CVE-2023-31910

Jerryscript 3.0 commit 05dbbd1 was discovered to contain a heap-buffer-overflow via the component parserparsefunctionstatement at /jerry-core/parser/js/js-parser-statm.c...

EUVD-2019-6985

Malware in sbrugna...

EUVD-2014-3980

Malicious code in bioql PyPI...

EUVD-2025-29237

Malicious code in bioql PyPI...

PT-2025-39387

Name of the Vulnerable Software and Affected Versions EmbedVideo Extension versions prior to 4.0.0 Description The EmbedVideo Extension for MediaWiki, which includes a parser function called ev and parser tags for embedding video clips, contains a flaw. Versions 4.0.0 and earlier permit the...

CVE-2025-59332

3DAlloy is a lightWeight 3D-viewer for MediaWiki. From 1.0 through 1.8, the parser tag and the 3d parser function allow users to provide custom attributes that are then appended to the canvas HTML element that is being output by the extension. The attributes are not sanitized, which means that...

CVE-2025-59332 3DAlloy allows stored XSS through attributes provided to the 3d parser tag/function

3DAlloy is a lightWeight 3D-viewer for MediaWiki. From 1.0 through 1.8, the parser tag and the 3d parser function allow users to provide custom attributes that are then appended to the canvas HTML element that is being output by the extension. The attributes are not sanitized, which means that...

Linux Distros Unpatched Vulnerability : CVE-2020-23320

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is an Assertion in 'contextp-nextscannerinfop-type == SCANNERTYPEFUNCTION' in parserparsefunctionarguments in JerryScript 2.2.0. CVE-2020-23320 Note that...

CVE-2025-6497

CVE-2025-6497 affects HTACG tidy-html5 5.8.0. The vulnerability targets the function prvTidyParseNamespace in src/parser.c , with manipulation leading to a reachable assertion. Reports indicate a local attack vector and that the exploit has been disclosed publicly. Some sources classify exploit m...

CVE-2021-42040

An issue was discovered in MediaWiki through 1.36.2. A parser function related to loop control allowed for an infinite loop and php-fpm hang within the Loops extension because egLoopsCountLimit is mishandled. This could lead to memory exhaustion...

Denial Of Service (DoS)

Libming is vulnerable to Denial Of Service DoS. The vulnerability is due to improper memory management due to the parseSWFDEFINESCENEANDFRAMEDATA function in util/parser.c failing to release allocated memory, allowing attackers to cause a denial of service via a crafted SWF file...

CVE-2024-35328

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

tftpy 安全漏洞

tftpy is a Python library by the individual developer Michael P. Soulier. A security vulnerability exists in tftpy. A remote attacker can exploit this vulnerability to cause a denial of service via a parser function in the TftpPacketFactory class...

URLite Security Vulnerabilities

URLite is a very small, fast, dependency-free url parser and formatter for Nodejs and the Web. A security vulnerability exists in URLite version v.3.1.0, which stems from a vulnerability that allows an attacker to cause a denial of service DoS via a crafted payload to the parser function...

CVE-2023-46256

PX4-Autopilot provides PX4 flight control solution for drones. In versions 1.14.0-rc1 and prior, PX4-Autopilot has a heap buffer overflow vulnerability in the parser function due to the absence of parserbufindex value checking. A malfunction of the sensor device can cause a heap buffer overflow...

Heap overflow

PX4-Autopilot provides PX4 flight control solution for drones. In versions 1.14.0-rc1 and prior, PX4-Autopilot has a heap buffer overflow vulnerability in the parser function due to the absence of parserbufindex value checking. A malfunction of the sensor device can cause a heap buffer overflow...

CVE-2023-46256

CVE-2023-46256 affects PX4-Autopilot (versions 1.14.0-rc1 and prior). The vulnerability is a heap buffer overflow in the parser function caused by missing validation of the parserbuf_index, allowing writes up to the maximum unsigned int to heap memory. This can lead to unexpected drone behavior, ...

CVE-2023-46256 PX4-Autopilot Heap Buffer Overflow Bug

PX4-Autopilot provides PX4 flight control solution for drones. In versions 1.14.0-rc1 and prior, PX4-Autopilot has a heap buffer overflow vulnerability in the parser function due to the absence of parserbufindex value checking. A malfunction of the sensor device can cause a heap buffer overflow...

CVE-2023-46256 PX4-Autopilot Heap Buffer Overflow Bug

PX4-Autopilot provides PX4 flight control solution for drones. In versions 1.14.0-rc1 and prior, PX4-Autopilot has a heap buffer overflow vulnerability in the parser function due to the absence of parserbufindex value checking. A malfunction of the sensor device can cause a heap buffer overflow...

CVE-2023-46256 PX4-Autopilot Heap Buffer Overflow Bug

PX4-Autopilot provides PX4 flight control solution for drones. In versions 1.14.0-rc1 and prior, PX4-Autopilot has a heap buffer overflow vulnerability in the parser function due to the absence of parserbufindex value checking. A malfunction of the sensor device can cause a heap buffer overflow...