SUSE SLED15 / SLES15 Security Update : python-ecdsa (SUSE-SU-2026:1608-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:1608-1 advisory. - CVE-2026-33936: issue in the low-level DER parsing functions can cause unexpected exceptions to be raised from the...

Oracle Linux 7 : glib2 (ELSA-2026-1608)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1608 advisory. - Fixes CVE-2025-13601 gescapeuristring overflow Orabug: 38909821 Tenable has extracted the preceding description block directly from the Oracle Linux security...

CVE-2026-1608 Video Onclick <= 0.4.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The Video Onclick plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's youtube shortcode in all versions up to, and including, 0.4.7 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

CVE-2020-37162

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...

CVE-2020-37162

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...

CVE-2020-37162

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...

CVE-2020-37162 Wedding Slideshow Studio 1.36 - 'Key' Buffer Overflow

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...

CVE-2020-37162

CVE-2020-37162 affects Wedding Slideshow Studio 1.36. The vulnerability is a stack-based buffer overflow in the registration key input. An attacker who has local access can craft a 1608-byte payload to overwrite memory and execute arbitrary code. The CVSS metrics indicate high impact to confident...

CVE-2020-37162 Wedding Slideshow Studio 1.36 - 'Key' Buffer Overflow

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...

PT-2026-6828

Name of the Vulnerable Software and Affected Versions Wedding Slideshow Studio version 1.36 Description The software contains a buffer overflow issue in the registration key input. An attacker can execute arbitrary code by overwriting memory. A malicious payload of 1608 bytes can trigger a...

RHEL 7 : glib2 (RHSA-2026:1608)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1608 advisory. GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the...

ECHO-8C07-2A96-1608

Bulletin has no description...

EUVD-2009-1669

Malware in sbrugna...

CVE-2023-1608

A vulnerability was found in Zhong Bang CRMEB Java up to 1.3.4. It has been declared as critical. This vulnerability affects the function getAdminList of the file /api/admin/store/product/list. The manipulation of the argument cateId leads to sql injection. The attack can be initiated remotely. T...

CVE-2013-1608

Directory traversal vulnerability in the Management Console on the Symantec NetBackup NBU appliance 2.0.x allows remote attackers to read arbitrary files via unspecified vectors...

CVE-2012-1608

The t3libdiv::RemoveXSS API method in TYPO3 4.4.0 through 4.4.13, 4.5.0 through 4.5.13, 4.6.0 through 4.6.6, 4.7, and 6.0 allows remote attackers to bypass the cross-site scripting XSS protection mechanism and inject arbitrary web script or HTML via non printable characters...

CVE-2025-1608

A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has...

CVE-2025-1608 LB-LINK AC1900 Router set_manpwd websGetVar os command injection

A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has...

CVE-2025-1608 LB-LINK AC1900 Router set_manpwd websGetVar os command injection

A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2. Affected is the function websGetVar of the file /goform/setmanpwd. The manipulation of the argument routepwd leads to os command injection. It is possible to launch the attack remotely. The exploit has...

PT-2024-33117 · Inovance · Inovance Am401 Cpu1608Tptn

Name of the Vulnerable Software and Affected Versions: INOVANCE AM401 CPU1608TPTN affected versions not specified Description: An issue in INOVANCE AM401 CPU1608TPTN allows a remote attacker to execute arbitrary code via the ExecuteUserProgramUpgrade function. Recommendations: At the moment, ther...