Skip to main content
CVE-2013-6040 HIGH POC This Week

MW6 Aztec, DataMatrix, and MaxiCode ActiveX controls before version 4.0 vulnerable to arbitrary code via a crafted HTML document. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

RCE Aztec Activex Control Datamatrix Activex Control Maxicode Activex Control
NVD Exploit-DB
CVSS 3.1
8.1
EPSS
7.1%
CVE-2014-1618 HIGH POC This Week

Multiple SQL injection vulnerabilities in UAEPD Shopping Cart Script allow remote attackers to execute arbitrary SQL commands via the (1) cat_id or (2) p_id parameter to products.php or id parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Shopping Cart Script
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
3.6%
CVE-2013-2594 HIGH POC This Week

SQL injection vulnerability in reports/calldiary.php in Hornbill Supportworks ITSM 1.0.0 through 3.4.14 allows remote attackers to execute arbitrary SQL commands via the callref parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Supportworks Itsm
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
3.2%
CVE-2014-1619 HIGH POC This Week

Multiple SQL injection vulnerabilities in Cubic CMS 5.1.1, 5.1.2, and 5.2 allow remote attackers to execute arbitrary SQL commands via the (1) resource_id or (2) version_id parameter to. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Cubic Cms
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
0.6%
CVE-2013-7219 HIGH POC This Week

SQL injection vulnerability in vote.php in the 2Glux Sexy Polling (com_sexypolling) component before 1.0.9 for Joomla!. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Com Sexypolling
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
0.2%
CVE-2014-0753 HIGH PATCH This Week

Stack-based buffer overflow in the SCADA server in Ecava IntegraXor before 4.1.4390 allows remote attackers to cause a denial of service (system crash) by triggering access to DLL code located in the. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Stack Overflow Buffer Overflow Denial Of Service Integraxor
NVD
CVSS 2.0
7.8
EPSS
3.1%
CVE-2013-5987 HIGH This Week

Unspecified vulnerability in NVIDIA graphics driver Release 331, 325, 319, 310, and 304 allows local users to bypass intended access restrictions for the GPU and gain privileges via unknown vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Nvidia Authentication Bypass Gpu Driver Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2013-2151 HIGH This Week

Unquoted Windows search path vulnerability in Red Hat Enterprise Virtualization (RHEV) 3 and 3.2 allows local users to gain privileges via a crafted application in an unspecified folder. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Red Hat Information Disclosure Microsoft Enterprise Virtualization
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2013-2152 HIGH This Week

Unquoted Windows search path vulnerability in the SPICE service, as used in Red Hat Enterprise Virtualization (RHEV) 3.2, allows local users to gain privileges via a crafted application in an. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Red Hat Information Disclosure Microsoft Enterprise Virtualization
NVD
CVSS 2.0
7.2
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy