18 matches found
@13w/local-rag (=2.0.0), @amodalai/cli (>=0.1.0 <=0.1.1) +30 more potentially affected by unknown CVE via @google/gemini-cli (>=0.11.3 <=0.39.0-nightly.20260411.0957f7d3e)
@google/gemini-cli NPM version =0.11.3, =0.1.0, =0.1.5, =0.1.0, =1.0.0, =0.0.17, =0.6.4, =0.0.1, =1.3.0, =0.1.10, =1.0.0, =2.0.0 and more Source cves: unknown CVE Source advisory: SNYK:JS-GOOGLEGEMINICLI-16301693...
LemonOS 安全漏洞
LemonOS is an operating system in the Lemon OS open source. A security vulnerability exists in LemonOS nightly-2024-07-12 and earlier versions, which stems from a stack buffer overflow due to incorrect manipulation of the parameter chunkSize in the file /Applications/Steal/main.cpp...
CVE-2024-41217
A heap-based buffer overflow in tsMuxer version nightly-2024-05-10-02-00-45 allows attackers to cause Denial of Service DoS via a crafted MKV video file...
CVE-2024-49777
A heap-based buffer overflow in tsMuxer version nightly-2024-03-14-01-51-12 allows attackers to cause Denial of Service DoS, Information Disclosure and Code Execution via a crafted MKV video file...
CVE-2024-41209
A heap-based buffer overflow in tsMuxer version nightly-2024-03-14-01-51-12 allows attackers to cause Denial of Service DoS and Code Execution via a crafted MOV video file...
tsMuxer 安全漏洞
tsMuxer is a transport stream multiplexer for remixing/multiplexing elementary streams by Dan's personal developer. A security vulnerability exists in version tsMuxer nightly-2024-03-14-01-51-12, which stems from the inclusion of a buffer overflow issue. An attacker exploiting this vulnerability...
PT-2024-33684
Name of the Vulnerable Software and Affected Versions: tsMuxer version nightly-2024-04-05-01-53-02 Description: The issue allows attackers to cause Denial of Service DoS via a crafted TS video file. This is due to a negative-size-param in the affected version of tsMuxer. Recommendations: For...
tsMuxer 安全漏洞
tsMuxer is a transport stream multiplexer for remixing/multiplexing elementary streams by Dan's personal developer. A security vulnerability exists in version tsMuxer nightly-2024-03-14-01-51-12, which stems from the inclusion of a buffer overflow issue. An attacker could cause a denial of servic...
PT-2024-35398 · Tsmuxer · Tsmuxer
Name of the Vulnerable Software and Affected Versions: tsMuxer version nightly-2024-05-12-02-01-18 Description: A heap-based buffer under-read in tsMuxer allows attackers to cause Denial of Service DoS via a crafted MOV video file. This issue may also allow attackers to remotely crash the...
CVE-2024-39132
A NULL Pointer Dereference vulnerability in DumpTS v0.1.0-nightly allows attackers to cause a denial of service via the function VerifyCommandLine at /src/DumpTS.cpp...
Odoo 12.0.20190101 - 'nssm.exe' Unquoted Service Path
Exploit Title: Odoo 12.0.20190101 - 'nssm.exe' Unquoted Service Path Exploit Author: 1F98D Vendor Homepage: https://www.odoo.com/ Software Link: https://nightly.odoo.com/12.0/nightly/windows/odoo12.0.20190101.exe Tested Version: 12.0.20190101 Tested on OS: Windows Step to discover Unquoted Servic...
4cdl (>=1.0.1 <=1.0.7), 77cli (>=0.0.10 <=0.0.12) +364 more potentially affected by CVE-2018-15685 via electron (>=2.0.0 <=2.0.8-nightly.20180820)
electron NPM version =2.0.0, =1.0.1, =0.0.10, =3.0.5, =0.1.0, =1.0.0, =0.0.2, =0.0.1, =1.0.2, =0.0.1, =1.1.0, =0.0.1, =0.0.5 and more Source cves: CVE-2018-15685 Source advisory: OSV:GHSA-HV9C-QWQG-QJ3V...
Apple WebKit - RenderLayer Use-After-Free Exploit
Exploit for multiple platform in category dos / poc function go div.style.setProperty"-webkit-flow-into", "foo"; document.execCommand"fontSize", false, 6; window.requestAnimationFramecb; h1.attachShadowmode: "open"; h1.replaceWith"foo"; function cb var a; //trigger garbage collector forvar i=0;i...
WebKit: HTMLInputElement use-after-free (CVE-2017-2454)
There is a use-after-free security vulnerability related to how the HTMLInputElement is handled in WebKit. The vulnerability was confirmed on a nightly build of WebKit. The PoC also crashes Safari 10.0.2 on Mac. PoC: function eventhandler1 input.type = "foo"; function eventhandler2...
Apple WebKit 10.0.2 - HTMLInputElement Use-After-Free
function eventhandler1 input.type = "foo"; function eventhandler2 input.selectionStart = 25; !-- ================================================================= ASAN log from WebKit nightly on Mac: ================================================================= ==26782==ERROR: AddressSanitize...
Mozilla Firefox Bootstrapped Addon Social Engineering Code Execution
Mozilla Firefox before version 41 allowed users to install unsigned browser extensions from arbitrary web servers. This module dynamically creates an unsigned .xpi addon file. The resulting bootstrapped Firefox addon is presented to the victim via a web page. The victim's Firefox browser will pop...
JVN#26621646 EC-CUBE cross-site scripting vulnerability
EC-CUBE from LOCKON CO.,LTD. is an open source system for creating shopping websites. EC-CUBE contains a cross-site scripting vulnerability. This vulnerability is different from JVN61543834, JVN36085487, and JVN99916563. Impact An arbitrary script could be executed on the user's web browser...
JVN#99916563 EC-CUBE cross-site scripting vulnerability
EC-CUBE from LOCKON CO.,LTD. is an open source system for creating shopping websites. EC-CUBE contains a cross-site scripting vulnerability. This vulnerability is different from JVN61543834, JVN26621646, and JVN36085487. Impact An arbitrary script could be executed on the user's web browser...