: Piwigo versions before 2.6.2. ...

CVE-2017-4613

This CVE entry is rejected; it is not used as stated in the Initial Description.