Skip to main content
CVE-2013-1749 MEDIUM POC This Month

Cross-site scripting (XSS) vulnerability in edit.php in PHP Address Book 8.2.5 allows user-assisted remote attackers to inject arbitrary web script or HTML via the Address field. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP XSS Php Address Book
NVD
CVSS 2.0
4.3
EPSS
0.2%
CVE-2013-0132 MEDIUM This Month

The suexec implementation in Parallels Plesk Panel 11.0.9 contains a cgi-wrapper whitelist entry, which allows user-assisted remote attackers to execute arbitrary PHP code via a request containing. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

PHP Code Injection RCE Parallels Plesk Panel
NVD
CVSS 2.0
6.8
EPSS
0.5%
CVE-2013-0687 MEDIUM This Month

The installer routine in Schneider Electric MiCOM S1 Studio uses world-writable permissions for executable files, which allows local users to modify the service or the configuration files, and. Rated medium severity (CVSS 6.6). No vendor patch available.

Privilege Escalation Schneider Electric Micom S1 Studio
NVD
CVSS 2.0
6.6
EPSS
0.0%
CVE-2013-1194 MEDIUM This Month

The ISAKMP implementation on Cisco Adaptive Security Appliances (ASA) devices generates different responses for IKE aggressive-mode messages depending on whether invalid VPN groups are specified,. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Cisco Adaptive Security Appliance Software Adaptive Security Appliance
NVD
CVSS 2.0
5.0
EPSS
0.4%
CVE-2013-1199 MEDIUM This Month

Race condition in the CIFS implementation in the rewriter module in the Clientless SSL VPN component on Cisco Adaptive Security Appliances (ASA) devices allows remote authenticated users to cause a. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Race Condition Cisco Adaptive Security Appliance Clientless Ssl Vpn Adaptive Security Appliance Software +1
NVD
CVSS 2.0
4.9
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy