2013 CVE Vulnerabilities
6,830 CVEs published in 2013.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2013-10075 | CRITICAL | 9.1 | 0.4% | May 8, 2026 | Apache::Session versions through 1.94 for Perl re-creates deleted sessions. The session stores Apache::Session::Store::... |
| CVE-2013-10070 | CRITICAL | 10 | 1.4% | Aug 5, 2025 | PHP-Charts v1.0 contains a PHP code execution vulnerability in wizard/url.php, where user-supplied GET parameter names a... |
| CVE-2013-10069 | CRITICAL | 10 | 11.9% | Aug 5, 2025 | The web interface of multiple D-Link routers, including DIR-600 rev B (≤2.14b01) and DIR-300 rev B (≤2.13), contains an ... |
| CVE-2013-10068 | CRITICAL | 9.4 | 0.9% | Aug 5, 2025 | Foxit Reader versions through 5.4.5.0114, including the bundled Foxit Reader Plugin 2.2.1.530, contains a stack-based bu... |
| CVE-2013-10067 | CRITICAL | 9.4 | 1.0% | Aug 5, 2025 | Glossword versions 1.8.8 through 1.8.12 contain an authenticated arbitrary file upload vulnerability. When deployed as a... |
| CVE-2013-10066 | CRITICAL | 10 | 1.4% | Aug 5, 2025 | An unauthenticated arbitrary file upload vulnerability exists in Kordil EDMS v2.2.60rc3. The application exposes an uplo... |
| CVE-2013-10064 | CRITICAL | 9.3 | 1.3% | Aug 5, 2025 | A stack-based buffer overflow vulnerability exists in ActFax Server version 5.01. The server's RAW protocol interface fa... |
| CVE-2013-10054 | CRITICAL | 9.3 | 1.6% | Aug 4, 2025 | An unauthenticated arbitrary file upload vulnerability exists in LibrettoCMS version 1.1.7 (and possibly earlier) contai... |
| CVE-2013-10060 | CRITICAL | 9.4 | 4.5% | Aug 1, 2025 | An authenticated OS command injection vulnerability exists in Netgear routers (tested on the DGN2200B model) firmware ve... |
| CVE-2013-10055 | CRITICAL | 9.3 | 1.3% | Aug 1, 2025 | An unauthenticated arbitrary file upload vulnerability exists in Havalite CMS version 1.1.7 (and possibly earlier) in th... |
| CVE-2013-10051 | CRITICAL | 9.3 | 1.9% | Aug 1, 2025 | A remote PHP code execution vulnerability exists in InstantCMS version 1.6 and earlier due to unsafe use of eval() withi... |
| CVE-2013-10049 | CRITICAL | 9.3 | 2.0% | Aug 1, 2025 | An OS command injection vulnerability exists in multiple Raidsonic NAS devices—specifically tested on IB-NAS5220 and IB-... |
| CVE-2013-10048 | CRITICAL | 9.3 | 12.1% | Aug 1, 2025 | An OS command injection vulnerability exists in various legacy D-Link routers—including DIR-300 rev B and DIR-600 (firmw... |
| CVE-2013-10047 | CRITICAL | 9.3 | 1.0% | Aug 1, 2025 | An unrestricted file upload vulnerability exists in MiniWeb HTTP Server <= Build 300 that allows unauthenticated remote ... |
| CVE-2013-10043 | CRITICAL | 9.5 | 2.0% | Jul 31, 2025 | A vulnerability exists in OAstium VoIP PBX astium-confweb-2.1-25399 and earlier, where improper input validation in the ... |
| CVE-2013-10042 | CRITICAL | 9.3 | 1.6% | Jul 31, 2025 | A stack-based buffer overflow vulnerability exists in freeFTPd version 1.0.10 and earlier in the handling of the FTP PAS... |
| CVE-2013-10040 | CRITICAL | 10 | 2.5% | Jul 31, 2025 | ClipBucket version 2.6 and earlier contains a critical vulnerability in the ofc_upload_image.php script located at /admi... |
| CVE-2013-10038 | CRITICAL | 9.3 | 1.6% | Jul 31, 2025 | An unauthenticated arbitrary file upload vulnerability exists in FlashChat versions 6.0.2 and 6.0.4 through 6.0.8. The u... |
| CVE-2013-10037 | CRITICAL | 9.3 | 9.9% | Jul 31, 2025 | An OS command injection vulnerability exists in WebTester version 5.x via the install2.php installation script. The para... |
| CVE-2013-10034 | CRITICAL | 9.3 | 2.3% | Jul 31, 2025 | An unrestricted file upload vulnerability exists in Kaseya KServer versions prior to 6.3.0.2. The uploadImage.asp endpoi... |
| CVE-2013-10033 | CRITICAL | 9.3 | 1.2% | Jul 31, 2025 | An unauthenticated SQL injection vulnerability exists in Kimai version 0.9.2.x via the db_restore.php endpoint. The flaw... |
| CVE-2013-2513 | CRITICAL | 9.8 | 1.7% | Dec 12, 2023 | The flash_tool gem through 0.6.0 for Ruby allows command execution via shell metacharacters in the name of a downloaded ... |
| CVE-2013-10023 | CRITICAL | 9.8 | 0.7% | Apr 8, 2023 | A vulnerability was found in Editorial Calendar Plugin up to 2.6 on WordPress. It has been declared as critical. Affecte... |
| CVE-2013-10019 | CRITICAL | 9.8 | 0.6% | Feb 20, 2023 | A vulnerability was found in OCLC-Research OAICat 1.5.61. It has been rated as critical. This issue affects some unknown... |
| CVE-2013-10018 | CRITICAL | 9.8 | 0.6% | Feb 4, 2023 | A vulnerability was found in fanzila WebFinance 0.5. It has been declared as critical. Affected by this vulnerability is... |
Check if your code is affected by 2013 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now