CVE-2026-54308

Summary (CVE-2026-54308) : In n8n, the MicrosoftAgent365Trigger and StripeTrigger nodes failed to validate inbound requests prior to versions 2.25.7 and 2.26.2. An unauthenticated attacker who knows the webhook URL could submit a forged payload and cause a workflow to execute with attacker-contro...

n8n: Missing Token Validation on Microsoft Agent 365 Trigger and Stripe Nodes

Impact The MicrosoftAgent365Trigger and StripeTrigger node did not validate that inbound requests. As a result, an unauthenticated attacker who knows the webhook URL could submit a forged payload and cause the workflow to execute with attacker-controlled data. Patches The issue has been fixed in...

NPM: n8n: Missing Token Validation on Microsoft Agent 365 Trigger and Stripe Nodes

NPM: n8n: Missing Token Validation on Microsoft Agent 365 Trigger and Stripe Nodes vulnerability discovered by ? in WordPress Npm n8n versions 2.25.7...

PT-2026-50174

Name of the Vulnerable Software and Affected Versions n8n versions prior to 2.25.7 n8n versions prior to 2.26.2 Description The MicrosoftAgent365Trigger and StripeTrigger nodes fail to validate inbound requests. This allows an unauthenticated attacker with knowledge of the webhook URL to submit a...

Microsoft Windows Agent ACF File Handling Memory Corruption (MS06-068) - Ver2 (CVE-2006-3445)

A remote code execution vulnerability exists in Microsoft Agent. Microsoft Agent is a software technology that enables an enriched form of user interaction that can make using and learning to use a computer easier and more natural. . The vulnerability is due to a memory corruption error in the...

Microsoft Agent agentdpv.dll ActiveX Control Malformed URL Stack Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25566/info Microsoft Agent agentsvr.exe is prone to a stack-based buffer-overflow vulnerability because the application fails to adequately bounds-check user-supplied data. Successfully exploiting this issue allows remote...

Microsoft Agent Crafted URL Stack Buffer Overflow (MS07-051; CVE-2007-3040)

The Microsoft Agent ActiveX control, exposes a set of methods and properties that can be used for scripting in HTML pages. There exists a buffer overflow vulnerability in Microsoft Windows Agent application. The flaw is due to wrongfully copying an overly large string to a fixed-size stack buffer...

Stack overflow

Stack-based buffer overflow in agentdpv.dll 2.0.0.3425 in Microsoft Agent on Windows 2000 SP4 allows remote attackers to execute arbitrary code via a crafted URL to the Agent Agent.Control ActiveX control, which triggers an overflow within the Agent Service agentsrv.exe process, a different issue...

Immunity Canvas: MS07_051

Name| ms07051 ---|--- CVE| CVE-2007-3040 Exploit Pack| CANVAS Description| Microsoft Agent URL Overflow Notes| CVE Name: CVE-2007-3040 VENDOR: Microsoft MSADV: MS07-051 VersionsAffected: Repeatability: References: http://www.microsoft.com/technet/security/Bulletin/ms07-051.mspx CVE Url:...

CVE-2007-3040

Stack-based buffer overflow in agentdpv.dll 2.0.0.3425 in Microsoft Agent on Windows 2000 SP4 allows remote attackers to execute arbitrary code via a crafted URL to the Agent Agent.Control ActiveX control, which triggers an overflow within the Agent Service agentsrv.exe process, a different issue...

CVE-2007-3040

Stack-based buffer overflow in agentdpv.dll 2.0.0.3425 in Microsoft Agent on Windows 2000 SP4 allows remote attackers to execute arbitrary code via a crafted URL to the Agent Agent.Control ActiveX control, which triggers an overflow within the Agent Service agentsrv.exe process, a different issue...

CVE-2007-3040

This CVE affects Microsoft Agent on Windows 2000 SP4, via the Agent (Agent.Control) ActiveX in agentdpv.dll 2.0.0.3425. A crafted URL can trigger a stack-based overflow in the Agent Service (agentsrv.exe), allowing remote code execution with the caller’s privileges. The issue is tied to the Micro...

Preemptive Protection against Microsoft Agent Remote Code Execution Vulnerability (MS07-051)

A remote code execution vulnerability exists in Microsoft Agent. Microsoft Agent is a software technology that enables an enriched form of user interaction that can make using and learning to use a computer easier. A remote attacker can exploit this issue to execute arbitrary code on the affected...

Microsoft Agent crafted URL vulnerability

Added: 09/11/2007 CVE: CVE-2007-3040 BID: 25566 OSVDB: 36934 Background Microsoft Agent is a component of the Windows operating system designed to make using a computer easier through enriched user interaction. Problem A vulnerability in Microsoft Agent allows command execution when a user loads ...

Microsoft Agent crafted URL vulnerability

Added: 09/11/2007 CVE: CVE-2007-3040 BID: 25566 OSVDB: 36934 Background Microsoft Agent is a component of the Windows operating system designed to make using a computer easier through enriched user interaction. Problem A vulnerability in Microsoft Agent allows command execution when a user loads ...

Microsoft Security Bulletin MS07-051 - Critical Vulnerability in Microsoft Agent Could Allow Remote Code Execution (938827)

Microsoft Security Bulletin MS07-051 - Critical Vulnerability in Microsoft Agent Could Allow Remote Code Execution 938827 Published: September 11, 2007 Version: 1.0 General Information Executive Summary This critical security update resolves a privately reported vulnerability. A remote code...

Assurent VR - Microsoft Agent Crafted URL Stack Buffer Overflow

Microsoft Agent Crafted URL Stack Buffer Overflow Assurent ID: FSC20070911-11 1. Affected Software Microsoft Agent, version 2.0.0.3425 bundled with Windows 2000 Service Pack 4 Reference: http://www.microsoft.com/msagent/ 2. Vulnerability Summary The Microsoft Agent ActiveX control contains a buff...

Microsoft Agent - agentdpv.dll ActiveX Control Malformed URL Stack Buffer Overflow

Microsoft Agent - agentdpv.dll ActiveX Control Malformed URL Stack Buffer Overflow source: https://www.securityfocus.com/bid/25566/info Microsoft Agent agentsvr.exe is prone to a stack-based buffer-overflow vulnerability because the application fails to adequately bounds-check user-supplied data...

Microsoft Agent crafted URL vulnerability

Added: 09/11/2007 CVE: CVE-2007-3040 BID: 25566 OSVDB: 36934 Background Microsoft Agent is a component of the Windows operating system designed to make using a computer easier through enriched user interaction. Problem A vulnerability in Microsoft Agent allows command execution when a user loads ...

Microsoft Agent - 'agentdpv.dll' ActiveX Control Malformed URL Stack Buffer Overflow

source: https://www.securityfocus.com/bid/25566/info Microsoft Agent agentsvr.exe is prone to a stack-based buffer-overflow vulnerability because the application fails to adequately bounds-check user-supplied data. Successfully exploiting this issue allows remote attackers to execute arbitrary co...