Lucene search
K

34 matches found

Patchstack
Patchstack
added 2025/01/15 1:35 p.m.6 views

WordPress DWT - Directory & Listing theme <= 3.3.3 - Reflected Cross-Site Scripting vulnerability

WordPress DWT - Directory & Listing theme = 3.3.3 - Reflected Cross-Site Scripting vulnerability discovered by István Márton in WordPress Theme DWT - Directory & Listing versions = 3.3.3...

6.1CVSS6.4AI score0.00275EPSS
Exploits0References1Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/08/29 9:17 a.m.5 views

Malicious code in dwt-runner (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71538fff3798a2b42ad1f28f2cbd053e501b0e143b563f0334e005a1ed152e24 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2024/08/29 9:17 a.m.6 views

MAL-2024-8072 Malicious code in dwt-runner (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71538fff3798a2b42ad1f28f2cbd053e501b0e143b563f0334e005a1ed152e24 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/08/29 9:9 a.m.6 views

Malicious code in dwt-reporter (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88db403b92b94f5d553816c131337f522d67a2db9e84298e6512b1a3ba386a7f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2024/08/29 9:9 a.m.6 views

MAL-2024-8071 Malicious code in dwt-reporter (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88db403b92b94f5d553816c131337f522d67a2db9e84298e6512b1a3ba386a7f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:14 a.m.3 views

SUSE CVE-2015-6776

The opjdwtdecode1 functions in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 47.0.2526.73, allow remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted JPEG 2000 data that is mishandled during a discrete wavele...

6.8CVSS9.5AI score0.0146EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:1 a.m.3 views

SUSE CVE-2016-5157

Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...

8.8CVSS9.7AI score0.04702EPSS
Exploits0References6
Ubuntu
Ubuntu
added 2022/10/07 9:44 p.m.79 views

USN-5664-1: OpenJPEG vulnerabilities

It was discovered that OpenJPEG did not properly handle PNM headers, resulting in a null pointer dereference. A remote attacker could possibly use this issue to cause a denial of service DoS. CVE-2016-7445 It was discovered that OpenJPEG incorrectly handled certain image files resulting in divisi...

9.8CVSS7AI score0.04191EPSS
Exploits3
Zero Day Initiative
Zero Day Initiative
added 2019/10/15 12:0 a.m.28 views

Adobe Acrobat Pro DC DWT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

7.8CVSS4.6AI score0.03287EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/09/12 7:39 p.m.6 views

chromium-browser: heap overflow in pdfium

Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...

8.8CVSS8AI score0.04702EPSS
Exploits0References5
OSV
OSV
added 2016/09/11 10:59 a.m.4 views

DEBIAN-CVE-2016-5157

Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...

8.8CVSS9.6AI score0.04702EPSS
Exploits0References1
CNVD
CNVD
added 2016/09/08 12:0 a.m.2 views

OpenJPEG opj_dwt_interleave_v heap overflow vulnerability

OpenJPEG is a C-based open source JPEG 2000 codec . A security vulnerability exists in the opjdwtinterleavev function of OpenJPEG, which allows remote attackers to construct specially crafted JPEG 2000 images to trigger a heap overflow vulnerability that can be exploited for arbitrary code...

8AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/02/12 12:0 a.m.6 views

The vulnerability of the FFmpeg multimedia library, which allows a intruder to trigger a service failure or cause other effects

The vulnerability of the ffdwtdecode function libavcodec/jpeg2000dwt.c in the multimedia library FFmpeg exists due to the lack of checks for the number of decomposition levels before performing the discrete wavelet transformation. Exploiting this vulnerability could allow a malicious actor to cau...

7.5CVSS7.2AI score0.01913EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2015/12/24 1:0 a.m.95 views

CVE-2015-8662

FFmpeg vulnerability CVE-2015-8662 affects the libavcodec/jpeg2000dwt.c module, where ff_dwt_decode does not validate the number of decomposition levels before performing Discrete Wavelet Transform decoding. For crafted JPEG 2000 data, this can trigger an out-of-bounds array access and a denial o...

7.5CVSS7.8AI score0.01913EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder