Search
31,037 CVEs · Critical severity
CVEs (31,037, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 426–450 of 31,037 (capped at 500)
| CVE ID ↑ | Severity | Patch | CVSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2013-3088 | CRITICAL | 9.8 | 2019-12-26 | Belkin N900 router (F9K1104v1) contains an Authentication Bypass using "Javascript debugging". | |
| CVE-2013-3091 | CRITICAL | 9.8 | 2020-02-07 | An Authentication Bypass vulnerability in Belkin N300 (F7D7301v1) router allows remote attackers to bypass authentication using "Javascript debugging." | |
| CVE-2013-3214 | CRITICAL | Patched | 9.8 | 2020-01-28 | vtiger CRM 5.4.0 and earlier contain a PHP Code Injection Vulnerability in 'vtigerolservice.php'. |
| CVE-2013-3215 | CRITICAL | Patched | 9.8 | 2020-01-29 | vtiger CRM 5.4.0 and earlier contain an Authentication Bypass Vulnerability due to improper authentication validation in the validateSession function. |
| CVE-2013-3316 | CRITICAL | Patched | 9.8 | 2020-01-29 | Netgear WNR1000v3 with firmware before 1.0.2.60 contains an Authentication Bypass due to the server skipping checks for URLs containing a ".jpg". |
| CVE-2013-3317 | CRITICAL | Patched | 9.8 | 2020-01-29 | Netgear WNR1000v3 with firmware before 1.0.2.60 contains an Authentication Bypass via the NtgrBak key. |
| CVE-2013-3323 | CRITICAL | 9.8 | 2020-02-18 | A Privilege Escalation Vulnerability exists in IBM Maximo Asset Management 7.5, 7.1, and 6.2, when WebSeal with Basic Authentication is used, due to a failure to invalidate… | |
| CVE-2013-3346 | CRITICAL | Patched | 9.8 | 2013-08-30 | Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corrup… |
| CVE-2013-3367 | CRITICAL | 9.8 | 2019-11-13 | Undocumented TELNET service in TRENDnet TEW-691GR and TEW-692GR when a web page named backdoor contains an HTML parameter of password and a value of j78G¬DFdg_24Mhw3. | |
| CVE-2013-3486 | CRITICAL | 9.6 | 2020-01-27 | IrfanView FlashPix Plugin 4.3.4 0 has an Integer Overflow Vulnerability | |
| CVE-2013-3492 | CRITICAL | 9.8 | 2020-01-27 | XnView 2.03 has a stack-based buffer overflow vulnerability | |
| CVE-2013-3493 | CRITICAL | 9.8 | 2020-01-27 | XnView 2.03 has an integer overflow vulnerability | |
| CVE-2013-3542 | CRITICAL | Patched | 10.0 | 2019-12-11 | Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WP_HD, GXV3500, and possibly other camera models with firmware … |
| CVE-2013-3684 | CRITICAL | Patched | 9.8 | 2020-02-11 | NextGEN Gallery plugin before 1.9.13 for WordPress: ngggallery.php file upload |
| CVE-2013-3725 | CRITICAL | Patched | 9.8 | 2020-02-12 | Invision Power Board (IPB) through 3.x allows admin account takeover leading to code execution. |
| CVE-2013-3738 | CRITICAL | 9.8 | 2020-02-17 | A File Inclusion vulnerability exists in Zabbix 2.0.6 due to inadequate sanitization of request strings in CGI scripts, which could let a remote malicious user execute arbi… | |
| CVE-2013-3941 | CRITICAL | Patched | 9.8 | 2020-01-02 | Xjp2.dll in XnView before 2.13 allows remote attackers to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, … |
| CVE-2013-3960 | CRITICAL | 9.9 | 2020-01-24 | Easytime Studio Easy File Manager 1.1 has a HTTP request security bypass | |
| CVE-2013-4102 | CRITICAL | Patched | 9.1 | 2019-11-04 | Cryptocat before 2.0.22 strophe.js Math.random() Random Number Generator Weakness |
| CVE-2013-4103 | CRITICAL | Patched | 9.8 | 2019-11-04 | Cryptocat before 2.0.22 has Remote Script Injection due to improperly sanitizing user input |
| CVE-2013-4108 | CRITICAL | 9.8 | 2019-11-14 | Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors. | |
| CVE-2013-4144 | CRITICAL | 9.8 | 2022-06-30 | There is an object injection vulnerability in swfupload plugin for wordpress. | |
| CVE-2013-4211 | CRITICAL | 9.8 | 2020-02-14 | A Code Execution Vulnerability exists in OpenX Ad Server 2.8.10 due to a backdoor in flowplayer-3.1.1.min.js library, which could let a remote malicious user execute arbitr… | |
| CVE-2013-4267 | CRITICAL | Patched | 9.8 | 2020-02-11 | Ajaxeplorer before 5.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) archive_name parameter to the Power FS module (plugins/ac… |
| CVE-2013-4333 | CRITICAL | 9.1 | 2020-01-24 | OpenPNE 3 versions 3.8.7, 3.6.11, 3.4.21.1, 3.2.7.6, 3.0.8.5 has an External Entity Injection Vulnerability |