16 matches found
GHSA-C32J-VQHX-RX3X ruby-jwt: Empty-key HMAC bypass; cross-language sibling of CVE-2026-44351
JWT.decodetoken, '', true, algorithm: 'HS256' accepts an attacker-forged token. OpenSSL::HMAC.digest'SHA256', '', payload returns a valid digest under an empty key, and no raise InvalidKeyError if key.empty? precondition exists in the HMAC algorithm. JWT.decodetoken, "", true, algorithm: 'HS256' ...
CVE-2020-37203
Office Product Key Finder 1.5.4 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the registration code input. Attackers can create a specially crafted text file and paste it into the 'Name and Key' field to trigger an application crash...
CVE-2020-37179
APKF Product Key Finder 2.5.8.0 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character payload and paste it into the registration name field to trigger an application crash...
CVE-2020-37203 Office Product Key Finder 1.5.4 - Denial of Service
Office Product Key Finder 1.5.4 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the registration code input. Attackers can create a specially crafted text file and paste it into the 'Name and Key' field to trigger an application crash...
CVE-2020-37203 Office Product Key Finder 1.5.4 - Denial of Service
Office Product Key Finder 1.5.4 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the registration code input. Attackers can create a specially crafted text file and paste it into the 'Name and Key' field to trigger an application crash...
CVE-2020-37179
CVE-2020-37179 affects APKF Product Key Finder 2.5.8.0. The issue is a denial-of-service caused by overflowing the input field named 'Name' in the registration form; a 1000-character payload can crash the application. Metrics show CVSSv4.0 base score 4.6 (Medium) with local attack vector, and CVS...
CVE-2020-37179 APKF Product Key Finder 2.5.8.0 - 'Name' Denial of Service
APKF Product Key Finder 2.5.8.0 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character payload and paste it into the registration name field to trigger an application crash...
CVE-2020-37179 APKF Product Key Finder 2.5.8.0 - 'Name' Denial of Service
APKF Product Key Finder 2.5.8.0 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character payload and paste it into the registration name field to trigger an application crash...
PT-2026-7701
Office Product Key Finder 1.5.4 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the registration code input. Attackers can create a specially crafted text file and paste it into the 'Name and Key' field to trigger an application crash...
Nsasoft Office Product Key Finder 安全漏洞
Nsasoft Office Product Key Finder is a tool developed by the US company Nsasoft, designed for retrieving and backing up Microsoft Office serial numbers. The version 1.5.4 of Nsasoft Office Product Key Finder contains a security vulnerability; this vulnerability stems from a buffer overflow in the...
PT-2026-7677
APKF Product Key Finder 2.5.8.0 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character payload and paste it into the registration name field to trigger an application crash...
Nsasoft APKF Product Key Finder 安全漏洞
Nsasoft APKF Product Key Finder is a software serial number retrieval tool developed by the NSasoft company. The version 2.5.8.0 of Nsasoft APKF Product Key Finder contains a security vulnerability. This vulnerability stems from a buffer overflow in the Name input field, which could lead to a...
Office Product Key Finder 1.5.4 - Denial of Service Exploit
Exploit Title: Office Product Key Finder 1.5.4 - Denial of Service PoC Date: 2020-01-06 Vendor Homepage: http://www.nsauditor.com/ Software Link: http://www.nsauditor.com/downloads/officeproductkeyfindersetup.exe Exploit Author: Gokkul Tested Version: v1.5.4 Tested on: Windows 7 x64 Software...
Office Product Key Finder 1.5.4 - Denial of Service (PoC)
Exploit Title: Office Product Key Finder 1.5.4 - Denial of Service PoC Date: 2020-01-06 Vendor Homepage: http://www.nsauditor.com/ Software Link: http://www.nsauditor.com/downloads/officeproductkeyfindersetup.exe Exploit Author: Gokkul Tested Version: v1.5.4 Tested on: Windows 7 x64 Software...
Office Product Key Finder 1.5.4 Denial Of Service
Exploit Title: Office Product Key Finder 1.5.4 - Denial of Service PoC Date: 2020-01-06 Vendor Homepage: http://www.nsauditor.com/ Software Link: http://www.nsauditor.com/downloads/officeproductkeyfindersetup.exe Exploit Author: Gokkul Tested Version: v1.5.4 Tested on: Windows 7 x64 Software...
Office Product Key Finder 1.5.4 - Denial of Service (PoC)
Office Product Key Finder 1.5.4 - Denial of Service PoC Exploit Title: Office Product Key Finder 1.5.4 - Denial of Service PoC Date: 2020-01-06 Vendor Homepage: http://www.nsauditor.com/ Software Link: http://www.nsauditor.com/downloads/officeproductkeyfindersetup.exe Exploit Author: Gokkul Teste...