PT-2025-1225 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an uncontrolled resource consumption vulnerability in the upnphost.dll library of the Windows operating system. This can be exploited by a remote attacker to cause a...

PT-2024-33357 · Unknown · Cookie Scanner

Name of the Vulnerable Software and Affected Versions: Cookie Scanner versions 1.1 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that also allows Stored XSS in Cookie Scanner. This means an attacker can perform unintended actions on a user's account without...

PT-2024-39030 · Unknown · Phpgurukul Job Portal

Name of the Vulnerable Software and Affected Versions: PHPGurukul Job Portal version 1.0 Description: The issue is a file upload restriction bypass vulnerability, which could allow an authenticated user to execute a Remote Code Execution RCE via webshell. Recommendations: For PHPGurukul Job Porta...

PT-2024-29474 · Unknown · Neuq Board

Name of the Vulnerable Software and Affected Versions: NEUQ board version 1.0 Description: A Buffer Overflow issue in the password.h component allows a remote attacker to cause a denial of service. Recommendations: For NEUQ board version 1.0, consider restricting access to the password.h componen...

PT-2024-21680 · Toshiba · Toshiba Printers

Name of the Vulnerable Software and Affected Versions: Toshiba printers affected versions not specified Description: The issue concerns a Local Privilege Escalation vulnerability, allowing an attacker to remotely compromise Toshiba printers. Recommendations: At the moment, there is no information...

PT-2024-4671 · NetGear · Netgear Wnr614

Name of the Vulnerable Software and Affected Versions: Netgear WNR614 version JNR1010V2/N300-V1.1.0.54 1.0.1 Description: The issue is related to insecure permissions in the Netgear WNR614 router's firmware, which can allow attackers to access URLs and directories embedded within the firmware via...

PT-2024-6490

Name of the Vulnerable Software and Affected Versions Ffmpeg version N113007-g8d24a28d06 Description The issue is related to a buffer overflow vulnerability in the libavfilter/af stereowiden.c file of the FFmpeg library. This vulnerability can be exploited by a local attacker to execute arbitrary...

PT-2024-21781 · Ibm · Ibm Integration Bus For Z/Os

Name of the Vulnerable Software and Affected Versions: IBM Integration Bus for z/OS versions 10.1 through 10.1.0.3 Description: The issue is related to cross-site request forgery, which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website...

PT-2024-12440 · Splicecom · Splicecom Maximiser Soft Pbx

Name of the Vulnerable Software and Affected Versions: SpliceCom Maximiser Soft PBX versions 1.5 and before Description: The issue allows attackers to bypass authentication via a brute force attack due to the lack of restriction on excessive authentication attempts. Recommendations: For SpliceCom...

PT-2023-7497 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based affected versions not specified Description: The vulnerability is related to insufficient input validation in Microsoft Edge, allowing a remote attacker to bypass security restrictions and elevate their privilege...

PT-2023-3119 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to errors in the representation of information by the user interface in the Windows DNS service. This can allow a remote attacker to conduct spoofing attacks...

PT-2023-16329 · WordPress · Enable/Disable Auto Login When Register

Name of the Vulnerable Software and Affected Versions: Enable/Disable Auto Login when Register WordPress plugin versions 1.1.0 and earlier Description: The issue concerns a lack of CSRF check when updating settings in the Enable/Disable Auto Login when Register WordPress plugin. This could allow...

PT-2021-10979 · Speex +1 · Speex +1

Name of the Vulnerable Software and Affected Versions: Speex version 1.2 Description: A stack buffer overflow in speexenc.c allows attackers to cause a denial of service DoS via a crafted WAV file. The vendor states that the issue cannot be reproduced and that it is a demo program. Recommendation...

PT-2023-15459 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC MP4box version 2.1-DEV-rev649-ga8f438d20 Description: The issue is related to a buffer overflow in the h263dmx process function, specifically in the reframe h263.c file at line 609. This buffer overflow occurs in the h263dmx process...