18 matches found
CVE-2026-25104
MediaArea MediaInfoLib LXF parsing heap-based buffer overflow vulnerability...
EUVD-2026-31808
MediaArea MediaInfoLib LXF parsing heap-based buffer overflow vulnerability...
CVE-2026-28764
MediaArea MediaInfoLib LXF element parsing heap-based buffer overflow vulnerability...
CVE-2026-22554
MediaArea MediaInfoLib Channel Splitting heap-based buffer overflow vulnerability...
CVE-2025-32069
Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikibase Media Info Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - Wikibase Media Info Extension: from 1.39 through 1.43...
CVE-2025-32069 Wikitext stored XSS on filepages due to dangerous WBMI serialization
Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikibase Media Info Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - Wikibase Media Info Extension: from 1.39 through 1.43...
MediaWiki 输入验证错误漏洞
MediaWiki is a suite of free and freely available web-based Wiki engines from the Wikimedia USA Foundation. The product can be used to deploy in-house knowledge management and content management systems. MediaWiki - A security vulnerability exists in Wikibase Media Info Extension versions 1.39...
PT-2025-16133 · Mediawiki +1 · Mediawiki +1
Name of the Vulnerable Software and Affected Versions: Mediawiki - Wikibase Media Info Extension versions 1.39 through 1.43 Description: The issue is related to Improper Input Validation, which allows Cross-Site Scripting XSS. This exposes systems to XSS risk. Recommendations: For versions 1.39...
SUSE CVE-2019-11373
An out-of-bounds read in FileAnalyze::GetL8 in FileAnalyzeBuffer.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash...
SUSE CVE-2020-26797
Mediainfo before version 20.08 has a heap buffer overflow vulnerability via MediaInfoLib::FileGxf::ChooseParserChannelGrouping...
PT-2022-12580 · Mediawiki +1 · Mediawiki +1
Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.35.5 MediaWiki versions 1.36.x prior to 1.36.3 MediaWiki versions 1.37.x prior to 1.37.1 Description: An issue was discovered in the WikibaseMediaInfo component, which is vulnerable to XSS via the caption fields...
Unbreakable Enterprise kernel security update
2.6.39-400.324.1 - media: ttusb-dec: Fix info-leak in ttusbdecsendcommand Tomas Bortoli Orabug: 31351122 CVE-2019-19533 - ALSA: core: Fix card races between register and disconnect Takashi Iwai Orabug: 31351895 CVE-2019-15214...
Null pointer dereference
Possibility of null pointer deference as the array of video codecs from media info is referenced without null checking while processing SDP messages in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MSM8905,...
CVE-2019-14012
Possibility of null pointer deference as the array of video codecs from media info is referenced without null checking while processing SDP messages in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MSM8905,...
CVE-2019-14012
CVE-2019-14012 is a null pointer dereference in Snapdragon video codec handling when processing SDP messages, triggered by referencing the codecs array without null checks across multiple Snapdragon platforms (Auto, Compute, Consumer IOT, Industrial IOT, Mobile, Wearables) and a wide range of SoC...
DEBIAN-CVE-2019-11372
An out-of-bounds read in MediaInfoLib::FileTagsHelper::SynchedTest in Tag/FileTags.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash...
UBUNTU-CVE-2019-11373
An out-of-bounds read in FileAnalyze::GetL8 in FileAnalyzeBuffer.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash...
DUS INT Airport - Multiple SQL Injection Vulnerabilities
Document Title: =============== DUS INT Airport - Multiple SQL Injection Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=173 Release Date: ============= 2012-01-11 Vulnerability Laboratory ID VL-ID: ==================================== 17...