PT-2026-5480

Name of the Vulnerable Software and Affected Versions Code Blocks version 17.12 Description Code Blocks 17.12 contains a local buffer overflow that allows attackers to execute arbitrary code. This is achieved by crafting a malicious file name with Unicode characters. Attackers can trigger the iss...

Google Chrome Code Execution Vulnerability (CNVD-2026-11751)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a code execution vulnerability that is caused by free usage in ANGLE. An attacker can exploit the vulnerability to execute arbitrary code on a system...

Frigate security vulnerabilities

Frigate is a complete native NVR designed by Blake Blackshear for home assistants with AI object detection capabilities. Version 3.36.0.9 of Frigate contains a security vulnerability, which stems from a local buffer overflow in the command line input field, potentially allowing arbitrary code to ...

PT-2026-5486

Name of the Vulnerable Software and Affected Versions Frigate version 3.36.0.9 Description Frigate version 3.36.0.9 contains a local buffer overflow in the Command Line input field. An attacker can exploit this to execute arbitrary code by crafting a malicious payload that overflows the buffer,...

PT-2026-5477

Name of the Vulnerable Software and Affected Versions RM Downloader version 2.50.60 Description RM Downloader version 2.50.60 contains a local buffer overflow issue in the Load parameter. This allows attackers to execute arbitrary code by overwriting memory. An attacker can create a malicious...

Mini-stream RM Downloader security vulnerability

Mini-stream RM Downloader is a streaming media downloader developed by the Mini-stream company. Version 2.50.60 of Mini-stream RM Downloader contains a security vulnerability. This vulnerability stems from a local buffer overflow in the Load parameter, which may allow for the execution of arbitra...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 : FFmpeg vulnerabilities (USN-7982-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7982-1 advisory. It was discovered that FFmpeg did not correctly handle certain memory operations. An attacker cou...

MiracleLinux 9 : openssl-3.5.1-7.el9_7.ML.1 (AXSA:2026-105:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-105:04 advisory. openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS12 file CVE-2025-11187 openssl: OpenSSL: Remote code execution or...

Code::Blocks security vulnerabilities

Code::Blocks is an open-source, cross-platform integrated development environment for C++ development. Version 17.12 of Code::Blocks contains a security vulnerability, which stems from a local buffer overflow in the file name field, potentially allowing arbitrary code to be executed...

Port Forwarding Wizard security vulnerabilities

Port Forwarding Wizard is a port forwarding tool developed by an invalid account developer. Version 4.8.0 of Port Forwarding Wizard contains a security vulnerability, which stems from a buffer overflow in the Register function. This vulnerability could allow local attackers to execute arbitrary...

CVE-2025-69749

Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code...

CVE-2025-69749

Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code...

gimp: GIMP: Remote Code Execution via PNM file parsing integer overflow

A flaw was found in GIMP. A remote attacker could exploit an integer overflow vulnerability during the parsing of a malicious PNM Portable Anymap image file. This issue stems from insufficient validation of user-supplied data, which can lead to an integer overflow before memory allocation...

CVE-2020-36997

BacklinkSpeed 2.4 contains a buffer overflow vulnerability that allows attackers to corrupt the Structured Exception Handler SEH chain through malicious file import. Attackers can craft a specially designed payload file to overwrite SEH addresses, potentially executing arbitrary code and gaining...

CVE-2020-37001

Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the Pack File feature that allows attackers to execute arbitrary code by overflowing the 'Archive To' input field. Attackers can craft a malicious payload that overwrites the Structured Exception Handler SEH and uses ...

CVE-2020-37013

Audio Playback Recorder 3.2.2 is affected by a local buffer overflow in the eject and registration parameters, leading to arbitrary code execution via overwriting the Structured Exception Handler (SEH) when input is crafted and pasted into the application. Documents in connected sources confirm t...

CVE-2020-37013

Audio Playback Recorder 3.2.2 contains a local buffer overflow vulnerability in the eject and registration parameters that allows attackers to execute arbitrary code. Attackers can craft malicious payloads and overwrite Structured Exception Handler SEH to execute shellcode when pasting specially...

CVE-2020-37013 Audio Playback Recorder 3.2.2 - Local Buffer Overflow (SEH)

Audio Playback Recorder 3.2.2 contains a local buffer overflow vulnerability in the eject and registration parameters that allows attackers to execute arbitrary code. Attackers can craft malicious payloads and overwrite Structured Exception Handler SEH to execute shellcode when pasting specially...

CVE-2020-37010

CVE-2020-37010 affects BearShare Lite 5.2.5. The issue is a buffer overflow in the Advanced Search keywords input that can allow arbitrary code execution by crafting a payload to overwrite the EIP and run shellcode when content is pasted into the search keywords field. Documented impact is high (...

CVE-2020-37010 BearShare Lite 5.2.5 - 'Advanced Search'Buffer Overflow in (PoC)

BearShare Lite 5.2.5 contains a buffer overflow vulnerability in the Advanced Search keywords input that allows attackers to execute arbitrary code. Attackers can craft a specially designed payload to overwrite the EIP register and execute shellcode by pasting malicious content into the search...