CVE-2026-11481 yoanbernabeu grepai Postgres Embedding Cache chunker.go PostgresStore.LookupByContentHash weak hash

A vulnerability was determined in yoanbernabeu grepai up to 0.35.0. The affected element is the function PostgresStore.LookupByContentHash of the file indexer/chunker.go of the component Postgres Embedding Cache. Executing a manipulation of the argument contenthash can lead to use of weak hash. T...

CVE-2026-11481

CVE-2026-11481 affects yoanbernabeu grepai up to 0.35.0. The vulnerability is in Postgres Embedding Cache: function PostgresStore.LookupByContentHash in file indexer/chunker.go. Manipulating the content_hash argument can lead to the use of a weak hash. Local access is required, with high attack c...

CVE-2026-43986

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public /image/ route that resolves attacker-controlled entries from imagehashlookup and replays them through the same server-side image fetch logic used by authenticated image proxying...

CVE-2026-43986

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public /image/ route that resolves attacker-controlled entries from imagehashlookup and replays them through the same server-side image fetch logic used by authenticated image proxying...

CVE-2026-43986 Tautulli vulnerable to unauthenticated SSRF in /image/<hash> via attacker-seeded image hash replay

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public /image/ route that resolves attacker-controlled entries from imagehashlookup and replays them through the same server-side image fetch logic used by authenticated image proxying...

CVE-2026-43986 Tautulli vulnerable to unauthenticated SSRF in /image/<hash> via attacker-seeded image hash replay

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public /image/ route that resolves attacker-controlled entries from imagehashlookup and replays them through the same server-side image fetch logic used by authenticated image proxying...

EUVD-2026-34286

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public /image/ route that resolves attacker-controlled entries from imagehashlookup and replays them through the same server-side image fetch logic used by authenticated image proxying...

Astra Linux - уязвимость в isc-dhcp

In ISC DHCP 4.4.0 - 4.4.3, and ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addOption, it increments the refcount field of the option. However, there is no corresponding call to optiondereference to decrement the refcount field. The function addOptio...

Huawei EulerOS: Security Advisory for dhcp (EulerOS-SA-2022-2792)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the libbfd library’s bfd_hash_lookup function in the GNU Binutils development environment allows a attacker to cause a service failure.

The vulnerability of the libbfd library’s bfdhashlookup function in the GNU Binutils development environment is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2021-1501

A vulnerability in the SIP inspection engine of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a crash and reload of an affected device, resulting in a denial of service DoS condition.The...

GNU Binutils Resource Management Error Vulnerability

GNU Binutils GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU community. The programs are primarily used to work with target files in a variety of formats, and provide connectors, assemblers, and other tools for target files and archives. A...

Recomposer - Randomly Changes Win32/64 PE Files For 'Safer' Uploading To Malware And Sandbox Sites

Ever have that not so safe feeling uploading your malware binaries to VirusTotal or other AV sites because you can look up binaries by hashes? Example: https://github.com/mubix/vt-notify Feel somewhat safer with Recomposer! Recomposer will take your binary and randomly do the following: Change th...

The vulnerability of the sec_merge_hash_lookup function in the GNU Binutils development tool, related to incorrect checking of memory access boundaries, allows a hacker to trigger a service failure.

The vulnerability of the secmergehashlookup function in the GNU Binutils development tooling is related to improper checking of memory access boundaries, which can lead to reading beyond the buffer’s bounds, especially when the size of a segment is not a multiple of the size of a single record...

UBUNTU-CVE-2018-18605

A heap-based buffer over-read issue was discovered in the function secmergehashlookup in merge.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.31, because bfdaddmergesection mishandles section merges when size is not a multiple of entsize. A specially...

Hash-Buster v2.0 - Tool Which Uses Several APIs To Perform Hash Lookups

Features Automatic hash type identification Supports MD5, SHA1, SHA2 Can extract & crack hashes from a file Can find hashes from a directory, recursively 6 robust APIs As powerful as Hulk, as intelligent as Bruce Banner Single Hash You don't need to specify the hash type. Hash Buster will identif...

CVE-2012-5415

Race condition on Cisco Adaptive Security Appliances ASA devices allows remote attackers to cause a denial of service CPU consumption or device reload by establishing multiple connections, leading to improper handling of hash lookups for secondary flows, aka Bug IDs CSCue31622 and CSCuc71272...

win32 WinExec() Command Parameter 104+ bytes

No description provided by source. ; ; relocateable dynamic runtime assembly code example using hash lookup ; ; WinExec with ExitThread ; 104 bytes ; ; for testing: ; ; ml /c /coff /Cp wexec2.asm ; link /subsystem:windows /section:.text,w wexec2.obj ; ; wyse101 at gmail.com ; ; October 2006 ; .38...

win32 download and execute 124 bytes

No description provided by source. ; ; relocateable dynamic runtime assembly code example using hash lookup for IE exploits only ; the URLMON.DLL must already be loaded into the process space for this to work, so do not run on its own!! ; ; to test use /DTESTCODE in ml command line ; ;...

win32 download and execute 124 bytes

win32 download and execute 124 bytes. Shellcode exploit for win32 platform ; ; relocateable dynamic runtime assembly code example using hash lookup for IE exploits only ; the URLMON.DLL must already be loaded into the process space for this to work, so do not run on its own!! ; ; to test use...