CVE-2026-4255

creationtimestamp| type| source ---|---|--- 2026-03-16 07:30:38+00:00| seen| https://infosec.exchange/users/offseq/statuses/116237679238327076...

EUVD-2026-4255

A vulnerability in the PHP backend of gemscms.aptsys.com.sg thru 2025-05-28 allows unauthenticated remote attackers to trigger detailed error messages that disclose internal file paths, code snippets, and stack traces. This occurs when specially crafted HTTP GET/POST requests are sent to public A...

TencentOS Server 4: w3m (TSSA-2025:0165)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0165 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

PCMan FTP Server 2.0.7 - Buffer Overflow

Exploit Title: PCMan FTP Server 2.0.7 - Buffer Overflow Date: 04/17/2025 Exploit Author: Fernando Mengali Vendor Homepage: http://pcman.openfoundry.org/ Software Link: https://www.exploit-db.com/apps/9fceb6fefd0f3ca1a8c36e97b6cc925d-PCMan.7z Version: 2.0.7 Tested on: Windows XP SP3 - Version 5.1...

CVE-2025-4255

PCMan FTP Server 2.0.7 has a buffer overflow in the RMD Command Handler that can be triggered remotely. Connected sources confirm the vulnerability and note the impact as a buffer overflow; one PT-security entry recommends disabling the RMD Command Handler until a patch is available. Exploit refe...

CVE-2025-4255

creationtimestamp| type| source ---|---|--- 2025-05-04 19:35:02+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114451238208745182 2025-05-05 00:19:53+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14817 2025-05-05 03:19:54+00:00| seen|...

CVE-2022-4255

creationtimestamp| type| source ---|---|--- 2025-03-27 20:27:07+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9191...

Linux Distros Unpatched Vulnerability : CVE-2023-4255

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds write issue has been discovered in the backspace handling of the checkType function in etc.c within the W3M application. This vulnerability is...

CVE-2006-4255

creationtimestamp| type| source ---|---|--- 2025-01-17 14:56:53+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2138...

poppler security update

21.01.0-11 - Fix crashes in FoFiType1C - Rebuild for inclusion of poppler-glib-doc in CRB - Resolves: RHEL-4255, RHEL-4273 21.01.0-10 - Check XRef's Catalog for being a Dict - Resolves: 2189816 20.11.0-9 - Check isDict before calling getDict 2 - Resolves: 2189837 20.11.0-8 - Check isDict before...

Fedora 40 : w3m (2024-aeb75f8b5b)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-aeb75f8b5b advisory. - Added upstream patch to fix out-of-bounds access due to multiple backspaces to address incomplete fix for CVE-2022-38223 2222775, 2222780, 2255207...

CVE-2024-4255 Ruijie RG-UAC gre_edit_commit.php os command injection

A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240419. This issue affects some unknown processing of the file /view/network Config/GRE/greeditcommit.php. The manipulation of the argument name leads to os command injection. The attack may be initiated...

CVE-2024-4255 Ruijie RG-UAC gre_edit_commit.php os command injection

A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240419. This issue affects some unknown processing of the file /view/network Config/GRE/greeditcommit.php. The manipulation of the argument name leads to os command injection. The attack may be initiated...

Fedora: Security Advisory (FEDORA-2024-aeb75f8b5b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : w3m vulnerability (USN-6580-1)

The remote Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6580-1 advisory. It was discovered that w3m incorrectly handled certain HTML files. An attacker could possibly use this issue to cause a...

SUSE-SU-2024:0014-1 Security update for w3m

This update for w3m fixes the following issues: - CVE-2023-4255: Fixed out-of-bounds write in function checkType in etc.c bsc1218226...

CVE-2023-4255

An out-of-bounds write issue has been discovered in the backspace handling of the checkType function in etc.c within the W3M application. This vulnerability is triggered by supplying a specially crafted HTML file to the w3m binary. Exploitation of this flaw could lead to application crashes,...

CVE-2023-4255

CVE-2023-4255 describes an out-of-bounds write in W3M’s etc.c backspace handling (checkType()) that can be triggered by a crafted HTML file to cause a crash/DoS. Affected software is W3M (e.g., w3m 0.5.3); multiple disclosures reference this flaw across Astra Linux, Debian, and related advisories...

SUSE CVE-2007-4255

Buffer overflow in the mSQL extension in PHP 5.2.3 allows context-dependent attackers to execute arbitrary code via a long first argument to the msqlconnect function...

CVE-2022-4255

An info leak issue was identified in all versions of GitLab EE from 13.7 prior to 15.4.6, 15.5 prior to 15.5.5, and 15.6 prior to 15.6.1 which exposes user email id through webhook payload...