15 matches found
CVE-2025-14169
creationtimestamp| type| source ---|---|--- 2025-12-12 08:08:23+00:00| seen| https://gist.github.com/Darkcrai86/a7311b16756de6c5e59cd8a41f691b03 2025-12-12 09:38:09+00:00| seen| https://gist.github.com/Darkcrai86/c44bc1bd7966b94af64ffe0c047ada9c...
WordPress FunnelKit – Funnel Builder for WooCommerce Checkout plugin <= 3.13.1.5 - Unauthenticated SQL Injection vulnerability
Unauthenticated SQL Injection vulnerability discovered by Marcin Dudek dudekmar - CERT.PL in WordPress Plugin Funnel Builder by FunnelKit versions = 3.13.1.5...
CVE-2019-14169
...
CVE-2019-14169
This CVE entry is rejected/not used; the description states DO NOT USE THIS CANDIDATE NUMBER.
CVE-2020-14169
The CVE-2020-14169 vulnerability affects Atlassian Jira Server and Data Center (pre-8.9.1) in the Navigation-Search (quick search) component. The issue is a cross-site scripting (XSS) flaw introduced by improper validation of user-supplied input, allowing remote attackers to inject arbitrary HTML...
XSS in Navigation - Search - CVE-2020-14169
The quick search component in Atlassian Jira Server and Data Center allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting XSS vulnerability. Affected versions: version 8.9.1 Fixed versions: 8.9.1 8.10.0...
Debian DLA-1654-1 : libav security update
Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. CVE-2014-8542 libavcodec/utils.c omitted a certain codec ID during enforcement of alignment, which allowed remote attackers to cause a denial of ervice out-of-bounds access or possibly...
Debian DSA-3996-1 : ffmpeg - security update
Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed Real, MV, RL2, ASF, Apple HLS, Phantom Cine, MXF, NSV, MOV or RTP H.264 files/streams are processed. %NASLMINLEVEL...
[SECURITY] [DSA 3996-1] ffmpeg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3996-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 10, 2017 https://www.debian.org/security/faq -...
[ASA-201709-23] ffmpeg2.8: denial of service
Arch Linux Security Advisory ASA-201709-23 ========================================== Severity: Medium Date : 2017-09-28 CVE-ID : CVE-2017-14055 CVE-2017-14056 CVE-2017-14057 CVE-2017-14058 CVE-2017-14059 CVE-2017-14169 CVE-2017-14170 CVE-2017-14171 CVE-2017-14225 Package : ffmpeg2.8 Type : denia...
openSUSE Security Update : ffmpeg / ffmpeg2 (openSUSE-2017-1067)
This update introduces lame and twolame. For ffmpeg2 it updates to version 2.8.13 and fixes several issues. These security issues were fixed : - CVE-2017-14058: The readdata function in libavformat/hls.c did not restrict reload attempts for an insufficient list, which allowed remote attackers to...
openSUSE Security Update : ffmpeg / ffmpeg2 (openSUSE-2017-1068)
This update introduces lame and twolame. For ffmpeg2 it updates to version 2.8.13 and fixes several issues. These security issues were fixed : - CVE-2017-14058: The readdata function in libavformat/hls.c did not restrict reload attempts for an insufficient list, which allowed remote attackers to...
CVE-2017-14169
In the mxfreadprimerpack function in libavformat/mxfdec.c in FFmpeg 3.3.3 - 2.4, an integer signedness error might occur when a crafted file, which claims a large "itemnum" field such as 0xffffffff, is provided. As a result, the variable "itemnum" turns negative, bypassing the check for a large...
CVE-2017-14169
In the mxfreadprimerpack function in libavformat/mxfdec.c in FFmpeg 3.3.3 - 2.4, an integer signedness error might occur when a crafted file, which claims a large "itemnum" field such as 0xffffffff, is provided. As a result, the variable "itemnum" turns negative, bypassing the check for a large...
CVE-2017-14169
CVE-2017-14169 affects FFmpeg/libavformat: specifically the mxf_read_primer_pack function in libavformat/mxfdec.c. The description documents an integer signedness error when a crafted MXF file provides a large item_num (e.g., 0xffffffff), causing item_num to become negative and bypassing the chec...