16 matches found
Arbitrary Command Injection
Overview yii2-mcp-server is a MCP Server for Yii2 Framework - Database schema inspection, command execution, and project management Affected versions of this package are vulnerable to Arbitrary Command Injection via the yiicommandhelp or yiiexecutecommand functions in the MCP Interface. An attack...
EUVD-2019-7881
Malware in sbrugna...
EUVD-2019-19059
Malware in sbrugna...
EUVD-2012-5167
Malware in sbrugna...
EUVD-2024-30408
Malicious code in bioql PyPI...
CVE-2025-32053
CVE-2025-32053 is a libsoup vulnerability causing a heap buffer over-read in sniff_feed_or_html() and skip_insignificant_space(). It is reported across multiple distributions (e.g., Debian libsoup2.4, Rocky/AlmaLinux advisories, Amazon Linux 2023 libsoup3, and CBLMariner packages), indicating a l...
PT-2024-14412 · Unknown · Haware Module
Name of the Vulnerable Software and Affected Versions: iaware module affected versions not specified Description: The iaware module has a Use-After-Free UAF vulnerability. Successful exploitation of this vulnerability may affect the system functions. Recommendations: At the moment, there is no...
PT-2023-35732 · Git +1 · Libhevc
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash caused by the use of an uninitialized value. The crash occurs in the following functions: ihevce strm fill done, ihevce e...
PT-2023-35718 · Git +1 · P11-Kit
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type identified as Global-buffer-overflow READ 8. The crash state involves several functions: base C MessageSignFinal, rp...
PT-2023-35696 · Git +1 · Wireshark
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A crash occurred due to an unknown read issue. The crash state involves several functions: dissect oran c section, dissect oran, and call dissector work...
PT-2022-36798 · Git +1 · Relic
Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The issue is related to a crash caused by the use of an uninitialized value. The crash occurs in the following functions: bn trim, bn div dig, and bn size str. No information is availab...
PT-2022-36710 · Git +1 · Ghostscript
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type identified as Stack-use-after-return READ 4. The crash state involves several functions, including gs type2 interpre...
PT-2022-36685 · Git +1 · Fluent-Bit
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 1 crash was reported. The crash occurred in the following functions: flb parser create, flb parser conf file, and is related ...
PT-2022-37322 · Git +1 · Fluent-Bit
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read, which was identified through an OSS-Fuzz report. The crash state includes functions such as onig...
CVE-2016-10905
An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8. A use-after-free is caused by the functions gfs2clearrgrpd and readrindexentry...
CVE-2006-2200
Stack-based buffer overflow in libmms, as used by a MiMMS 0.0.9 and b xine-lib 1.1.0 and earlier, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via the 1 sendcommand, 2 stringutf16, 3 getdata, and 4 getmediapacket functions, and possibl...