CVE-2026-28502 WWBN AVideo: Authenticated Remote Code Execution via Unsafe Plugin ZIP Extraction

WWBN AVideo is an open source video platform. Prior to version 24.0, an authenticated Remote Code Execution RCE vulnerability was identified in AVideo related to the plugin upload/import functionality. The issue allowed an authenticated administrator to upload a specially crafted ZIP archive...

EUVD-2025-29422

Malicious code in bioql PyPI...

EUVD-2025-7156

Malicious code in bioql PyPI...

GHSA-W6MR-MJ53-X258 Duplicate Advisory: Zip Exploit Crashes Picklescan But Not PyTorch

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-7q5r-7gvp-wc82. This link is maintained to preserve external references. Original Description picklescan before 0.0.23 is vulnerable to a ZIP archive manipulation attack that causes it to crash when attempting t...

Duplicate Advisory: Zip Exploit Crashes Picklescan But Not PyTorch

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-7q5r-7gvp-wc82. This link is maintained to preserve external references. Original Description picklescan before 0.0.23 is vulnerable to a ZIP archive manipulation attack that causes it to crash when attempting t...

Linux Distros Unpatched Vulnerability : CVE-2023-52169

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 for 7zz contains an out-of-bounds read that allows an attacker to read beyond the intended buffer. The...

Linux Distros Unpatched Vulnerability : CVE-2018-10860

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - perl-archive-zip is vulnerable to a directory traversal in Archive::Zip. It was found that the Archive::Zip module did not properly sanitize paths while...

Exploit for Protection Mechanism Failure in 7-Zip

CVE-2025-0411: 7-Zip MoTW Bypass Vulnerability Introductio...

Exploit for CVE-2024-55587

CVE-2024-55587 This repository is proof of concept for C...

Gatekeeper Bypass Proof Of Concept

!/bin/zsh -e This script will create a zip file exploiting CVE-2021-1810 by creating a directory hierarchy deep enough for Archive Utility to fail setting quarantine attributes on certain files while also making some path names long enough to prevent Safari automating unzipping from unpacking the...

Funduc Search and Replace - Compressed File Local Buffer Overflow

Funduc Search and Replace - Compressed File Local Buffer Overflow / Search and Replace Compressed File search Local Buffer Overflow Exploit Discoveried & Coded By ATmaCA Copyright ©2002-2005 AtmacaSoft Inc. All Rights Reserved. Web: http://www.atmacasoft.com E-Mail: [email protected] Greetings t...