PYSEC-2024-307

wasm3 v0.5.0 was discovered to contain an out-of-bound memory read which leads to segmentation fault via the function "main" in wasm3/platforms/app/main.c...

wasm3 安全漏洞

wasm3 is the fastest WebAssembly interpreter, and the most versatile runtime. A security vulnerability exists in version v0.5.0 of wasm3, which originates from a segmentation error via the function main in wasm3/platforms/app/main.c. The vulnerability is caused by the use of the function main in...

PT-2024-25766 · Wasm3 · Wasm3

Name of the Vulnerable Software and Affected Versions: wasm3 version 0.5.0 Description: The issue is related to an out-of-bound memory read, which can cause a segmentation fault. This occurs via the function main in the file wasm3/platforms/app/main.c. Recommendations: For wasm3 version 0.5.0,...

CVE-2024-34246

Wasm3 v0.5.0 contains an out-of-bounds memory read that leads to a segmentation fault via wasm3/platforms/app/main.c::main. The Red Hat, NVD, OSV, CNNVD, CVE listings, and linked sources consistently describe this issue as a memory read vulnerability causing a crash. The available documents do no...

CVE-2024-34246

wasm3 v0.5.0 was discovered to contain an out-of-bound memory read which leads to segmentation fault via the function "main" in wasm3/platforms/app/main.c...

TOTOLINK N200RE main function buffer overflow vulnerability

The TOTOLINK N200RE is a wireless router for the SOHO market. The TOTOLINK N200RE suffers from a buffer overflow vulnerability that originates from a stack-based buffer overflow in the main function of //cgi-bin/cstecgi.cgi. No detailed vulnerability details are provided at this time...

CVE-2024-1001

A vulnerability classified as critical has been found in Totolink N200RE 9.3.5u.6139B20201216. Affected is the function main of the file /cgi-bin/cstecgi.cgi. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the...

PT-2024-1320 · Totolink · Totolink N200Re

Name of the Vulnerable Software and Affected Versions: Totolink N200RE version 9.3.5u.6139 B20201216 Description: A critical vulnerability has been found, affecting the main function of the /cgi-bin/cstecgi.cgi file. This issue leads to a stack-based buffer overflow, which can be exploited...

Buffer overflow

Buffer Overflow vulnerability in the main function in Mathtex 1.05 and before allows a remote attacker to cause a denial of service when using \convertpath...

Mathtex Security Breach

Mathtex is a CGI program written in C for the Manim community. A security vulnerability exists in Mathtex version 1.05 and earlier, which stems from a buffer overflow vulnerability in the main method. A remote attacker can exploit this vulnerability to cause a denial of service when using...

PT-2024-14317 · Mathtex +1 · Mathtex +1

Name of the Vulnerable Software and Affected Versions: Mathtex versions 1.05 and earlier Description: The issue allows a remote attacker to cause a denial of service when using convertpath. It is related to a Buffer Overflow vulnerability in the main function. Recommendations: For Mathtex version...

CVE-2023-52032

TOTOlink EX1200T V4.1.2cu.5232B20210713 was discovered to contain a remote command execution RCE vulnerability via the "main" function...

PT-2024-14366 · Totolink · Totolink Ex1200T

Name of the Vulnerable Software and Affected Versions: TOTOlink EX1200T version 4.1.2cu.5232 B20210713 Description: The issue is related to a remote command execution RCE vulnerability. It is exploited via the main function. Recommendations: For TOTOlink EX1200T version 4.1.2cu.5232 B20210713,...

CVE-2023-52032

TOTOlink EX1200T V4.1.2cu.5232B20210713 was discovered to contain a remote command execution RCE vulnerability via the "main" function...

CVE-2023-52032

CVE-2023-52032 affects TOTOLINK EX1200T (firmware v4.1.2cu.5232_B20210713). Multiple sources describe a remote command execution via the main() function , caused by improper filtering of constructed command characters. Reported as a command injection/RCE vulnerability with potential for arbitrary...

The vulnerability in the main() function of the csteccgi.cgi script (/cgi-bin/cstecgi.cgi?action=login) of the TOTOLINK A7100RU router software allows a perpetrator to execute arbitrary commands.

The vulnerability of the main function in the csteccgi.cgi script /cgi-bin/cstecgi.cgi?action=login of the TOTOLINK A7100RU router software is related to the output of operations that go beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary...

DrayTek Vigor2960 Path Traversal Vulnerability

DrayTek Vigor2960 is a dual WAN broadband router/VPN gateway from China's DrayTek. A path traversal vulnerability exists in the Draytek Vigor2960 v1.5.1.4 , v1.5.1.5 versions, which stems from a vulnerable directory traversal attack on the option parameter in the mainfunction.cgi dumpSyslog,...

Cross-site Scripting (XSS)

phpbb/phpbb is vulnerable to Cross-site Scripting XSS. The vulnerability exists because the main function in acpicons.php does not adequately escape the smilies URL and does not prevent the use of a .pak filename, allowing an attacker to inject and execute malicious JavaScript...

The vulnerability of the phpcgi_main() function in D-Link DIR-645 router microprogramming software allows attackers to bypass security restrictions and gain increased privileges.

The vulnerability of the phpcgimain function in D-Link DIR-645 router microprogramming software is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions and gain increased privileges...

CVE-2023-39113

ngiflib commit fb271 was discovered to contain a segmentation violation via the function "main" at gif2tag.c. This vulnerability is triggered when running the program gif2tga...