EUVD-2026-16854

Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2026-27273

Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2026-27277

Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Adobe Substance3D Stager 缓冲区错误漏洞

Adobe Substance3D Stager is a 3D scene modeling and rendering software developed by Adobe Inc. Versions of Adobe Substance3D Stager 3.1.7 and earlier contain a buffer error vulnerability. This vulnerability stems from out-of-bounds writing, which may allow arbitrary code to execute under current...

EUVD-2023-31337

Malicious code in bioql PyPI...

CVE-2023-27601

OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.7 and 3.2.4, OpenSIPS crashes when a malformed SDP body is received and is processed by the deletesdpline function in the sipmsgops module. This issue can be reproduced by calling the function with an SDP...

CVE-2024-23183

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticated...

CVE-2023-28095 OpenSIPS has vulnerability in the building the local negative replies

OpenSIPS is a Session Initiation Protocol SIP server implementation. Versions prior to 3.1.7 and 3.2.4 have a potential issue in msgtranslator.c:2628 which might lead to a server crash. This issue was found while fuzzing the function buildresbuffromsipreq but could not be reproduced against a...

CVE-2023-28095 OpenSIPS has vulnerability in the building the local negative replies

OpenSIPS is a Session Initiation Protocol SIP server implementation. Versions prior to 3.1.7 and 3.2.4 have a potential issue in msgtranslator.c:2628 which might lead to a server crash. This issue was found while fuzzing the function buildresbuffromsipreq but could not be reproduced against a...

CVE-2021-20805

Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.7 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors...

@auto-canary/all-contributors (>=9.16.1-canary.undefined.13449.0 <=9.34.2-canary.1241.15885.0), @auto-canary/auto (>=9.16.1-canary.undefined.13449.0 <=9.34.2-canary.1241.15885.0) +23 more potentially affected by CVE-2021-23412 via gitlogplus (=3.1.7)

gitlogplus NPM version =3.1.7 is affected by a known vulnerability. The following packages have a transitive dependency on gitlogplus and may be impacted: - @auto-canary/all-contributors =9.16.1-canary.undefined.13449.0, =9.16.1-canary.undefined.13449.0, =9.23.0-canary.1099.14362.0,...