Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound through the lybreadstring function in src/parserlyb.c when parsing a specially crafted LYB binary blob. An attacker can cause a crash or corrupt the heap by supplying malicious LYB data to a consumer of th...

CVE-2026-7687

LangFlow (langflow) up to version 1.8.4 is affected by a command-injection vulnerability in CodeParser.parse_callable_details (file src/lfx/src/lfx/custom/code_parser/code_parser.py, component Full Builtins Module Handler). The issue can be triggered remotely and an exploit has been publicly disc...

PT-2025-51336

Name of the Vulnerable Software and Affected Versions CTCMS Content Management System versions up to 2.1.2 Description A weakness exists in CTCMS Content Management System up to version 2.1.2. This issue affects an unknown function within the /ctcms/apps/libraries/CT Parser.php library of the...

EUVD-2025-24147

Malicious code in bioql PyPI...

CVE-2025-11012

A vulnerability was determined in BehaviorTree up to 4.7.0. This affects the function ParseScript of the file /src/scriptparser.cpp of the component Diagnostic Message Handler. Executing manipulation of the argument errormsgsbuffer can lead to stack-based buffer overflow. The attack can only be...

AZL-66288 CVE-2025-8846 affecting package nasm 2.16-1

A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected is the function parseline of the file parser.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used...

CVE-2025-8846

A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected is the function parseline of the file parser.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used...

CVE-2025-8846 NASM Netwide Assember parser.c parse_line stack-based overflow

A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected is the function parseline of the file parser.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used...

CVE-2025-8846 NASM Netwide Assember parser.c parse_line stack-based overflow

A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected is the function parseline of the file parser.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used...

CVE-2025-8846

CVE-2025-8846 affects NASM Netwide Assembler 2.17rc0, specifically the parse_line function in parser.c. It enables a stack-based buffer overflow via a local exploit. The vulnerability impact is described as high in CVSS metrics (local access, high confidentiality/integrity/availability impact). A...

CVE-2025-8846

A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected is the function parseline of the file parser.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the InsertNodeAsParent function in parser.c. An attacker can cause a crash and denial of service by triggering a null pointer dereference through local access. Remediation There is no fixed version for...

HTACG HTML Tidy 安全漏洞

HTACG HTML Tidy is an open source HTML tool from HTML Tidy Advocacy Community Group. A security vulnerability exists in HTACG HTML Tidy version 5.8.0 due to a null pointer dereference in the function InsertNodeAsParent in the file src/parser.c. The vulnerability is caused by the presence of a nul...

PT-2025-7595 · Libming · Libming

Name of the Vulnerable Software and Affected Versions: libming version 0.4.8 Description: A memory leak has been identified in the parseSWF EXPORTASSETS function in util/parser.c of libming. Recommendations: For libming version 0.4.8, consider disabling the parseSWF EXPORTASSETS function as a...

PT-2025-32541 · Unknown +1 · Nasm Netwide Assembler +1

Name of the Vulnerable Software and Affected Versions: NASM Netwide Assembler version 2.17rc0 Description: A stack-based buffer overflow exists in the parse line function within the parser.c file. The issue is locally exploitable and has been publicly disclosed. Recommendations: At the moment,...

PrestaShop Security Breach

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution offers multiple payment methods, short message alerts and product image scaling. PrestaShop boninstagramcarousel v5.2.1 version to v7.0.0 prior to the version of a security vulnerability , th...

CVE-2023-36239

libming listswf 0.4.7 was discovered to contain a buffer overflow in the parseSWFDEFINEFONTINFO function at parser.c...

PT-2023-24440 · Nanomq · Nanomq

Name of the Vulnerable Software and Affected Versions: NanoMQ version 0.17.2 Description: A heap buffer overflow issue exists, which can be triggered by calling the function copyn str in the file mqtt parser.c. This can lead to a denial of service attack. Recommendations: For NanoMQ version 0.17....

DEBIAN-CVE-2023-2789

A vulnerability was found in GNU cflow 1.7. It has been rated as problematic. This issue affects the function funcbody/parsevariabledeclaration of the file parser.c. The manipulation leads to denial of service. The exploit has been disclosed to the public and may be used. The identifier VDB-22937...

CVE-2021-31240

An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWFIMPORTASSETS function in the parser.c file...