CVE-2025-66216

AIS-catcher is a multi-platform AIS receiver. Prior to version 0.64, a heap buffer overflow vulnerability has been identified in the AIS::Message class of AIS-catcher. This vulnerability allows an attacker to write approximately 1KB of arbitrary data into a 128-byte buffer. This issue has been...

CVE-2025-66216

AIS-catcher before v0.64 is affected by a heap buffer overflow in AIS::Message that allows writing ~1 KB into a 128-byte buffer. This has been patched in v0.64. Remediation: upgrade to 0.64+ (or apply vendor advisories). Exploitation details are not provided in the supplied documents.

EUVD-2025-199899

AIS-catcher is a multi-platform AIS receiver. Prior to version 0.64, a heap buffer overflow vulnerability has been identified in the AIS::Message class of AIS-catcher. This vulnerability allows an attacker to write approximately 1KB of arbitrary data into a 128-byte buffer. This issue has been...

AIS-catcher 安全漏洞

AIS-catcher is an AIS receiver from Jasper Personal Developers. A security vulnerability exists in AIS-catcher versions prior to 0.64, which stems from a heap buffer overflow in the AIS::Message class that could lead to arbitrary data writes...

PT-2025-48359

Name of the Vulnerable Software and Affected Versions AIS-catcher versions prior to 0.64 Description AIS-catcher is a multi-platform AIS receiver. A heap buffer overflow exists in the AIS::Message class. This allows an attacker to write approximately 1KB of arbitrary data into a 128-byte buffer...

EUVD-2021-26324

Malware in sbrugna...

CVE-2021-39968

Changlian Blocklist has a Business Logic Errors vulnerability .Successful exploitation of this vulnerability may expand the attack surface of the message class...

XML External Entity (XXE) Injection

Overview langroid is a Harness LLMs with Multi-Agent Programming Affected versions of this package are vulnerable to XML External Entity XXE Injection through the XMLToolMessage class. An attacker can cause denial of service or access sensitive local files by submitting specially crafted XML...

Langroid 代码问题漏洞

Langroid is a Langroid open source tool for developing LLM using multi-agent programming. A code issue vulnerability exists in Langroid versions prior to 0.53.4 that stems from the XMLToolMessage class that may process untrusted XML input, which could result in a denial of service or disclosure o...

CVE-2021-39968

Changlian Blocklist has a Business Logic Errors vulnerability .Successful exploitation of this vulnerability may expand the attack surface of the message class...

CVE-2021-39968

Technical details about CVE-2021-39968 are not publicly available in the provided documents. Monitor for updates from vendors and security databases.

WordPress Social Pug - Easy Social Share Buttons Plugin Cross-Site Scripting Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform using PHP language development, the platform supports in PHP and MySQL server set up personal blog site.Social Pug-Easy Social Share Buttons Plugin is used in one of the social platform sharing plugin. A cross-site scriptin...

CVE-2016-10736

The "Social Pug - Easy Social Share Buttons" plugin before 1.2.6 for WordPress allows XSS via the wp-admin/admin.php?page=dpsp-toolkit dpspmessageclass parameter...

Z/OS (MVS) Command Shell, Bind TCP

Provide JCL which creates a bind shell This implementation does not include ebcdic character translation, so a client with translation capabilities is required. MSF handles this automatically. This module requires Metasploit: https://metasploit.com/download Current source:...

SQL Injection Vulnerability in ShowgetAdminUser Function of Tibco Call Center System

The core of Tibco's call center system is a communication-based system for internal and external corporate communication. A SQL injection vulnerability exists in the showgetAdminUser function of the Tibco Call Center System. The vulnerability file: /userweb/php/sms/sms.class.php allows attackers ...

ISC BIND rdata Denial Of Service Vulnerability

This vulnerability allows remote attackers to cause a denial of service condition on vulnerable installations of ISC BIND. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of an rdata section with a length that is less than four. The issue...