135 matches found
CVE-2023-27619 WordPress Regina Lite Theme <= 2.0.7 is vulnerable to Cross Site Scripting (XSS)
Auth subscriber+ Reflected Cross-Site Scripting XSS vulnerability in Macho Themes Regina Lite theme = 2.0.7 versions...
CVE-2023-27619
CVE-2023-27619 affects Regina Lite WordPress theme (≤ 2.0.7). Described as a reflected Cross‑Site Scripting (XSS) vulnerability that is exploitable by authenticated users with Subscriber+ privileges. Impact per sources is limited to reflected XSS in pages, with the vulnerability tied to input ref...
PT-2023-21257 · Macho Themes · Regina Lite
Name of the Vulnerable Software and Affected Versions: Macho Themes Regina Lite theme versions prior to 2.0.8 Description: A Reflected Cross-Site Scripting XSS vulnerability exists, allowing attackers to inject malicious scripts into pages. This issue affects authenticated users with subscriber o...
Important: golang
Issue Overview: A vulnerability was found in archive/zip of the Go standard library. Applications written in Go can panic or potentially exhaust system memory when parsing malformed ZIP files. CVE-2021-33196 A validation flaw was found in golang. When invoking functions from WASM modules built...
SUSE CVE-2019-19648
In the machoparsefile functionality in macho/macho.c of YARA 3.11.0, commandsize may be inconsistent with the real size. A specially crafted MachO file can cause an out-of-bounds memory access, resulting in Denial of Service application crash or potential code execution...
SUSE CVE-2021-41771
ImportedSymbols in debug/macho for Open or OpenFat in Go before 1.16.10 and 1.17.x before 1.17.3 Accesses a Memory Location After the End of a Buffer, aka an out-of-bounds slice situation...
Denial Of Service (DoS)
lief is vulnerable to denial of service. The vulnerability exists due to heap-buffer-overflow in the parsedyldinfogenericbind function of BinaryParser.tcc, allowing an attacker to cause an application crash through the maliciously crafted MachO file...
LIEF heap buffer overflow in the LIEF::MachO::BinaryParser::parse_dyldinfo_generic_bind
A heap buffer overflow in the LIEF::MachO::BinaryParser::parsedyldinfogenericbind function of LIEF prior to version 0.12.3 allows attackers to cause a Denial of Service DoS via a crafted MachO file...
CVE-2022-43171
A heap buffer overflow in the LIEF::MachO::BinaryParser::parsedyldinfogenericbind function of LIEF v0.12.1 allows attackers to cause a Denial of Service DoS via a crafted MachO file...
Heap overflow
A heap buffer overflow in the LIEF::MachO::BinaryParser::parsedyldinfogenericbind function of LIEF v0.12.1 allows attackers to cause a Denial of Service DoS via a crafted MachO file...
PYSEC-2022-43140
A heap buffer overflow in the LIEF::MachO::BinaryParser::parsedyldinfogenericbind function of LIEF v0.12.1 allows attackers to cause a Denial of Service DoS via a crafted MachO file...
CVE-2022-43171
A heap buffer overflow in the LIEF::MachO::BinaryParser::parsedyldinfogenericbind function of LIEF v0.12.1 allows attackers to cause a Denial of Service DoS via a crafted MachO file...
CVE-2022-43171
CVE-2022-43171 affects the LIEF library’s MachO parser: heap buffer overflow in LIEF::MachO::BinaryParser::parse_dyldinfo_generic_bind on v0.12.1, leading to DoS via a crafted Mach-O file. Public details show vulnerability in LIEF v0.12.1 (and related advisories mention pre-0.12.3) with mitigatio...
CVE-2022-43171
A heap buffer overflow in the LIEF::MachO::BinaryParser::parsedyldinfogenericbind function of LIEF v0.12.1 allows attackers to cause a Denial of Service DoS via a crafted MachO file...
LIEF 缓冲区错误漏洞
LIEF is a cross-platform library from the individual developer Romain Thomas. It is used to parse, modify and abstract Elf, Pe and MachO formats. A security vulnerability exists in LIEF version v0.12.1, which stems from a heap buffer overflow in the...
CVE-2022-43171
A heap buffer overflow in the LIEF::MachO::BinaryParser::parsedyldinfogenericbind function of LIEF v0.12.1 allows attackers to cause a Denial of Service DoS via a crafted MachO file...
Denial Of Service (DoS)
lief is vulnerable to denial of service DoS attacks. A malicious user is able to trigger a segmentation fault in parseloadcommands function via a crafted MachO file, causing the application to crash...
LIEF Denial of Service Vulnerability
LIEF is a cross-platform library from the personal developer Romain Thomas. Used for parsing, modifying and abstracting Elf, Pe and MachO formats, a denial of service vulnerability exists in LIEF v0.12.1, which stems from a failure to properly handle incoming error messages in the initandparse...
LIEF vulnerable to denial of service through segmentation fault
A vulnerability in the LIEF::MachO::BinaryParser::initandparse function of LIEF v0.12.1 allows attackers to cause a denial of service DOS through a segmentation fault via a crafted MachO file. A patch for this issue is available at commit fde2c48986739fabd2cf9b40b9af149a89c57850...
CVE-2022-40922
A vulnerability in the LIEF::MachO::BinaryParser::initandparse function of LIEF v0.12.1 allows attackers to cause a denial of service DOS through a segmentation fault via a crafted MachO file...