329 matches found
ROS-20220407-01
Vulnerability of libsndfile audio file reading and writing library is related to memory leak in function cafreadheader. Exploitation of the vulnerability could allow an attacker acting remotely to force an application to incorrectly free memory before deleting the last link and executing an attac...
The vulnerability of the Mat_VarReadNextInfo5 function in the mat5.c library for reading and writing MATLAB MATIO files allows a hacker to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the MatVarReadNextInfo5 function in the mat5.c library for reading and writing MATLAB MATIO files is related to integer overflow. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...
Stored Cross-site Scripting in showdoc
ShowDoc is a tool for an IT team to share documents online. showdoc contains a stored cross-site scripting vulnerability in the File Library page when uploading a file in .ofd format in versions prior to 2.10.4. At this time, there is no known workaround. Users should update to version 2.10.4...
GHSA-3PG8-C473-W6RR Stored Cross-site Scripting in showdoc
ShowDoc is a tool for an IT team to share documents online. showdoc contains a stored cross-site scripting vulnerability in the File Library page when uploading a file in .ofd format in versions prior to 2.10.4. At this time, there is no known workaround. Users should update to version 2.10.4...
Stored XSS viva .properties file upload
Description The application allows .properties files to upload which lead to stored XSS Proof of Concept 1.First, open your text file/notepad and paste the below payload and save it as XSS.properties: alert1337 alertdocument.domain alertdocument.location alert'XSSbySamprit Das' 2.Then go to...
Stored XSS viva cshtm file upload
Description This is a bypass of the report:https://huntr.dev/bounties/8702e2bf-4af2-4391-b651-c8c89e7d089e/. Here the upload functionality allows the malicious files with the extension .cshtm which leads to Stored XSS. Proof of Concept 1.First, open your text file/notepad and paste the below...
Stored XSS due to Unrestricted File Upload
Description Stored XSS via uploading files in .aspx format. Proof of Concept filename="poc.aspx" alert1 Steps to Reproduce 1.Login into showdoc.com.cn.\ 2.Navigate to file library https://www.showdoc.com.cn/attachment/index\ 3.In the File Library page, click the Upload button and choose the...
AudioFile 缓冲区错误漏洞
AudioFile is a simple header-only C++ library from Adam Stark's personal developer in the UK. It is used to read and write audio files. A security vulnerability exists in AudioFile, which stems from a heap buffer overflow contained in the function fouBytesToInt:AudioFile.h. The vulnerability is...
Cross-site Scripting (XSS) - Stored
Description Stored XSS via upload attachment with format .xml in File Library. Detail When opening the attachment, some format files will be rendered and loaded on the browser. So it allows executing arbitrary javascript code that was injected into attachment before. Proof of Concept PoC.xml...
AZL-66563 CVE-2022-24599 affecting package audiofile 0.3.6-27
In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring function to get data, however, it dosn't use zero byte...
CVE-2022-24599
In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring function to get data, however, it dosn't use zero byte...
Memory corruption
In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring function to get data, however, it dosn't use zero byte...
UBUNTU-CVE-2022-24599
In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring function to get data, however, it dosn't use zero byte...
Audio File Library 安全漏洞
Audio File Library aka audiofile is an audio file library. A security vulnerability exists in Audio File Library version 0.3.6, which stems from a memory leak vulnerability in printfileinfo that allows an attacker to disclose sensitive information via a crafted file...
CVE-2022-24599
CVE-2022-24599 concerns memory leak in autofile Audio File Library 0.3.6, specifically in printfileinfo() where the copyrightstring data is not properly truncated with zero bytes, potentially allowing leakage of sensitive information via a crafted file. Connected advisories confirm the issue acro...
PT-2022-16746 · Unknown +4 · Autofile Audio File Library +4
Name of the Vulnerable Software and Affected Versions: audiofile version 0.3.6 Description: A memory leak vulnerability exists in the printfileinfo function within printinfo.c of the audiofile Audio File Library. This allows an attacker to leak sensitive information by processing a crafted file...
CVE-2022-24599
In autofile Audio File Library 0.3.6, there exists one memory leak vulnerability in printfileinfo, in printinfo.c, which allows an attacker to leak sensitive information via a crafted file. The printfileinfo function calls the copyrightstring function to get data, however, it dosn't use zero byte...
Cross-site Scripting in showdoc
Stored XSS via upload attachment with format .svg in File Library...
GHSA-7X22-PMW5-66MQ Cross-site Scripting in showdoc
Stored XSS via upload attachment with format .svg in File Library...
Cross-site Scripting (XSS) - Stored in star7th/showdoc
Description Stored XSS via upload attachment with format .svg in File Library. Detail When opening the attachment, some format files will be rendered and loaded on the browser. So it allows executing arbitrary javascript code that was injected into attachment before. Proof of Concept PoC.svg var...