PT-2026-27343

NULL Pointer Dereference vulnerability in tmate-io tmate.This issue affects tmate: before 2.4.0...

CVE-2026-25925 PowerDocu Affected by Remote Code Execution via Insecure Deserialization

PowerDocu contains a Windows GUI executable to perform technical documentations. Prior to 2.4.0, PowerDocu contains a critical security vulnerability in how it parses JSON files within Flow or App packages. The application blindly trusts the $type property in JSON files, allowing an attacker to...

GPAC code-related vulnerabilities

GPAC is an open-source multimedia framework developed by GPAC. Versions of GPAC prior to 2.4.0 have code vulnerabilities. These vulnerabilities stem from incorrect handling of parameters in the Name field in the src/mediatools/mediaexport.c file, which may lead to null pointer dereferencing...

CVE-2017-18495

The gravity-forms-sms-notifications plugin before 2.4.0 for WordPress has XSS...

Linux Distros Unpatched Vulnerability : CVE-2023-1655

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.4.0. CVE-2023-1655 Note that Nessus relies on the presence of the package as reported by th...

Linux Distros Unpatched Vulnerability : CVE-2020-27843

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in OpenJPEG in versions prior to 2.4.0. This flaw allows an attacker to provide specially crafted input to the conversion or encoding...

WordPress plugin VR Calendar 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

PT-2024-5856 · Pypi +5 · Pydantic +5

Name of the Vulnerable Software and Affected Versions: Pydantic versions prior to 2.4.0 Pydantic versions prior to 1.10.13 Description: The issue is related to the use of regular expressions in the Pydantic library, which can lead to a denial of service when exploited by a remote attacker. This c...

PT-2022-10721 · Eprosima +2 · Eprosima Fast Dds +2

Name of the Vulnerable Software and Affected Versions: eProsima Fast DDS versions prior to 2.4.0 Description: The issue allows an attacker to send a specially crafted packet to flood a target device with unwanted traffic. This may result in a denial-of-service condition and information exposure...

OpenJPEG 输入验证错误漏洞

OpenJPEG is an open source JPEG 2000 codec written in C language . A heap buffer overflow vulnerability exists in the opjt2encodepacket function in openjp2/t2.c in versions of OpenJPEG prior to 2.4.0. An attacker could exploit this vulnerability via specially crafted input to affect...

PT-2020-6193 · Openjpeg +5 · Openjpeg +5

Name of the Vulnerable Software and Affected Versions: openjpeg versions prior to 2.4.0 Description: The issue is related to an out-of-bounds read in the src/lib/openjp2/pi.c component of the openjpeg library. This occurs when an attacker provides crafted input to be processed by the openjpeg...

CVE-2019-6832

A CWE-287: Authentication vulnerability exists in spaceLYnk all versions before 2.4.0 and Wiser for KNX all versions before 2.4.0 - formerly known as homeLYnk, which could cause loss of control when an attacker bypasses the authentication...