EUVD-2013-2347

Malware in sbrugna...

CVE-2025-61692

VT STUDIO versions 8.53 and prior contain a use after free vulnerability. If the product uses a specially crafted file, arbitrary code may be executed on the affected product...

CVE-2025-61691

VT STUDIO versions 8.53 and prior contain an out-of-bounds read vulnerability. If the product uses a specially crafted file, arbitrary code may be executed on the affected product...

CVE-2025-58777

VT Studio versions 8.53 and prior contain an access of uninitialized pointer vulnerability. If the product uses a specially crafted file, arbitrary code may be executed on the affected product...

PT-2025-40320

Name of the Vulnerable Software and Affected Versions VT STUDIO versions 8.53 and prior Description VT STUDIO versions 8.53 and earlier are susceptible to an out-of-bounds read issue. Processing a specially crafted file may lead to arbitrary code execution on the affected product. Recommendations...

PT-2025-40321

Name of the Vulnerable Software and Affected Versions VT STUDIO versions 8.53 and prior Description VT STUDIO versions 8.53 and earlier have a use after free issue. A specially crafted file can trigger arbitrary code execution on a vulnerable system. Recommendations Update VT STUDIO to a version...

PT-2025-40318

Name of the Vulnerable Software and Affected Versions VT Studio versions 8.53 and prior Description VT Studio versions 8.53 and earlier are susceptible to an issue where an uninitialized pointer can be accessed. Exploitation of this condition, through the use of a specially crafted file, may lead...

IdeaPush < 8.53 - Admin+ Stored XSS

Description The plugin does not validate and escape some parameters, which could allow users with the admin role and above to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

WordPress IdeaPush Plugin <= 8.52 is vulnerable to Cross Site Scripting (XSS)

Software IdeaPush Type Plugin Vulnerable versions = 8.52 Fixed in 8.53 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-47181 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID b54fa25b769b Credits Emili Castells Required privileg...

CVE-2016-3483

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect confidentiality and availability via vectors related to File Processing...

Unspecified Vulnerability in Oracle PeopleSoft Products PeopleSoft Enterprise PeopleTools Component (CNVD-2016-05467)

Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle Corporation, and PeopleSoft Enterprise PeopleTools is one of the tools and technology components that transforms the way organizations manage, use, and maintain their PeopleSoft software. PeopleSoft...

CVE-2016-3421

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to Activity Guide...

Design/Logic Flaw

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Portal...

CVE-2016-0698

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Rich Text Editor, a different vulnerability than CVE-2016-3423...

Code injection

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Rich Text Editor, a different vulnerability than CVE-2016-3423...

CVE-2016-3435

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect availability via vectors related to PIA Core Technology...

CVE-2016-3442

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Portal...

CVE-2016-0471

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53 and 8.54 allows remote attackers to affect confidentiality via unknown vectors related to Multichannel Framework...

CVE-2016-0463

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect confidentiality via unknown vectors related to Portal...

Unspecified Vulnerability in Oracle PeopleSoft Products (CNVD-2015-06958)

Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle. An unspecified vulnerability exists in Oracle PeopleSoft Products 8.53 and 8.54. Allowing an authenticated remote user to pivot through unspecified vectors with associated pivot grids compromises...