Search for packages
| purl | pkg:rpm/redhat/cumin@0.1.5787-4?arch=el5 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1k2z-1j7b-jbew
Aliases: CVE-2013-4461 |
cumin: filtering table operator not checked, leads to potential SQLi | There are no reported fixed by versions. |
|
VCID-1xcz-9xrn-s7gx
Aliases: CVE-2013-4414 |
cumin: non-persistent XSS possible due to not escaping set limit form input | There are no reported fixed by versions. |
|
VCID-s6z8-mxs3-q3gs
Aliases: CVE-2013-4405 |
cumin: CSRF protection does not work | There are no reported fixed by versions. |
|
VCID-zx7k-5ws1-abdm
Aliases: CVE-2013-4404 |
cumin: missing authorization checks in forms, charts, and csv export widgets | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T14:49:13.001067+00:00 | RedHat Importer | Affected by | VCID-1xcz-9xrn-s7gx | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4414.json | 38.0.0 |
| 2026-04-01T14:49:12.947387+00:00 | RedHat Importer | Affected by | VCID-s6z8-mxs3-q3gs | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4405.json | 38.0.0 |
| 2026-04-01T14:49:12.897936+00:00 | RedHat Importer | Affected by | VCID-zx7k-5ws1-abdm | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4404.json | 38.0.0 |
| 2026-04-01T14:49:12.634237+00:00 | RedHat Importer | Affected by | VCID-1k2z-1j7b-jbew | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4461.json | 38.0.0 |