CVE-2026-25583

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.3, there is a heap buffer overflow vulnerability in CIccFileIO::Read8 when processing malformed ICC profile files via unchecked fread...

picklescan has Arbitrary file read using `io.FileIO`

Summary Unsafe pickle deserialization allows unauthenticated attackers to read arbitrary server files and perform SSRF. By chaining io.FileIO and urllib.request.urlopen, an attacker can bypass RCE-focused blocklists to exfiltrate sensitive data example: /etc/passwd to an external server. Details...

Server-side Request Forgery (SSRF)

Overview picklescan is a Security scanner detecting Python Pickle files performing suspicious actions Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the io.FileIO and urllib.request.urlopen functions chaining. An attacker can access arbitrary files on the...

PT-2026-3411

Summary Unsafe pickle deserialization allows unauthenticated attackers to read arbitrary server files and perform SSRF. By chaining io.FileIO and urllib.request.urlopen, an attacker can bypass RCE-focused blocklists to exfiltrate sensitive data example: /etc/passwd to an external server. Details...

EUVD-2025-18580

Malicious code in bioql PyPI...

CVE-2025-38073

In the Linux kernel, the following vulnerability has been resolved: block: fix race between setblocksize and read paths With the new large sector size support, it's now the case that setblocksize can change iblksize and the folio order in a manner that conflicts with a concurrent reader and cause...

CVE-2025-38073

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2025-38073 block: fix race between set_blocksize and read paths

In the Linux kernel, the following vulnerability has been resolved: block: fix race between setblocksize and read paths With the new large sector size support, it's now the case that setblocksize can change iblksize and the folio order in a manner that conflicts with a concurrent reader and cause...

CVE-2024-2365

A vulnerability classified as problematic was found in Musicshelf 1.0/1.1 on Android. Affected by this vulnerability is an unknown functionality of the file io\fabric\sdk\android\services\network\PinningTrustManager.java of the component SHA-1 Handler. The manipulation leads to password hash with...

CVE-2024-2365 Musicshelf SHA-1 PinningTrustManager.java weak password hash

A vulnerability classified as problematic was found in Musicshelf 1.0/1.1 on Android. Affected by this vulnerability is an unknown functionality of the file io\fabric\sdk\android\services\network\PinningTrustManager.java of the component SHA-1 Handler. The manipulation leads to password hash with...

CVE-2024-2365

CVE-2024-2365 (Musicshelf, Android) affects Musicshelf 1.0/1.1. The vulnerability concerns an unknown function in PinningTrustManager.java (SHA-1 Handler) where manipulation could lead to a password hash with insufficient computational effort. Exploitation is described as possible on a physical d...

SUSE CVE-2019-9035

An issue was discovered in libmatio.a in matio aka MAT File I/O Library 1.5.13. There is a stack-based buffer over-read in the function ReadNextStructField in mat5.c...

Wsh - Web Shell Generator And Command Line Interface

wsh pronounced woosh is a web shell generator and command line interface. This started off as just an http client since interacting with webshells is a pain. There's a form, to send a command you have to type in an input box and press a button. I wanted something that fits into my workflow better...

DEBIAN-CVE-2020-19497

Integer overflow vulnerability in MatVarReadNextInfo5 in mat5.c in tbeu matio aka MAT File I/O Library 1.5.17, allows attackers to cause a Denial of Service or possibly other unspecified impacts...

SQL Server data corruption when a memory range is accessed by the SetFileIoOverlappedRange function and an I/O operation in Windows Vista, in Windows Server 2008, in Windows 7, or in Windows Server 2008 R2

SQL Server data corruption when a memory range is accessed by the SetFileIoOverlappedRange function and an I/O operation in Windows Vista, in Windows Server 2008, in Windows 7, or in Windows Server 2008 R2 Symptoms Consider the following scenario: You have a computer that is running one of the...

Oracle Solaris vulnerable to arbitrary code execution via /proc/self

Overview Oracle Solaris 11 and Solaris 10 are vulnerable to arbitrary code execution if an attacker has read/write access to /proc/self in the process file system. Description The process file system /proc in Oracle Solaris 11 and Solaris 10 provides a self/ alias that refers to the current...

Free Monthly Websites 2.0 - Admin Password Change

========================================================================================== Title : Free Monthly Websites 2.0 Administrator Remote Password Change Date : 10/04/2013 Name : Free Monthly Websites Affected Version : 2.0 Vendor : http://www.freemonthlywebsites2.com/ Category : Web...

Free Monthly Websites 2.0 Admin Bypass / Shell Upload

========================================================================================== Free Monthly Websites 2.0 Multiple Vulnerabilities ==========================================================================================...

Enhanced CTorrent / dtorrent "btFiles::BuildFromMI()"缓冲区溢出漏洞

CNCAN ID：CNCAN-2009042102 Enhanced CTorrent是一款UNIX环境下的Bittorrent客户端。 Enhanced CTorrent存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 btfiles.cpp包含的"btFiles::BuildFromMI"函数存在边界错误，诱使用户打开特殊构建的torrent文件，可导致触发基于栈的缓冲区溢出，可能以应用程序权限执行任意指令。 Enhanced CTorrent 3.x 目前没有解决方案提供： http://sourceforge.net/projects/dtorrent/...

HLStats 1.34 - 'hlstats.php' SQL Injection

= 1.20 works with magicquotesgpc=On by Michael Brooks / print "HLStats SQL Injection Exploit -------------------------------------------------------------------------------------------------------------------------------------------- Welcome To HLstats Exploit code. SQL Inection + Path Disclosure...