PT-2024-39617

Name of the Vulnerable Software and Affected Versions SCP-Firmware versions 2.11.0 through 2.15.0 Description The issue arises from the transport message handler function not properly handling errors, which could allow an Application Processor AP to cause a buffer overflow in System Control...

PT-2024-7662 · Tenda · Tenda Fh1206

Name of the Vulnerable Software and Affected Versions: Tenda FH1206 version v02.03.01.35 Description: An issue in the handler function in "/goform/telnet" allows attackers to execute arbitrary commands via a crafted HTTP request. The vulnerability is related to the lack of input data sanitization...

PT-2024-38186 · Sourcecodester · Sourcecodester Medicine Tracker System

Name of the Vulnerable Software and Affected Versions: SourceCodester Medicine Tracker System version 1.0 Description: A vulnerability was found in the Password Change Handler component of the SourceCodester Medicine Tracker System, affecting the file /classes/Users.php?f=save user. The...

PT-2024-11031 · Karjasoft · Karjasoft Sami Http Server

Name of the Vulnerable Software and Affected Versions: Karjasoft Sami HTTP Server version 2.0 Description: A vulnerability was found in the HTTP HEAD Request Handler component of the Karjasoft Sami HTTP Server. The manipulation of this component leads to denial of service. It is possible to launc...

PT-2024-13044 · WordPress · Givewp +1

Name of the Vulnerable Software and Affected Versions: GiveWP plugin for WordPress versions up to, and including, 2.33.3 Description: The issue is due to missing or incorrect nonce validation on the give sendwp remote install handler function, making it possible for unauthenticated attackers to...

PT-2023-31513 · Medusa · Medusa

Name of the Vulnerable Software and Affected Versions: Medusa versions prior to 1.0.19 Description: Medusa is an automatic video library manager for TV shows. The issue is related to unauthenticated blind server-side request forgery SSRF. The testslack request handler in...

PT-2023-32666 · Icecms · Icecms

Name of the Vulnerable Software and Affected Versions: IceCMS version 2.0.1 Description: A vulnerability has been found in IceCMS, affecting an unknown function of the file /WebArticle/articles/ of the component Like Handler. This issue leads to improper enforcement of a single, unique action and...

PT-2023-2523 · Frrouting +3 · Frrouting +3

Name of the Vulnerable Software and Affected Versions: FRRouting versions through 8.4 Description: An issue in bgpd allows attackers to cause a denial of service by crafting a BGP OPEN message with an option of type 0xff, leading to inconsistent boundary checks and potential out-of-bounds read or...

PT-2022-20430 · Apache +3 · Apache Tika +3

Name of the Vulnerable Software and Affected Versions: Apache Tika versions 1.x through 1.28.2 Description: A denial of service issue exists due to a regular expression in the StandardsText class, used by the StandardsExtractingContentHandler, which can lead to backtracking on a specially crafted...

PT-2018-16350 · Sophos · Sophos Hitmanpro.Alert

Name of the Vulnerable Software and Affected Versions: Sophos HitmanPro.Alert version 3.7.6.744 Description: A memory disclosure issue exists in the 0x222000 IOCTL handler functionality. This can be triggered by a specially crafted IRP request, causing the driver to return uninitialized memory an...