PT-2023-8338 · Libde265 +4 · Libde265 +4

Name of the Vulnerable Software and Affected Versions: Libde265 version 1.0.14 Description: The issue is related to a heap-buffer-overflow vulnerability in the derive spatial luma vector prediction function. This vulnerability may allow a remote attacker to impact the confidentiality, integrity,...

PT-2023-30713 · Giflib +6 · Giflib +6

Name of the Vulnerable Software and Affected Versions: GifLib version 5.2.1 Description: The issue is related to a buffer overflow in the GifLib project, which allows a local attacker to obtain sensitive information. This is achieved via the DumpSCreen2RGB function in gif2rgb.c. Recommendations:...

PT-2023-8889 · D Link · D-Link Dir-882

Name of the Vulnerable Software and Affected Versions: D-Link DIR-882 version DIR882A1 FW130B06 Description: The issue is caused by a stack overflow in the sub 477AA0 function of the D-Link DIR-882 router's firmware. This can allow a remote attacker to cause a denial of service or execute arbitra...

PT-2023-8942 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: GPAC version 2.3-DEV-rev566-g50c2ab06f-master Description: The issue is related to the gf filterpacket del function in the /gpac/src/filter core/filter.c file of the GPAC multimedia platform. It involves incorrect use of dynamic memory, which...

PT-2023-8955 · Libde265 +4 · Libde265 +4

Name of the Vulnerable Software and Affected Versions: libde265 version 1.10.12 Description: The issue is related to a buffer overflow vulnerability in the slice segment header function within the slice.cc component of the libde265 video codec implementation. This vulnerability can be exploited b...

PT-2023-8943 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: GPAC version 2.3-DEV-rev566-g50c2ab06f-master Description: The issue is related to a stack overflow in the hevc parse vps extension function, located in the media tools/av parsers.c file. This is caused by incorrect use of dynamic memory duri...

PT-2023-6821 · Gpac +2 · Gpac +2

Name of the Vulnerable Software and Affected Versions: GPAC version 2.3-DEV-rev605-gfc9e29089-master Description: The issue is related to a buffer overflow in the gf isom find od id for track function of the GPAC multimedia platform. This can lead to a denial of service. The vulnerable function i...

PT-2023-30050 · Cacti +2 · Cacti +2

Name of the Vulnerable Software and Affected Versions: Cacti version 1.2.25 Description: The issue allows a remote attacker to obtain sensitive information via the form actions function in the managers.php file. Recommendations: For Cacti version 1.2.25, consider disabling the form actions functi...

PT-2023-6448 · Tp Link · Tp-Link Tl-Wr886N

Name of the Vulnerable Software and Affected Versions: TP-LINK TL-WR886N version 7.0 3.0.14 Build 221115 Rel.56908n.bin Description: The issue is related to a stack overflow via the upgradeInfoRegister function, which can be exploited by a remote attacker to execute arbitrary code. This is due to...

PT-2023-30073 · Totolink · Totolink X2000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X2000R Gh version 1.0.0-B20230221.0948.web Description: A stack overflow issue was discovered via the function formWlSiteSurvey. This issue affects the specified version of the TOTOLINK X2000R Gh router. Recommendations: For TOTOLINK...

PT-2023-6447 · Tp Link · Tp-Link Tl-Wdr7660 +1

Name of the Vulnerable Software and Affected Versions: TP-LINK TL-WR886N version 7.0 3.0.14 Build 221115 Rel.56908n.bin TP-LINK TL-WDR7660 version 2.0.30 Description: The issue is related to a stack overflow via the deviceInfoRegister function, which can be exploited by a remote attacker to execu...

PT-2023-30021 · Totolink · Totolink X6000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X6000R version 9.4.0cu.652 B20230116 Description: A remote command execution issue was discovered, which can be exploited via the sub 411994 function. Recommendations: For TOTOLINK X6000R version 9.4.0cu.652 B20230116, consider...

PT-2023-30090 · Totolink · Totolink X2000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X2000R Gh version 1.0.0-B20230221.0948.web Description: A stack overflow issue was discovered in the function formTcpipSetup, which can be exploited. Recommendations: For version 1.0.0-B20230221.0948.web, as a temporary workaround,...

PT-2023-30016 · Totolink · Totolink X6000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X6000R version 9.4.0cu.652 B20230116 Description: A remote command execution issue was discovered via the sub 412688 function, allowing for potential exploitation. Recommendations: For TOTOLINK X6000R version 9.4.0cu.652 B20230116,...

PT-2023-30079 · Totolink · Totolink X2000R

Name of the Vulnerable Software and Affected Versions: TOTOLINK X2000R Gh version 1.0.0-B20230221.0948.web Description: A stack overflow issue was discovered in the function formSetLg. Recommendations: For version 1.0.0-B20230221.0948.web, as a temporary workaround, consider disabling the formSet...

PT-2023-29572 · Zzcms · Zzcms

Name of the Vulnerable Software and Affected Versions: zzzCMS version 2.1.9 Description: The issue allows a remote attacker to execute arbitrary code via a crafted file to the down url function in the zzz.php file. This enables the attacker to potentially gain control over the system...

PT-2023-6593 · Tp Link · Tp-Link Tl-Wr886N

Name of the Vulnerable Software and Affected Versions: TP-LINK TL-WR886N version 7.0 3.0.14 Build 221115 Rel.56908n.bin Description: The issue is related to a stack overflow in the registerRequestHandle function, which can be exploited by a remote attacker to impact the integrity, availability, a...

PT-2023-6595 · Tp Link · Tp-Link Tl-Wr886N

Name of the Vulnerable Software and Affected Versions: TP-LINK TL-WR886N version 7.0 3.0.14 Build 221115 Rel.56908n.bin Description: The issue is related to a stack overflow in the getRegVeriRegister function of the TP-LINK TL-WR886N router's firmware, which can be exploited by a remote attacker ...

PT-2023-29538 · Prestashop · Creative Popup

Name of the Vulnerable Software and Affected Versions: Creative Popup versions up to 1.6.9 Description: A SQL injection issue exists in the Creative Popup module for PrestaShop, allowing a guest to perform SQL injection via the cp download popup function. Recommendations: For versions up to 1.6.9...

PT-2023-29703 · Torbot +1 · Torbot +1

Name of the Vulnerable Software and Affected Versions: Torbot versions prior to 4.0.0 Description: The issue concerns the torbot.modules.validators.validate link function, which uses the python-validators URL validation regex. This regular expression has exponential complexity, allowing an attack...