Lucene search
K

18 matches found

vulnersOsv
vulnersOsv
added 2026/04/24 7:30 p.m.8 views

@13w/local-rag (=2.0.0), @amodalai/cli (>=0.1.0 <=0.1.1) +30 more potentially affected by unknown CVE via @google/gemini-cli (>=0.11.3 <=0.39.0-nightly.20260411.0957f7d3e)

@google/gemini-cli NPM version =0.11.3, =0.1.0, =0.1.5, =0.1.0, =1.0.0, =0.0.17, =0.6.4, =0.0.1, =1.3.0, =0.1.10, =1.0.0, =2.0.0 and more Source cves: unknown CVE Source advisory: SNYK:JS-GOOGLEGEMINICLI-16301693...

5.7AI score
Exploits0
CNNVD
CNNVD
added 2025/08/15 12:0 a.m.3 views

LemonOS 安全漏洞

LemonOS is an operating system in the Lemon OS open source. A security vulnerability exists in LemonOS nightly-2024-07-12 and earlier versions, which stems from a stack buffer overflow due to incorrect manipulation of the parameter chunkSize in the file /Applications/Steal/main.cpp...

7.5CVSS7.1AI score0.0089EPSS
Exploits1References7
OSV
OSV
added 2024/11/14 11:15 p.m.5 views

CVE-2024-41217

A heap-based buffer overflow in tsMuxer version nightly-2024-05-10-02-00-45 allows attackers to cause Denial of Service DoS via a crafted MKV video file...

6.5CVSS7.2AI score
Exploits0References1
OSV
OSV
added 2024/11/14 11:15 p.m.3 views

CVE-2024-49777

A heap-based buffer overflow in tsMuxer version nightly-2024-03-14-01-51-12 allows attackers to cause Denial of Service DoS, Information Disclosure and Code Execution via a crafted MKV video file...

8.8CVSS7.2AI score
Exploits0References1
OSV
OSV
added 2024/11/14 11:15 p.m.6 views

CVE-2024-41209

A heap-based buffer overflow in tsMuxer version nightly-2024-03-14-01-51-12 allows attackers to cause Denial of Service DoS and Code Execution via a crafted MOV video file...

8.8CVSS7.5AI score0.00621EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/11/14 12:0 a.m.3 views

tsMuxer 安全漏洞

tsMuxer is a transport stream multiplexer for remixing/multiplexing elementary streams by Dan's personal developer. A security vulnerability exists in version tsMuxer nightly-2024-03-14-01-51-12, which stems from the inclusion of a buffer overflow issue. An attacker exploiting this vulnerability...

6.5CVSS6.8AI score0.0041EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/11/14 12:0 a.m.5 views

PT-2024-33684

Name of the Vulnerable Software and Affected Versions: tsMuxer version nightly-2024-04-05-01-53-02 Description: The issue allows attackers to cause Denial of Service DoS via a crafted TS video file. This is due to a negative-size-param in the affected version of tsMuxer. Recommendations: For...

6.5CVSS6.4AI score0.00417EPSS
Exploits1References7
CNNVD
CNNVD
added 2024/11/14 12:0 a.m.1 views

tsMuxer 安全漏洞

tsMuxer is a transport stream multiplexer for remixing/multiplexing elementary streams by Dan's personal developer. A security vulnerability exists in version tsMuxer nightly-2024-03-14-01-51-12, which stems from the inclusion of a buffer overflow issue. An attacker could cause a denial of servic...

8.8CVSS7AI score0.00621EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/11/14 12:0 a.m.5 views

PT-2024-35398 · Tsmuxer · Tsmuxer

Name of the Vulnerable Software and Affected Versions: tsMuxer version nightly-2024-05-12-02-01-18 Description: A heap-based buffer under-read in tsMuxer allows attackers to cause Denial of Service DoS via a crafted MOV video file. This issue may also allow attackers to remotely crash the...

5.5CVSS7.5AI score0.00229EPSS
Exploits1References7
OSV
OSV
added 2024/06/27 9:15 p.m.3 views

CVE-2024-39132

A NULL Pointer Dereference vulnerability in DumpTS v0.1.0-nightly allows attackers to cause a denial of service via the function VerifyCommandLine at /src/DumpTS.cpp...

6.5CVSS5.8AI score0.00377EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2021/05/11 12:0 a.m.137 views

Odoo 12.0.20190101 - &#039;nssm.exe&#039; Unquoted Service Path

Exploit Title: Odoo 12.0.20190101 - 'nssm.exe' Unquoted Service Path Exploit Author: 1F98D Vendor Homepage: https://www.odoo.com/ Software Link: https://nightly.odoo.com/12.0/nightly/windows/odoo12.0.20190101.exe Tested Version: 12.0.20190101 Tested on OS: Windows Step to discover Unquoted Servic...

7.4AI score
Exploits0
vulnersOsv
vulnersOsv
added 2018/08/23 7:12 p.m.4 views

4cdl (>=1.0.1 <=1.0.7), 77cli (>=0.0.10 <=0.0.12) +364 more potentially affected by CVE-2018-15685 via electron (>=2.0.0 <=2.0.8-nightly.20180820)

electron NPM version =2.0.0, =1.0.1, =0.0.10, =3.0.5, =0.1.0, =1.0.0, =0.0.2, =0.0.1, =1.0.2, =0.0.1, =1.1.0, =0.0.1, =0.0.5 and more Source cves: CVE-2018-15685 Source advisory: OSV:GHSA-HV9C-QWQG-QJ3V...

8.1CVSS7.2AI score0.10427EPSS
Exploits4
0day.today
0day.today
added 2017/04/05 12:0 a.m.56 views

Apple WebKit - RenderLayer Use-After-Free Exploit

Exploit for multiple platform in category dos / poc function go div.style.setProperty"-webkit-flow-into", "foo"; document.execCommand"fontSize", false, 6; window.requestAnimationFramecb; h1.attachShadowmode: "open"; h1.replaceWith"foo"; function cb var a; //trigger garbage collector forvar i=0;i...

6.8CVSS8.3AI score0.06766EPSS
Exploits3
seebug.org
seebug.org
added 2017/04/05 12:0 a.m.37 views

WebKit: HTMLInputElement use-after-free (CVE-2017-2454)

There is a use-after-free security vulnerability related to how the HTMLInputElement is handled in WebKit. The vulnerability was confirmed on a nightly build of WebKit. The PoC also crashes Safari 10.0.2 on Mac. PoC: function eventhandler1 input.type = "foo"; function eventhandler2...

6.8CVSS8.1AI score0.06766EPSS
Exploits3
Exploit DB
Exploit DB
added 2017/04/04 12:0 a.m.56 views

Apple WebKit 10.0.2 - HTMLInputElement Use-After-Free

function eventhandler1 input.type = "foo"; function eventhandler2 input.selectionStart = 25; !-- ================================================================= ASAN log from WebKit nightly on Mac: ================================================================= ==26782==ERROR: AddressSanitize...

7.4AI score
Exploits0
Metasploit
Metasploit
added 2012/04/10 11:39 a.m.68 views

Mozilla Firefox Bootstrapped Addon Social Engineering Code Execution

Mozilla Firefox before version 41 allowed users to install unsigned browser extensions from arbitrary web servers. This module dynamically creates an unsigned .xpi addon file. The resulting bootstrapped Firefox addon is presented to the victim via a web page. The victim's Firefox browser will pop...

7.2AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/10/01 12:0 a.m.30 views

JVN#26621646 EC-CUBE cross-site scripting vulnerability

EC-CUBE from LOCKON CO.,LTD. is an open source system for creating shopping websites. EC-CUBE contains a cross-site scripting vulnerability. This vulnerability is different from JVN61543834, JVN36085487, and JVN99916563. Impact An arbitrary script could be executed on the user's web browser...

4.3CVSS5.7AI score0.01223EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/10/01 12:0 a.m.30 views

JVN#99916563 EC-CUBE cross-site scripting vulnerability

EC-CUBE from LOCKON CO.,LTD. is an open source system for creating shopping websites. EC-CUBE contains a cross-site scripting vulnerability. This vulnerability is different from JVN61543834, JVN26621646, and JVN36085487. Impact An arbitrary script could be executed on the user's web browser...

4.3CVSS5.7AI score0.01223EPSS
Exploits0
Rows per page
Query Builder