Lucene search
K

112 matches found

The Hacker News
The Hacker News
added 5 days ago23 views

Rogue Agent Flaw Could Have Let Attackers Hijack Google Dialogflow CX Chatbots

A critical flaw in Google's Dialogflow CX could have let an attacker with edit rights on one Code Block-enabled agent compromise other Code Block-enabled agents in the same Google Cloud project. From there, they could read live conversations, steal the data users shared, and make the bots send...

6.7AI score
Exploits0
CVE
CVE
added 6 days ago10 views

CVE-2026-58402

Hugo (static site generator) from version 0.60.0 up to 0.163.3 is affected: its default code-block renderer writes the Markdown code-fence language/info-string into the code element wrapper (class="language-…", data-lang="…") without HTML escaping. A fence info-string containing a quote and a scr...

5.4CVSS5.8AI score0.00172EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/06/29 6:52 p.m.15 views

CVE-2026-53428

Summary: The CVE describes an unbounded memory allocation in the mdex/native codepath when parsing a user-supplied highlight_lines range in Markdown code blocks, enabling a denial-of-service via memory exhaustion. The affected components are mdex (v0.11.0 before 0.12.3) and mdex_native (v0.1.0 be...

6.9CVSS5.9AI score0.00142EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/06 6:43 p.m.14 views

CVE-2026-49493

Markdown Preview Enhanced before 0.8.28 parses Bitfield fenced code blocks with interpretJS, which evaluates the block content as code via vm.runInNewContext, allowing arbitrary code execution. A crafted markdown document containing a malicious bitfield code block executes attacker-controlled cod...

8.8CVSS5.9AI score0.00327EPSS
Exploits0References1
NVD
NVD
added 2026/06/05 6:17 p.m.12 views

CVE-2026-49493

Markdown Preview Enhanced before 0.8.28 parses Bitfield fenced code blocks with interpretJS, which evaluates the block content as code via vm.runInNewContext, allowing arbitrary code execution. A crafted markdown document containing a malicious bitfield code block executes attacker-controlled cod...

8.8CVSS0.00327EPSS
Exploits0References2
CVE
CVE
added 2026/05/22 5:27 p.m.35 views

CVE-2026-39965

Summary: CVE-2026-39965 affects TypeBot (versions ≤ 3.15.2). The HTTP Request and Code blocks validate the initial URL but the HTTP clients (ky and fetch) do not re-validate redirect destinations on 302 responses, enabling an authenticated user to point a block to an attacker-controlled server th...

7.7CVSS5.8AI score0.00239EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/02/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-37121

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CODE::BLOCKS 16.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler with...

6.7CVSS6.5AI score0.00207EPSS
Exploits0References2
OSV
OSV
added 2026/02/05 5:16 p.m.4 views

DEBIAN-CVE-2020-37121

CODE::BLOCKS 16.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler with crafted Unicode characters. Attackers can create a malicious M3U playlist file with 536 bytes of buffer and shellcode to trigger remote code...

5.5CVSS6.8AI score0.00207EPSS
Exploits0References1
OSV
OSV
added 2026/02/05 5:16 p.m.6 views

UBUNTU-CVE-2020-37121

CODE::BLOCKS 16.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler with crafted Unicode characters. Attackers can create a malicious M3U playlist file with 536 bytes of buffer and shellcode to trigger remote code...

6.7CVSS6.7AI score0.00207EPSS
Exploits0References6
CVE
CVE
added 2026/02/05 4:13 p.m.15 views

CVE-2020-37121

CODE::BLOCKS 16.01 has a buffer overflow vulnerability that enables remote code execution by overwriting the Structured Exception Handler with crafted Unicode in a malicious M3U playlist (~536 bytes). Affected component is the SEH handler logic within CODE::BLOCKS 16.01; exploitation details spec...

6.7CVSS6.6AI score0.00207EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/05 4:13 p.m.4 views

CVE-2020-37121

CODE::BLOCKS 16.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler with crafted Unicode characters. Attackers can create a malicious M3U playlist file with 536 bytes of buffer and shellcode to trigger remote code...

6.7CVSS6.6AI score0.00207EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/02/05 4:13 p.m.7 views

EUVD-2020-31020

CODE::BLOCKS 16.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler with crafted Unicode characters. Attackers can create a malicious M3U playlist file with 536 bytes of buffer and shellcode to trigger remote code...

6.7CVSS6.6AI score0.00207EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/02/05 4:13 p.m.7 views

CVE-2020-37121

Removed by vendor...

6.7CVSS5.8AI score0.00207EPSS
Exploits0
CNNVD
CNNVD
added 2026/02/05 12:0 a.m.7 views

Code::Blocks 安全漏洞

Code::Blocks is an integrated development environment developed by Code::Blocks Open Source. Version 16.01 of Code::Blocks contains a security vulnerability; this vulnerability stems from a buffer overflow, which could allow attackers to execute arbitrary code...

6.7CVSS6.3AI score0.00207EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/02/05 12:0 a.m.8 views

PT-2026-6566

Name of the Vulnerable Software and Affected Versions CODE::BLOCKS version 16.01 Description CODE::BLOCKS version 16.01 contains a buffer overflow issue that allows attackers to execute arbitrary code. This is achieved by overwriting the Structured Exception Handler with specially crafted Unicode...

6.7CVSS6.8AI score0.00207EPSS
Exploits0References6
EUVD
EUVD
added 2026/01/31 12:30 a.m.10 views

EUVD-2020-30938

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS6.5AI score0.00188EPSS
Exploits0References5
EUVD
EUVD
added 2026/01/31 12:30 a.m.7 views

EUVD-2020-30940

Code Blocks 20.03 contains a denial of service vulnerability that allows attackers to crash the application by manipulating input in the FSymbols search field. Attackers can paste a large payload of 5000 repeated characters into the search field to trigger an application crash...

7.5CVSS5.9AI score0.00373EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-37038

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Code Blocks 20.03 contains a denial of service vulnerability that allows attackers to crash the application by manipulating input in the FSymbols search field...

7.5CVSS5.9AI score0.00373EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-37040

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode...

8.4CVSS6.4AI score0.00188EPSS
Exploits0References2
NVD
NVD
added 2026/01/30 11:16 p.m.9 views

CVE-2020-37040

Code Blocks 17.12 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious file name with Unicode characters. Attackers can trigger the vulnerability by pasting a specially crafted payload into the file name field during project...

8.4CVSS0.00188EPSS
Exploits0References4
Rows per page
Query Builder