Skip to main content
CVE-2013-1347 HIGH POC KEV PATCH THREAT Act Now

Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly allocated or (2) is. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Actively exploited in the wild (cisa kev) and public exploit code available.

RCE Microsoft Use After Free Memory Corruption
NVD Exploit-DB VulDB
CVSS 3.1
8.8
EPSS
87.7%
Threat
7.4
CVE-2013-0726 CRITICAL POC THREAT Emergency

Stack-based buffer overflow in the ERM_convert_to_correct_webpath function in ermapper_u.dll in ERDAS ER Viewer before 13.00.0001 allows remote attackers to execute arbitrary code via a crafted. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 65.4%.

Buffer Overflow RCE Erdas Er Viewer
NVD Exploit-DB
CVSS 2.0
9.3
EPSS
65.4%
Threat
5.3
CVE-2013-1092 HIGH This Week

Multiple unquoted Windows search path vulnerabilities in Novell ZENworks Desktop Management (ZDM) 7 through 7.1 might allow local users to gain privileges via a Trojan horse "program" file in the C:. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Microsoft Zenworks Desktop Management
NVD
CVSS 2.0
7.2
EPSS
0.0%
CVE-2013-2703 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in the Facebook Members plugin before 5.0.5 for WordPress allows remote attackers to hijack the authentication of administrators for requests that. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF WordPress Facebook Members
NVD
CVSS 2.0
6.8
EPSS
0.2%
CVE-2013-2702 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in the Easy AdSense Lite plugin before 6.10 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF WordPress Easy Adsense Lite
NVD
CVSS 2.0
6.8
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy