CVE-2025-4061

A vulnerability, which was classified as critical, was found in code-projects Clothing Store Management System up to 1.0. Affected is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. Attacking locally is a requirement. The exploit has bee...

CVE-2025-4038

A vulnerability was found in code-projects Train Ticket Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is the function Reservation of the component Ticket Reservation. The manipulation of the argument Name leads to stack-based buffer overflow. Attacking...

CVE-2024-6031

Tesla Model S oFono AT Command Heap-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected Tesla Model S vehicles. An attacker must first obtain the ability to execute code on the target modem in order to exploit this...

CVE-2024-6032

CVE-2024-6032. Concrete details across connected sources show a local command-injection in Tesla Model S Iris Modem via the ql_atfwd process. The flaw stems from inadequate validation of a user-supplied string used to form a system call, allowing an attacker with code execution on the target to r...

CVE-2024-6031

CVE-2024-6031 affects Tesla Model S oFono via a heap-based buffer overflow in AT command response parsing. The root cause is improper validation of the length of user-supplied data before copying to a heap buffer, enabling a local attacker who can execute code on the target modem to run arbitrary...

CVE-2025-4069

A vulnerability, which was classified as critical, has been found in code-projects Product Management System 1.0. Affected by this issue is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. An attack has to be approached locally. The explo...

CVE-2025-4069 code-projects Product Management System add_item stack-based overflow

A vulnerability, which was classified as critical, has been found in code-projects Product Management System 1.0. Affected by this issue is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. An attack has to be approached locally. The explo...

CVE-2025-4068 code-projects Simple Movie Ticket Booking System changeprize stack-based overflow

A vulnerability classified as critical was found in code-projects Simple Movie Ticket Booking System 1.0. Affected by this vulnerability is the function changeprize. The manipulation of the argument prize leads to stack-based buffer overflow. The attack needs to be approached locally. The exploit...

CVE-2025-4062

CVE-2025-4062 affects Code-Projects Theater Seat Booking System 1.0. The vulnerability is in the vulnerable function cancel , where manipulation of the argument cancelcustomername leads to a stack-based buffer overflow. Exploitation is local, and the vulnerability has been publicly disclosed per ...

CVE-2025-4061

A vulnerability, which was classified as critical, was found in code-projects Clothing Store Management System up to 1.0. Affected is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. Attacking locally is a requirement. The exploit has bee...

CVE-2025-4059

A vulnerability classified as critical was found in code-projects Prison Management System 1.0. This vulnerability affects the function addrecord of the component PrisonMgmtSys. The manipulation of the argument filename leads to stack-based buffer overflow. An attack has to be approached locally...

CVE-2025-4059

A vulnerability classified as critical was found in code-projects Prison Management System 1.0. This vulnerability affects the function addrecord of the component PrisonMgmtSys. The manipulation of the argument filename leads to stack-based buffer overflow. An attack has to be approached locally...

PT-2025-18150 · Code Projects · Code-Projects Clothing Store Management System

Name of the Vulnerable Software and Affected Versions: code-projects Clothing Store Management System version 1.0 Description: A critical vulnerability was found in the code-projects Clothing Store Management System. The issue affects the add item function, where manipulation of the st.productnam...

CVE-2025-4038

A vulnerability was found in code-projects Train Ticket Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is the function Reservation of the component Ticket Reservation. The manipulation of the argument Name leads to stack-based buffer overflow. Attacking...

CVE-2025-4038

CVE-2025-4038 affects Code-Projects Train Ticket Reservation System 1.0. The vulnerability resides in the Reservation function of the Ticket Reservation component, where manipulating the Name argument causes a stack-based buffer overflow. Local attack is required, and public disclosure of the exp...

CVE-2025-4038 code-projects Train Ticket Reservation System reservation stack-based overflow

A vulnerability was found in code-projects Train Ticket Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is the function Reservation of the component Ticket Reservation. The manipulation of the argument Name leads to stack-based buffer overflow. Attacking...

NodeJS Driver for Snowflake has race condition when checking access to Easy Logging configuration file

Issue Snowflake discovered and remediated a vulnerability in the NodeJS Driver for Snowflake “Driver”. When using the Easy Logging feature on Linux and macOS the Driver didn’t correctly verify the permissions of the logging configuration file, potentially allowing an attacker with local access to...

CVE-2025-4002

A vulnerability was found in RefindPlusRepo RefindPlus 0.14.2.AB and classified as problematic. Affected by this issue is the function GetDebugLogFile of the file Library/MemLogLib/BootLog.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The patch is...

CVE-2025-4002

CVE-2025-4002 affects RefindPlusRepo RefindPlus 0.14.2.AB. The issue is a NULL pointer dereference in the function GetDebugLogFile in the file Library/MemLogLib/BootLog.c . Exploitation requires local access . The patch identified as d2143a1e2deefddd9b105fb7160763c4f8d47ea2 is recommended to fix ...

PT-2025-18040 · Unknown · Refindplus

Name of the Vulnerable Software and Affected Versions: RefindPlus versions 0.14.2.AB Description: A vulnerability was found in RefindPlus, classified as problematic. The issue affects the GetDebugLogFile function of the file Library/MemLogLib/BootLog.c, leading to a null pointer dereference. Loca...