Skip to main content
CVE-2013-2142 LOW POC Monitor

userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local users to overwrite arbitrary files via a symlink attack on (1) HostCertificate.pem, (2). Rated low severity (CVSS 3.3). Public exploit code available and no vendor patch available.

Information Disclosure Libimobiledevice
NVD
CVSS 2.0
3.3
EPSS
0.0%
CVE-2013-4375 LOW Monitor

The qdisk PV disk backend in qemu-xen in Xen 4.2.x and 4.3.x before 4.3.1, and qemu 1.1 and other versions, allows local HVM guests to cause a denial of service (domain grant reference consumption). Rated low severity (CVSS 2.7), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Qemu Xen
NVD
CVSS 2.0
2.7
EPSS
0.1%
CVE-2013-7078 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the errorAction method in the ActionController base class in the Extbase Framework in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.

XSS Typo3
NVD
CVSS 2.0
2.6
EPSS
0.5%
CVE-2013-0244 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in Drupal 6.x before 6.28 and 7.x before 7.19, when running with older versions of jQuery that are vulnerable to CVE-2011-4969, allows remote attackers to. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.

XSS Drupal
NVD
CVSS 2.0
2.6
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy