CVE-2026-21349

Lightroom Desktop versions 15.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

HashiCorp next-mdx-remote 安全漏洞

HashiCorp next-mdx-remote is a content rendering tool developed by the American company HashiCorp. Versions of HashiCorp next-mdx-remote prior to version 6.0.0 contained security vulnerabilities, which were due to insufficient MDX content cleanup and could lead to arbitrary code execution...

CVE-2025-63421

An issue in filosoft Comerc.32 Commercial Invoicing v.16.0.0.3 allows a local attacker to execute arbitrary code via the comeinst.exe file...

InternetSoft FTP Commander Pro 安全漏洞

InternetSoft FTP Commander Pro is an FTP software developed by InternetSoft Corporation. Version 8.03 of InternetSoft FTP Commander Pro contains a security vulnerability. This vulnerability stems from the possibility of local stack overflows when custom commands are entered, which could lead to t...

CVE-2025-63421

An issue in filosoft Comerc.32 Commercial Invoicing v.16.0.0.3 allows a local attacker to execute arbitrary code via the comeinst.exe file...

Linux Distros Unpatched Vulnerability : CVE-2025-69872

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DiskCache python-diskcache through 5.6.3 uses Python pickle for serialization by default. An attacker with write access to the cache directory can achieve...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : ImageMagick vulnerability (USN-8021-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8021-1 advisory. Benny Isaacs discovered that ImageMagick did not properly manage memory when processing certain image...

PT-2026-7878

A DLL hijacking vulnerability in Doc Nav could allow a local attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...

PT-2026-7864

An issue in filosoft Comerc.32 Commercial Invoicing v.16.0.0.3 allows a local attacker to execute arbitrary code via the comeinst.exe file...

Adobe Lightroom Desktop Out-of-Bounds Write Vulnerability

Adobe Lightroom Desktop is a professional photo management and editing software from the American company Audobee Adobe, designed to provide photographers and image editors with powerful workflow and editing tools. Adobe Lightroom Desktop suffers from an out-of-bounds write vulnerability that can...

Mersenne Research Prime95 安全漏洞

Mersenne Research Prime95 is an open-source software developed by Mersenne Research, running on Windows operating systems. Version 29.8 build 6 of Mersenne Research Prime95 contains a security vulnerability. This vulnerability stems from a buffer overflow in the user ID input field, which could...

PT-2026-7850

Name of the Vulnerable Software and Affected Versions AMD power management firmware PMFW affected versions not specified Description An unintended proxy or intermediary in the AMD power management firmware PMFW could allow a privileged attacker to send malformed messages to the system management...

PT-2026-7935

SpotAuditor 5.3.2 contains a local buffer overflow vulnerability in the Base64 Encrypted Password tool that allows attackers to execute arbitrary code by crafting a malicious payload. Attackers can generate a specially crafted Base64 encoded payload to trigger a Structured Exception Handler SEH...

AMD Vivado Documentation Navigator installation 安全漏洞

The AMD Vivado Documentation Navigator installation is an integrated document management software tool developed by AMD, a US semiconductor company. The AMD Vivado Documentation Navigator installation contains a security vulnerability, which stems from DLL hijacking. This vulnerability may allow...

CVE-2025-63421

CVE-2025-63421 affects Filosoft Comerc.32 Commercial Invoicing v16.0.0.3. The issue arises from a flaw in the comeinst.exe file that allows a local attacker to execute arbitrary code. CVSS v3.1 indicates a HIGH base score (7.8) with LOCAL access, LOW attack complexity, and privileges required, no...

PT-2026-7931

FTP Commander Pro 8.03 contains a local stack overflow vulnerability that allows attackers to execute arbitrary code by overwriting the EIP register through a custom command input. Attackers can craft a malicious payload of 4108 bytes to overwrite memory and execute shellcode, demonstrating remot...

PostgreSQL 安全漏洞

PostgreSQL is a set of free object-relational database management systems developed by the PostgreSQL organization. This system supports most SQL standards and offers many other features, such as foreign keys, triggers, views, etc. Security vulnerabilities existed in versions prior to PostgreSQL...

PostgreSQL 安全漏洞

PostgreSQL is a set of free object-relational database management systems developed by the PostgreSQL organization. This system supports most SQL standards and offers many other features, such as foreign keys, triggers, views, etc. Vulnerabilities existed in versions prior to PostgreSQL 18.2, 17....

AVS4YOU AVS Audio Converter 安全漏洞

AVS4YOU AVS Audio Converter is a software application developed by AVS4YOU Corporation. It is used to convert audio files from one format to another at your discretion, and to save them onto a hard drive. Version 9.1.2.600 of AVS4YOU AVS Audio Converter has a security vulnerability; this...

PT-2026-7930

AVS Audio Converter 9.1 contains a local buffer overflow vulnerability that allows local attackers to overwrite CPU registers by manipulating the 'Exit folder' input field. Attackers can craft a specially designed text file with 264 bytes of padding followed by register overwrite values to...