Datart v1.0.0-rc.3 - Remote Code Execution

Datart v1.0.0-rc.3 contains a vulnerability that allows remote attackers to execute arbitrary code via INIT connection parameters. id: CVE-2025-56819 info: name: Datart v1.0.0-rc.3 - Remote Code Execution author: Redmomn severity: critical description: | Datart v1.0.0-rc.3 contains a vulnerabilit...

CVE-2025-13427

An authentication bypass vulnerability in Google Cloud Dialogflow CX Messenger allowed unauthenticated users to interact with restricted chat agents, gaining access to the agents' knowledge and the ability to trigger their intents, by manipulating initialization parameters or crafting specific AP...

CVE-2025-13427

CVE-2025-13427 concerns an authentication bypass in Google Cloud Dialogflow CX Messenger. The vulnerability allowed unauthenticated users to interact with restricted chat agents, gaining access to the agents’ knowledge and the ability to trigger their intents by manipulating initialization parame...

usrsctp: Out of bounds reads in sctp_load_addresses_from_init()

The Mozilla Foundation Security Advisory describes this flaw as: The inputs to sctploadaddressesfrominit are verified by sctparethereunrecognizedparameters; however, the two functions handled parameter bounds differently, resulting in out of bounds reads when parameters are partially outside a...

CenturyStar WebViewer.ocx Control Da*** and Other Initialization Parameters Global Variable Overflow Vulnerability

Century Star Configuration Software is an obstruction software launched by Beijing Century Changqiu Technology Co., Ltd. It is a real-time human-machine interface utility program generator, which consists of CSMaker development system and CSViewer operation system. An overflow vulnerability exist...

ALPINE-CVE-2015-9099

The lameinitparams function in lame.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service invalid read and application crash via a crafted audio file with a negative sample rate...

Malx Media Player handle malformed m3u file stack overflow local arbitrary code execution-vulnerability warning-the black bar safety net

Malx Media Player 3.2.2 handle malformed m3u file will occur when the stack overflows, which can allow an attacker to successfully control EIP, and execute arbitrary code. （Win7 SP1 with MacType for ROP） Malx Media Player is using MAXPATH as initialization parameters on the stack variable, but th...

Stack overflow

Multiple stack-based buffer overflows in the PhotoStockPlus Uploader Tool ActiveX control PSPUploader.ocx allow remote attackers to execute arbitrary code via unspecified initialization parameters...

Oracle JInitiator beans.ocx ActiveX Multiple Buffer Overflows

The remote host contains one or more versions of the 'beans.ocx' ActiveX control, distributed as a part of Oracle JInitiator. The version of at least one of these controls on the remote host reportedly is affected by multiple and as-yet unspecified stack buffer overflows in its initialization...