CVE-2005-1674

Cross-Site Request Forgery CSRF vulnerability in Help Center Live allows remote attackers to perform actions as the administrator via a link or IMG tag to view.php...

CVE-2020-12119

Ledger Live before 2.7.0 does not handle Bitcoin's Replace-By-Fee RBF. It increases the user's balance with the value of an unconfirmed transaction as soon as it is received before the transaction is confirmed and does not decrease the balance when it is canceled. As a result, users are exposed t...

EUVD-2004-2476

Malware in sbrugna...

EUVD-2018-1083

Malware in sbrugna...

EUVD-2017-8674

Malware in sbrugna...

CVE-2025-53261 WordPress WP YouTube Live plugin <= 1.10.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in macbookandrew WP YouTube Live wp-youtube-live allows Cross Site Request Forgery.This issue affects WP YouTube Live: from n/a through = 1.10.0...

CVE-2023-46048

Tex Live 944e257 has a NULL pointer dereference in texk/web2c/pdftexdir/writet1.c. NOTE: this is disputed because it should be categorized as a usability problem...

DEBIAN-CVE-2018-17407

An issue was discovered in t1checkunusualcharstring functions in writet1.c files in TeX Live before 2018-09-21. A buffer overflow in the handling of Type 1 fonts allows arbitrary code execution when a malicious font is loaded by one of the vulnerable tools: pdflatex, pdftex, dvips, or luatex...

CVE-2017-17513

TeX Live through 20170524 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, related to linkedscripts/context/stubs/unix/mtxrun,...

USN-3401-1 texlive-base vulnerability

It was discovered that TeX Live incorrectly handled certain system commands. If a user were tricked into processing a specially crafted TeX file, a remote attacker could execute arbitrary code...

Introducing InsightAppSec: Cloud-powered Application Security Testing

Rapid7 announces today the launch of InsightAppSec, the newest product to be delivered on the Insight platform. InsightAppSec combines the power and accuracy of Rapid7s industry-leading and proven Dynamic Application Security Testing DAST engine with the quick deployment, scalability, and...

texlive: Integer overflow by processing special commands

Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...

phpDirectorySource 1.0 - Cross-Site Scripting SQL Injection

phpDirectorySource 1.0 - Cross-Site Scripting SQL Injection ============================================================================== » ! Coder - Developer HTML / CSS / PHP / Vb6 . ! ============================================================================== » Web Business Directory 1.0...

Meta Search Engine Script - &#039;url&#039; Local File Disclosure

-----------------------------I AM MUSLIM !!------------------------------ ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...

CVE-2004-2485

Unspecified vulnerability in PHP Live! before 2.8.2, due to a "major security problem," allows remote attackers to include arbitrary files and directories via unspecified attack vectors...

[SA13420] PHP Live! Unspecified Vulnerability

TITLE: PHP Live! Unspecified Vulnerability SECUNIA ADVISORY ID: SA13420 VERIFY ADVISORY: http://secunia.com/advisories/13420/ CRITICAL: Moderately critical IMPACT: Unknown WHERE: From remote SOFTWARE: PHP Live! 2.x http://secunia.com/product/4373/ DESCRIPTION: A vulnerability with an unknown impa...

PHP Live! < 2.8.2 Remote Configuration File Include

Binary data 2447.prm...