SUSE CVE-2026-9516

Cpanel::JSON::XS versions before 4.41 for Perl allow denial of service via UTF-8 BOM prefixed input when a decode filter callback throws. To skip a leading 3-byte UTF-8 BOM, decodejson advances the input scalar's string pointer past the mark with SvPVset and restores it only on the normal return...

CVE-2023-32634

An authentication bypass vulnerability exists in the CiRpcServerThread functionality of SoftEther VPN 5.01.9674 and 4.41-9782-beta. An attacker can perform a local man-in-the-middle attack to trigger this vulnerability...

SoftEther VPN Information Disclosure Vulnerability

SoftEther VPN is an open source, cross-platform, multi-protocol VPN Virtual Private Network application. An information disclosure vulnerability exists in SoftEther VPN versions 4.41-9782-beta and 5.01.9674, which stems from an information disclosure vulnerability in the CtEnumCa function, which...

SoftEther VPN Security Vulnerability

SoftEther VPN is an open source, cross-platform, multi-protocol VPN Virtual Private Network application. A security vulnerability exists in SoftEther VPN versions 4.41-9782-beta and 5.01.9674, which stems from an authentication bypass vulnerability in the CiRpcAccepted function, which can be...

SoftEther VPN Buffer Error Vulnerability

SoftEther VPN is an open source, cross-platform, multi-protocol VPN Virtual Private Network application. A security vulnerability exists in SoftEther VPN versions 4.41-9782-beta, 5.01.9674, and 5.02, which stems from a denial-of-service vulnerability in the WpcParsePacket function, which can be...

PT-2023-4938 · Softether · Softether Vpn

Name of the Vulnerable Software and Affected Versions: SoftEther VPN versions 4.41-9782-beta through 5.02 Description: A heap-based buffer overflow vulnerability exists in the WpcParsePacket functionality. This issue can be triggered by a specially crafted network packet, potentially leading to...

Wordpress Webcam 2Way Videochat Plagin XSS Vulnerability

The VideoWhisper 2 Way Video Chat is a web based video application designed for instant 1 on 1 private online video conferencing. Exploit Title : Wordpress Plugin Webcam 2Way Videochat XSS Vulnerability Exploit Author : NULLPointer Date : 17/09/2014 Download Link :...

CVE-2014-3906

SQL injection vulnerability in OSK Advance-Flow 4.41 and earlier and Advance-Flow Forms 4.41 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

Exim <= 4.41 dns_build_reverse Local Exploit PoC

No description provided by source. / This proof-of-concept demonstrates the existence of the vulnerability reported by iDEFENSE iDEFENSE Security Advisory 01.14.05. It has been tested against exim-4.41 under Debian GNU/Linux. Note that setuid is not included in the shellcode to avoid...

CVE-2011-2940

stunnel 4.40 and 4.41 might allow remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via unspecified vectors...

CVE-2011-2940

stunnel 4.40 and 4.41 might allow remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via unspecified vectors...

CVE-2011-2940

stunnel 4.40 and 4.41 might allow remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in OSK Advance-Flow 4.41 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2007-2811

The CVE-2007-2811 issue affects OSK Advance-Flow (and related forms) prior to version 4.42, where an XSS vulnerability exists in the application forms. The vulnerability allows remote attackers to inject arbitrary script/HTML via unspecified vectors, potentially executing code in a user’s browser...

Exim &lt;= 4.41 dns_build_reverse Local Exploit

No description provided by source. / ripped straight off iDEFENSE advisory - so lazy I just picked up GDB... bored on a weeknight : nothing to write home to mother about due to the fact that you need a local user account on a server and all you get is to read other people's emails .... not even m...

Exim 4.41 - &#039;dns_build_reverse&#039; Local Read Emails

/ ripped straight off iDEFENSE advisory - so lazy I just picked up GDB... bored on a weeknight : nothing to write home to mother about due to the fact that you need a local user account on a server and all you get is to read other people's emails .... not even my own shellcode. aleph1 shellcode -...

iDEFENSE Security Advisory 01.14.05: Exim dns_buld_reverse&#40;&#41; Buffer Overflow Vulnerability

Exim dnsbuldreverse Buffer Overflow Vulnerability iDEFENSE Security Advisory 01.14.05 www.idefense.com/application/poi/display?id=183&type=vulnerabilities January 14, 2005 I. BACKGROUND Exim is a mail transfer agent MTA for Unix systems similar to sendmail. More information is available at the...

Exim 4.41 - dns_build_reverse Local Buffer Overflow

Exim 4.41 - dnsbuildreverse Local Buffer Overflow / This proof-of-concept demonstrates the existence of the vulnerability reported by iDEFENSE iDEFENSE Security Advisory 01.14.05. It has been tested against exim-4.41 under Debian GNU/Linux. Note that setuid is not included in the shellcode to avo...

Exim 4.41 - &#039;dns_build_reverse&#039; Local Buffer Overflow

/ This proof-of-concept demonstrates the existence of the vulnerability reported by iDEFENSE iDEFENSE Security Advisory 01.14.05. It has been tested against exim-4.41 under Debian GNU/Linux. Note that setuid is not included in the shellcode to avoid script-kidding. My RET is 0xbffffae4, but fb.pl...