CVE-2025-2591

A vulnerability classified as problematic was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function MDLImporter::InternReadFileQuake1 of the file code/AssetLib/MDL/MDLLoader.cpp. The manipulation of the argument skinwidth/skinheight leads to divide by zero. The...

CVE-2024-9285 Tu Yafeng Via Browser Javascript Bridge cross site scripting

A vulnerability was found in Tu Yafeng Via Browser up to 5.9.0 on Android. It has been rated as problematic. This issue affects some unknown processing of the component Javascript Bridge. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been...

CVE-2025-1372

A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this vulnerability is the function dumpdatasection/printstringsection of the file readelf.c of the component eu-readelf. The manipulation of the argument z/x leads to buffer overflow. An attack has to b...

CVE-2025-1150 GNU Binutils ld libbfd.c bfd_malloc memory leak

A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. This vulnerability affects the function bfdmalloc of the file libbfd.c of the component ld. The manipulation leads to memory leak. The attack can be initiated remotely. The complexity of an attack is rather high...

CVE-2024-3191

A vulnerability, which was classified as critical, has been found in MailCleaner up to 2023.03.14. This issue affects some unknown processing of the component Email Handler. The manipulation leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the...

CVE-2024-13129

A vulnerability was found in Roxy-WI up to 8.1.3. It has been declared as critical. Affected by this vulnerability is the function actionservice of the file app/modules/roxywi/roxy.py. The manipulation of the argument action/service leads to os command injection. The attack can be launched...

PT-2024-31804 · Faraday · Faraday Gm828X +1

Name of the Vulnerable Software and Affected Versions: Faraday GM8181 and GM828x up to 20240429 Description: A problematic issue has been found, affecting some unknown functionality of the file /command port.ini. This leads to information disclosure and can be exploited remotely. The issue has be...

Windows CLFS and five exploits used by ransomware operators (Exploit #2 – September 2022)

This is the third part of our study about the Common Log File System CLFS and five vulnerabilities in this Windows OS component that have been used in ransomware attacks throughout the year. Please read the previous parts first if you havent already. You can skip to the other parts using this tab...

CVE-2021-4273 studygolang search.go Search cross site scripting

A vulnerability classified as problematic was found in studygolang. This vulnerability affects the function Search of the file http/controller/search.go. The manipulation of the argument q leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the...

CVE-2022-3621 Linux Kernel nilfs2 inode.c nilfs_bmap_lookup_at_level null pointer dereference

A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfsbmaplookupatlevel of the file fs/nilfs2/inode.c of the component nilfs2. The manipulation leads to null pointer dereference. It is possible to launch the attack remotely. It is...

CVE-2022-29232 Exposure of messages in BigBlueButton public chats

BigBlueButton is an open source web conferencing system. Starting with version 2.2 and prior to versions 2.3.9 and 2.4-beta-1, an attacker can circumvent access controls to obtain the content of public chat messages from different meetings on the server. The attacker must be a participant in a...

Algolia: RCE on facebooksearch.algolia.com

While doing recon on Algolia, I found that the session secret for facebooksearch.algolia.com has been committed to a public GitHub repository. Since the Rails app running at facebooksearch.algolia.com is using CookieStore as the session storage, this means an attacker knowing the session secret c...

Android browser cross-domain data theft, and the Intent of the Scheme to attack-vulnerability warning-the black bar safety net

We next want to introduce this vulnerability, which affects versions of Android 4. 4 The following comes with the browser and some other specific Android browser, which allowed hackers to read the sqlite format of the cookie database file, thereby stealing cookies. Along with this problem, we hav...

phpcms2008 & phpcms2007 GBK版ask/search_ajax.php SQL注射漏洞

PHPCMS 是国内领先的网站管理系统，同时也是一个开源的PHP开发框架 漏洞文件：ask/searchajax.php code： ?php require './include/common.inc.php'; requireonce MODROOT.'include/ask.class.php'; $ask = new ask; header'Content-type: text/html; charset=utf-8'; ifstrtolowerCHARSET != 'utf-8' $q = iconvCHARSET, 'utf-8', $q; if$q $where = "...

[eVuln] Scriptme products BBCode 'url' XSS Vulnerability

New eVuln Advisory: Scriptme products BBCode 'url' XSS Vulnerability http://evuln.com/vulns/65/summary.html --------------------Summary---------------- eVuln ID: EV0065 CVE: CVE-2006-0661 Vendor: Scriptme Vendor's Web Site: http://www.scriptme.com/ Software: "SmE GB Host" "SmE Blog Host" Versions...

fudForum.txt

--Apple-Mail-1--543733574 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Hello, We have found a security problem in the tree view of FUD Forum Bulletin Board Software http://www.fudforum.org in version 2.6.15, earlier versions maybe affected a...

phpbb2013SQL.txt

heres a update of the paper: phpBB 2.0.13 = downloads.php Mod SQL injection www.batznet.com Discussion: -------------------- This exploit makes it possible to insert SQL Code through downloads.php Bug: -------------------- http://www.phpbb.de/downloads.php?cat=batz Spits out an error msg: Could n...

Immunity Canvas: UT2004SECURE

Name| ut2004secure ---|--- CVE| CVE-2004-0608 Exploit Pack| CANVAS Description| ut2004 \secure\ Notes| CVE Name: CVE-2004-0608 VENDOR: Epic OSVDBURL: http://www.osvdb.org/7217 Notes: 'This has been tested largely against Windows XP Home.The exploit works regardless of "dedicated" mode.See...

Gearbox Software Halo Combat Evolved 1.x - Game Server Remote Denial of Service

source: https://www.securityfocus.com/bid/11147/info The Halo Combat Evolved game server is reported prone to a remote denial of service vulnerability. A remote attacker may exploit this vulnerability to deny service for legitimate game players. Patches are available to address the issue...

PHP 4.3.7 - 'php-exec-dir' Patch Command Access Restriction Bypass

milw0rm.com 2004-08-08...