EUVD-2008-4645

Malware in sbrugna...

EUVD-2022-29036

Malicious code in bioql PyPI...

Cryptanalysis of LC-MUME: a Lightweight Certificateless Multi-User Matchmaking Encryption for Mobile Devices

Yang et al. proposed a lightweight certificateless multiuser matchmaking encryption LC-MUME scheme for mobile devices, published in IEEE Transactions on Information Forensics and Security TIFS DOI: 10.1109/TIFS.2023.3321961. Their construction aims to reduce computational and communication overhe...

CVE-2009-2882

Multiple cross-site scripting XSS vulnerabilities in PG MatchMaking allow remote attackers to inject arbitrary web script or HTML via the show parameter to 1 browseladies.php and 2 browsemen.php, the 3 gender parameter to search.php, and the 4 id parameter to services.php...

CVE-2023-3843

A vulnerability was found in mooSocial mooDating 1.2. It has been classified as problematic. Affected is an unknown function of the file /matchmakings/question of the component URL Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. VDB-235194 is...

mooSocial mooDating 跨站脚本漏洞

mooSocial mooDating is a dating application from mooSocial. A cross-site scripting vulnerability exists in mooSocial mooDating version 1.2, which stems from a cross-site scripting XSS vulnerability in file/matchmakings/question...

MAL-2022-4489 Malicious code in matchmaking-mgmt (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c910a63d38276abfbb266c3402f67f82df0091bd11ccffd6316793b44c5506a6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in matchmaking-mgmt (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c910a63d38276abfbb266c3402f67f82df0091bd11ccffd6316793b44c5506a6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview matchmaking-mgmt is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...

CVE-2022-24125

The matchmaking servers of Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allow remote attackers to send arbitrary push requests to clients via a RequestSendMessageToPlayers request. For example, ability to send a push message to hundreds of thousands of machines is only restricted o...

Authentication flaw

The matchmaking servers of Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allow remote attackers to send arbitrary push requests to clients via a RequestSendMessageToPlayers request. For example, ability to send a push message to hundreds of thousands of machines is only restricted o...

CVE-2022-24126

A buffer overflow in the NRSessionSearchResult parser in Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allows remote attackers to execute arbitrary code via matchmaking servers, a different vulnerability than CVE-2021-34170...

CVE-2022-24126

A buffer overflow in the NRSessionSearchResult parser in Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allows remote attackers to execute arbitrary code via matchmaking servers, a different vulnerability than CVE-2021-34170...

Buffer overflow

A buffer overflow in the NRSessionSearchResult parser in Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allows remote attackers to execute arbitrary code via matchmaking servers, a different vulnerability than CVE-2021-34170...

CVE-2022-24125

Dark Souls III’s matchmaking server vulnerability CVE-2022-24125 allows remote attackers to send arbitrary push messages to clients via RequestSendMessageToPlayers, bypassing client-side restrictions. The issue affects DS3 versions up to 2022-03-19 and can enable large-scale pushes to hundreds of...

CVE-2022-24125

The matchmaking servers of Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allow remote attackers to send arbitrary push requests to clients via a RequestSendMessageToPlayers request. For example, ability to send a push message to hundreds of thousands of machines is only restricted o...

Bandai Namco FromSoftware Dark Souls III 解析器缓冲区错误漏洞

Bandai Namco FromSoftware Dark Souls III is an action role-playing game by FromSoftware Japan. A security vulnerability in the NRSessionSearchResult parser in Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allows remote attackers to execute arbitrary code via the matchmaking server...

Bandai Namco FromSoftware Dark Souls III 安全漏洞

Bandai Namco FromSoftware Dark Souls III is an action role-playing game by Japanese company FromSoftware. A security vulnerability in the matchmaking server of Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allows remote attackers to send arbitrary push requests to clients via...

CVE-2022-24126

A buffer overflow in the NRSessionSearchResult parser in Bandai Namco FromSoftware Dark Souls III through 2022-03-19 allows remote attackers to execute arbitrary code via matchmaking servers, a different vulnerability than CVE-2021-34170...

CVE-2022-24126

CVE-2022-24126 describes a buffer overflow in the NRSessionSearchResult parser used by Bandai Namco FromSoftware’s Dark Souls III. The vulnerability arises from unsafe handling of a stack-allocated DLMemoryInputStream and a size/buffer parsing path within the NRSSR parsing flow, enabling an attac...