CVE-2025-65328

CVE-2025-65328 affects Mega-Fence (webgate-lib.*) 25.1.914 and earlier. The component trusts the first value of the X-Forwarded-For header as the client IP without validating a trusted proxy chain, enabling an attacker to spoof the client IP via XFF in remote requests. This spoofed IP can propaga...

CVE-2025-65328

Mega-Fence webgate-lib. 25.1.914 and prior trusts the first value of the X-Forwarded-For XFF header as the client IP without validating a trusted proxy chain. An attacker can supply an arbitrary XFF value in a remote request to spoof the client IP, which is then propagated to security-relevant...

EUVD-2018-7552

Malware in sbrugna...

EUVD-2002-1713

Malware in sbrugna...

Yenkee Hornet Gaming Mouse Denial Of Service

Exploit Title: Yenkee Hornet Gaming Mouse - 'GM312Fltr.sys' Denial-Of-Service PoC Date: 2021/04/07 Exploit Author: Quadron Research Lab Version: all version Tested on: Windows 10 x64 HUN/ENG Professional Vendor: https://www.yenkee.eu/gaming-mouse-hornet-aim/yms-3029 Reference:...

Lunar - A Lightweight Native DLL Mapping Library That Supports Mapping Directly From Memory

A lightweight native DLL mapping library that supports mapping directly from memory Features Imports and delay imports are resolved Relocations are performed Image sections are mapped with the correct page protection Exception handlers are initialised A security cookie is generated and initialise...

Nvidia GeForce Experience Web Helper - Command Injection

//Send request to local GFE server function submitRequestport,secret var xhr = new XMLHttpRequest; xhr.open"POST", "http://127.0.0.1:"+port+"/gfeupdate/autoGFEInstall/", true; xhr.setRequestHeader"Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8";...

Foxit Advanced PDF Editor 3.x < 3.0.4.0 Security Cookie Stack-based Buffer Overflow

The version of Foxit Advanced PDF Editor is 3.x prior to 3.0.4.0. As such, it is affected by a stack-based buffer overflow vulnerability triggered when a document reconstructs the security cookie. An attacker could exploit this issue by tricking a user into opening a specially crafted document,...

Foxit Advanced PDF Editor Buffer Overflow Vulnerability

Foxit Advanced PDF Editor is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2013-0107

Stack-based buffer overflow in Foxit Advanced PDF Editor 3 before 3.04 might allow remote attackers to execute arbitrary code via a crafted document containing instructions that reconstruct a certain security cookie...

CVE-2013-0107

Stack-based buffer overflow in Foxit Advanced PDF Editor 3 before 3.04 might allow remote attackers to execute arbitrary code via a crafted document containing instructions that reconstruct a certain security cookie...

CVE-2013-0107

Stack-based buffer overflow in Foxit Advanced PDF Editor 3 before 3.04 might allow remote attackers to execute arbitrary code via a crafted document containing instructions that reconstruct a certain security cookie...

http-joomla-brute NSE Script

Performs brute force password auditing against Joomla web CMS installations. This script initially reads the session cookie and parses the security token to perfom the brute force password auditing. It uses the unpwdb and brute libraries to perform password guessing. Any successful guesses are...

ProFTPD Telnet IAC buffer overflow

Added: 01/21/2011 CVE: CVE-2010-4221 BID: 44562 OSVDB: 68985 Background ProFTPD is free FTP Server software for Unix and Linux platforms. Problem A buffer overflow vulnerability in ProFTPD allows remote attackers to execute arbitrary commands by sending a TELNETIAC escape sequence to the FTP...

MS Windows NetpIsRemote() Remote Overflow Exploit (MS06-040) (2k3)

No description provided by source. netapiwin2003.pm MS06-040 Exploit for Windows Server 2003 SP0 Author: Trirat Puttaraksa Kira trir00t at gmail.com http://sf-freedom.blogspot.com For educational purpose only Note: This exploit is developed because of my question "Is it exploitable on Windows...

phpBB 2.0.16 - Cross-Site Scripting Remote Cookie Disclosure (Cookie Grabber)

// Original Author: 'Sjaak Rake' Ref: http://www.hackthissite.org/articles/read/175/ IP: ' .$ip. ' Date and Time: ' .$date. ' Referer: '.$referer.''; fclose$fp; ? //rename it to cookies.php and create one new file steal.php and chmod it to 777 milw0rm.com 2005-07-13...