EUVD-2009-4622

Malware in sbrugna...

CVE-2012-10043 ActFax 4.32 Client Importer Buffer Overflow

A stack-based buffer overflow vulnerability exists in ActFax Server version 4.32, specifically in the "Import Users from File" functionality of the client interface. The application fails to properly validate the length of tab-delimited fields in .exp files, leading to unsafe usage of strcpy duri...

PT-2025-32396 · Unknown · Actfax Server

Name of the Vulnerable Software and Affected Versions: ActFax Server version 4.32 Description: A stack-based buffer overflow vulnerability exists in the "Import Users from File" functionality of the client interface. The application does not properly validate the length of tab-delimited fields in...

CVE-2025-4285

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Rolantis Information Technologies Agentis allows SQL Injection.This issue affects Agentis: before 4.32...

CVE-2025-4284 Reflected XSS in Rolantis Information Technologies' Agentis

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Rolantis Information Technologies Agentis allows Reflected XSS, DOM-Based XSS.This issue affects Agentis: before 4.32...

CVE-2025-4285 SQLi in Rolantis Information Technologies' Agentis

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Rolantis Information Technologies Agentis allows SQL Injection.This issue affects Agentis: before 4.32...

Rolantis Agentis SQL注入漏洞

Rolantis Agentis is a software for enterprise information management and automated processing from the Turkish company Rolantis. A SQL injection vulnerability exists in Rolantis Agentis versions prior to 4.32, which stems from improper neutralization of special elements in SQL commands, and could...

PT-2025-30396 · Rolantis Information Technologies · Agentis

Name of the Vulnerable Software and Affected Versions: Rolantis Information Technologies Agentis versions prior to 4.32 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, potentially leading to Reflected Cross-site Scripting XSS and DOM-Based...

CVE-2023-6397

A null pointer dereference vulnerability in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch 1 and USG FLEX series firmware versions from 4.50 through 5.37 Patch 1 could allow a LAN-based attacker to cause denial-of-service DoS conditions by downloading a crafted RAR compressed fil...

Zyxel ATP Code Issue Vulnerability

Zyxel ATP is a firewall from China-based Zyxel. A code issue exists in Zyxel ATP firmware versions 4.32 through 5.37 Patch 1 that exploits a vulnerability that could allow a LAN-based attacker to cause a denial of service by downloading a crafted RAR compressed file to a host on the LAN side...

Zyxel ATP Formatting String Error Vulnerability

Zyxel ATP is a firewall from China Heqin Zyxel. A format string error vulnerability exists in Zyxel ATP versions 4.32 through 5.37 Patch 1, which stems from a format string vulnerability in the IPSec VPN feature...

Zyxel ATP Security Vulnerability

Zyxel ATP is a firewall from China-based Zyxel. A security vulnerability exists in the Zyxel ATP series, which stems from a buffer overflow vulnerability. An attacker could exploit this vulnerability by executing a CLI command to dump system logs on an affected device and cause a denial of servic...

Zyxel ATP 操作系统命令注入漏洞

Zyxel ATP is a firewall from China Heqin Zyxel. A security vulnerability exists in Zyxel ATP versions 4.32 through 5.35. An attacker could exploit the vulnerability to remotely execute certain operating system commands...

PT-2023-7789 · Zyxel · Zyxel Usg Flex Series +4

Name of the Vulnerable Software and Affected Versions: Zyxel ATP series versions 4.32 through 5.35 Zyxel USG FLEX series versions 4.50 through 5.35 Zyxel USG FLEX 50W versions 4.16 through 5.35 Zyxel USG20W-VPN versions 4.16 through 5.35 Zyxel VPN series versions 4.30 through 5.35 Description: Th...

ZyXEL ZyWALL USG 操作系统命令注入漏洞

Zyxel ZyXEL ZyWALL USG is a network security firewall appliance from China Hopkins Zyxel. A security vulnerability exists in Zyxel ZyWALL/USG versions 4.20 to 4.72, VPN versions 4.30 to 5.32, USG FLEX versions 4.50 to 5.32, and ATP versions 4.32 to 5.32. The vulnerability stems from a...

CVE-2022-0910

A downgrade from two-factor authentication to one-factor authentication vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.32 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, and VPN series firmware...

Xerver 4.32 - Source Disclosure and HTTP Authentication Bypass

No description provided by source. Exploit Title: Xerver Source Disclosure and HTTP Auth Bypass Date: 01 Aug 2010 Author: Ben Schmidt aka supernothing Software: http://www.javascript.nu/xerver/ Version: 4.32 and prior Tested on: Windows XP SP3 CVE: N/A This file is derived from part of the...

CVE-2013-4709

Buffer overflow in the PPP Access Concentrator PPPAC on the SEIL/x86 with firmware before 2.82, SEIL/X1 with firmware before 4.32, SEIL/X2 with firmware before 4.32, SEIL/B1 with firmware before 4.32, SEIL/Turbo with firmware before 2.16, and SEIL/neu 2FE Plus with firmware before 2.16 allows...

CVE-2011-5233

Summary: CVE-2011-5233 is a heap-based buffer overflow in IrfanView prior to 4.32, triggered by crafted TIFF images (Rows Per Strip and Samples Per Pixel). Affected software: IrfanView before 4.32. Impact per sources: remote code execution due to memory corruption in TIFF handling (as described)....

ActiveFax (ActFax) 4.3 Client Importer Buffer Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'ActiveFax ActFax...