EUVD-2026-25978

A vulnerability was found in TencentCloudBase CloudBase-MCP up to 2.17.0. Affected is the function openUrl of the file mcp/src/interactive-server.ts of the component open-url API Endpoint. The manipulation of the argument req.body.url results in server-side request forgery. It is possible to laun...

[ASA-202103-2] wireshark-qt: arbitrary code execution

Arch Linux Security Advisory ASA-202103-2 ========================================= Severity: Medium Date : 2021-03-13 CVE-ID : CVE-2021-22191 Package : wireshark-qt Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-1669 Summary ======= The package wireshark-q...

Arbitrary Code Execution

wireshark is vulnerable to arbitrary code execution. The vulnerability exists through some fields in the Wireshark prototree that are double-clickable and passes URLs with arbitrary schemes to the QDesktopServices::openUrl function...

Nextcloud: Nextcloud Desktop Client RCE via malicious URI schemes

Nextcloud Desktop utilizes QT's QDesktopServices::openUrl to open URLs. This function invokes the OS'/Desktop environment's default application to handling the URI scheme and file extension. During the Nextcloud Add Account flow, the server's login website is opened within a native window/WebView...

Path traversal

It was discovered that snapctl user-open allowed altering the $XDGDATADIRS environment variable when calling the system xdg-open. OpenURL in usersession/userd/launcher.go would alter $XDGDATADIRS to append a path to a directory controlled by the calling snap. A malicious snap could exploit this t...

UBUNTU-CVE-2020-11934

It was discovered that snapctl user-open allowed altering the $XDGDATADIRS environment variable when calling the system xdg-open. OpenURL in usersession/userd/launcher.go would alter $XDGDATADIRS to append a path to a directory controlled by the calling snap. A malicious snap could exploit this t...

LastPass Patches Ormandy Remote Compromise Flaw

LastPass has patched a vulnerability in its Firefox add-on found by Google Project Zero researcher Tavis Ormandy that allows attackers complete remote compromise of the password manager, . The divisive Ormandy submitted a bug report on Tuesday to LastPass after a series of tweets hinting at serio...

GOM Player ActiveX Control Buffer Overflow

No description provided by source. $Id: gomopenurl.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Design/Logic Flaw

The system.openURL function in StoneTrip Ston3D StandalonePlayer aka S3DPlayer StandAlone 1.6.2.4 and 1.7.0.1 and WebPlayer aka S3DPlayer Web 1.6.0.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the first argument the sURL argument...

VulnCheck KEV: CVE-2007-5779

Buffer overflow in the GomManager GomWeb Control ActiveX control in GomWeb3.dll 1.0.0.12 in Gretech Online Movie Player GOM Player 2.1.6.3499 allows remote attackers to execute arbitrary code via a long argument to the OpenUrl method...

Buffer overflow

Buffer overflow in the GomManager GomWeb Control ActiveX control in GomWeb3.dll 1.0.0.12 in Gretech Online Movie Player GOM Player 2.1.6.3499 allows remote attackers to execute arbitrary code via a long argument to the OpenUrl method...

GOM Player 2.1.6.3499 - GomWeb3.dll 1.0.0.12 Remote Overflow

GOM Player 2.1.6.3499 - GomWeb3.dll 1.0.0.12 Remote Overflow //open calc.exe scode = unescape"%eb%03%59%eb%05%e8%f8%ff%ff%ff%4f%49%49%49%49%49" & unescape"%49%51%5a%56%54%58%36%33%30%56%58%34%41%30%42%36" & unescape"%48%48%30%42%33%30%42%43%56%58%32%42%44%42%48%34" &...

GOM Player 2.1.6.3499 (GomWeb3.dll 1.0.0.12) Remote Overflow Exploit

Exploit for unknown platform in category remote exploits ==================================================================== GOM Player 2.1.6.3499 GomWeb3.dll 1.0.0.12 Remote Overflow Exploit ==================================================================== //open calc.exe scode =...