PT-2023-32423 · Campcodes · Campcodes Simple Student Information System

Name of the Vulnerable Software and Affected Versions: Campcodes Simple Student Information System version 1.0 Description: A critical issue has been found in the processing of the file /classes/Master.php. The manipulation of the argument f leads to sql injection. The exploit has been disclosed ...

SUSE CVE-2006-4262

Multiple buffer overflows in cscope 15.5 and earlier allow user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code via multiple vectors including 1 a long pathname that is not properly handled during file list parsing, 2 long pathnames that result from path...

In zsh before 5.8.1 an attacker can achieve code execution if they control a command output inside the prompt as demonstrated by a %F argument. This occurs because of recursive PROMPT_SUBST expansion.

...

DEBIAN-CVE-2003-0396

Buffer overflow in les for ATM on Linux linux-atm before 2.4.1, if used setuid, allows local users to gain privileges via a long -f command line argument...

CVE-1999-0823

CVE-1999-0823 describes a local privilege-escalation vulnerability in FreeBSD’s xmindpath, caused by a buffer overflow triggered by the -f argument. Affected component: xmindpath (FreeBSD). The impact is local privilege gain with partial confidentiality, integrity, and availability impacts report...