CVE-2025-12835

CVE-2025-12835 affects the WooMulti WordPress plugin (versions

CVE-2020-12835

An issue was discovered in SmartBear ReadyAPI SoapUI Pro 3.2.5. Due to unsafe use of an Java RMI based protocol in an unsafe configuration, an attacker can inject malicious serialized objects into the communication, resulting in remote code execution in the context of a client-side Network...

CVE-2019-12835

formats/xml.cpp in Leanify 0.4.3 allows for a controlled out-of-bounds write in xmlmemorywriter::write via characters that require escaping...

CVE-2024-12835

Delta Electronics DRASimuCAD ICS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DRASimuCAD. User interaction is required to exploit this vulnerability in that...

CVE-2024-12835

Delta Electronics DRASimuCAD is affected by an ICS file parsing out-of-bounds write that can lead to remote code execution. The flaw arises from insufficient validation of data in ICS files, enabling a write past the end of an allocated buffer when opening a specially crafted file. Exploitation r...

Oracle Linux 7 : qemu (ELSA-2023-12835)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12835 advisory. - virtio-crypto: verify src&dst buffer length for sym request Zhenwei Pi Orabug: 35724113 CVE-2023-3180 - hw/scsi/lsi53c895a: Fix reentrancy issues in...

CVE-2020-12835

Affected software: SmartBear ReadyAPI SoapUI Pro 3.2.5 (and related jProductivity Protection! licensing components). Issue: unsafe deserialization via a Java RMI-based protocol in an unsafe configuration that allows an attacker to inject malicious serialized objects, leading to remote code execut...

CVE-2019-12835

The CVE-2019-12835 entry concerns Leanify 0.4.3, specifically the formats/xml.cpp implementation. The vulnerability is a controlled out-of-bounds write in xml_memory_writer::write triggered by certain characters that require escaping. This is the concrete detail provided across connected document...

CVE-2017-12835

...

CVE-2017-12835

This CVE entry is rejected/not used and does not represent an active vulnerability entry.

CVE-2018-12835

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution...

CVE-2018-12835

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution...

CVE-2018-12835

Adobe Acrobat and Reader on Windows and macOS, affected in versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier, have a type confusion vulnerability (CVE-2018-12835) that could lead to arbitrary code execution if exploited. The provided documents do not ...

Adobe Acrobat and Reader Type Confusion (APSB18-30: CVE-2018-12835)

A type confusion vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

MacOS X EvoCam HTTP GET Buffer Overflow

This module exploits a stack buffer overflow in the web server provided with the EvoCam program for Mac OS X. We use Dino Dai Zovi's exec-from-heap technique to copy the payload from the non-executable stack segment to heap memory. Vulnerable versions include 3.6.6, 3.6.7, and possibly earlier...

McNews 1.x - 'install.php' Arbitrary File Inclusion

source: https://www.securityfocus.com/bid/12835/info mcNews is reportedly affected by a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'install.php' script. This issue is reported to affect mcNews versions 1.3 a...