EUVD-2025-21744

Malicious code in bioql PyPI...

CVE-2025-34127

A stack-based buffer overflow exists in Achat v0.150 in its default configuration. By sending a specially crafted message to the UDP port 9256, an attacker can overwrite the structured exception handler SEH due to insufficient bounds checking on user-supplied input leading to remote code executio...

CVE-2025-34127

A stack-based buffer overflow exists in Achat v0.150 in its default configuration. By sending a specially crafted message to the UDP port 9256, an attacker can overwrite the structured exception handler SEH due to insufficient bounds checking on user-supplied input leading to remote code executio...

CVE-2025-34127 Achat v0.150 SEH Buffer Overflow via UDP

A stack-based buffer overflow exists in Achat v0.150 in its default configuration. By sending a specially crafted message to the UDP port 9256, an attacker can overwrite the structured exception handler SEH due to insufficient bounds checking on user-supplied input leading to remote code executio...

CVE-2025-34127

CVE-2025-34127 affects Achat v0.150 in default configuration. A stack-based buffer overflow allows an attacker to overwrite the Structured Exception Handler (SEH) by sending a specially crafted message to UDP port 9256, due to insufficient bounds checking on user input. This leads to remote code ...

CVE-2025-34127 Achat v0.150 SEH Buffer Overflow via UDP

A stack-based buffer overflow exists in Achat v0.150 in its default configuration. By sending a specially crafted message to the UDP port 9256, an attacker can overwrite the structured exception handler SEH due to insufficient bounds checking on user-supplied input leading to remote code executio...

Achat 安全漏洞

Achat is an open source chat software from Achat Open Source. A security vulnerability exists in Achat version v0.150, which stems from a stack buffer overflow that could lead to remote code execution...

PT-2025-29889 · Achat · Achat

Name of the Vulnerable Software and Affected Versions: Achat version 0.150 Description: A stack-based buffer overflow exists in the default configuration. By sending a specially crafted message to the UDP port 9256, an attacker can overwrite the structured exception handler SEH due to insufficien...

achat-chapiteaux.be Cross Site Scripting vulnerability OBB-3410300

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

achat-or.com Cross Site Scripting vulnerability OBB-2672918

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

achat-nom-domaine.com Cross Site Scripting vulnerability OBB-1469198

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Design/Logic Flaw

Advisto PEEL SHOPPING 9.0.0 has CSRF via en/achat/caddieajout.php and en/achat/caddieaffichage.php, as demonstrated by an XSS payload in the couleurId0 parameter to the latter...

CVE-2018-20848

Advisto PEEL SHOPPING 9.0.0 has CSRF via en/achat/caddieajout.php and en/achat/caddieaffichage.php, as demonstrated by an XSS payload in the couleurId0 parameter to the latter...

CVE-2018-20848

CVE-2018-20848 concerns Advisto PEEL SHOPPING 9.0.0. It describes a CSRF vulnerability exposed through en/achat/caddie_ajout.php and en/achat/caddie_affichage.php, demonstrated by an XSS payload in the couleurId[0] parameter to the latter. The vulnerability is documented across multiple sources (...

CVE-2025-34127

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/achatbof.rb 2025-10-23 21:13:04+00:00| seen| MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7...

Achat 0.150 beta7 - Remote Buffer Overflow (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Achat v0.150 beta7 Buffer Overflow', 'Description' = %q This module exploits an unicode SEH based stack buffer overflow in Achat...

Achat Unicode SEH Buffer Overflow

This module exploits a Unicode SEH buffer overflow in Achat. By sending a crafted message to the default port 9256/UDP, it's possible to overwrite the SEH handler. Even when the exploit is reliable, it depends on timing since there are two threads overflowing the stack in the same time. This modu...

Achat 0.150 beta7 - Remote Buffer Overflow

!/usr/bin/python Author KAhara MAnhara Achat 0.150 beta7 - Buffer Overflow Tested on Windows 7 32bit import socket import sys, time msfvenom -a x86 --platform Windows -p windows/exec CMD=calc.exe -e x86/unicodemixed -b...

Peel SHOPPING => v2.9 xss/sql injection vulnerability

Exploit for php platform in category web applications +-------------------------------------------------------------------------+ Exploit Title : Peel SHOPPING - version 2.8 and version 2.9 xss/sql inject Vulnerability version : v2.9 Author : Cyber-Crystal Date : n/a Software Link :...

CVE-2008-1496

Multiple SQL injection vulnerabilities in PEEL, possibly 3.x and earlier, allow remote attackers to execute arbitrary SQL commands via the 1 email parameter to a membre.php, and the 2 timestamp parameter to b the details action in achat/historiquecommandes.php and c the facture action in...