35 matches found
gstreamer1 -- multiple vulnerabilities
The GStreamer project reports multiple security vulnerabilities fixed in the 1.28.3 release: Six security vulnerabilities were addressed, including: Bounds check errors in MXF VANC packet handling. Use-after-free in GStreamer core buffer value deserialization. Out-of-bounds read in MXF demuxer...
Malicious code in @pes-ui/components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c86f728ffc679c2767dd34f810c998e9e7fa49098d757ee8a3ba6b050f1754f The package @pes-ui/components was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview @pes-ui/components is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-2591 Malicious code in @pes-ui/components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c86f728ffc679c2767dd34f810c998e9e7fa49098d757ee8a3ba6b050f1754f The package @pes-ui/components was found to contain malicious code. Source: ghsa-malware...
OSV-2025-970 Heap-buffer-overflow in check_sync_pes
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=465802762 Crash type: Heap-buffer-overflow READ Crash state: checksyncpes Demux demuxprocessstream...
EUVD-2017-3067
Malware in sbrugna...
EUVD-2025-31083
Malicious code in bioql PyPI...
CVE-2025-10947
A flaw has been found in Sistemas Pleno Gestão de Locação up to 2025.7.x. The impacted element is an unknown function of the file /api/areacliente/pessoa/validarCpf of the component CPF Handler. Executing a manipulation of the argument pescpf can lead to authorization bypass. The attack can be...
OSV-2025-613 Heap-buffer-overflow in check_sync_pes
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=437653047 Crash type: Heap-buffer-overflow READ Crash state: checksyncpes Demux demuxprocessstream...
pes-systems.net Improper Access Control vulnerability OBB-3860178
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Windiff - Web-based Tool That Allows Comparing Symbol, Type And Syscall Information Of Microsoft Windows Binaries Across Different Versions Of The OS
WinDiff is an open-source web-based tool that allows browsing and comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the operating system. The binary database is automatically updated to include information from the latest Windows updates...
PES Pro CMS 1.9.7 Add Administrator
==================================================================================================================================== | Title : PES Pro CMS - v1.9.7 Reinstall add admin Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro | | Vendor :...
SUSE CVE-2017-11446
The ReadPESImage function in coders\pes.c in ImageMagick 7.0.6-1 has an infinite loop vulnerability that can cause CPU exhaustion via a crafted PES file...
SUSE CVE-2017-12433
In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadPESImage in coders/pes.c, which allows attackers to cause a denial of service, related to ResizeMagickMemory in memory.c...
pes-publications.ee.ethz.ch Cross Site Scripting vulnerability OBB-2157476
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
PES Pro 1.9.7 Authentication Bypass
==================================================================================================================================== | Title : PES Pro - v1.9.7 Reinstall add admin Vulnerability | | Author : indoushka | | Telegram : @indoushka | | Tested on : windows 10 FranASSais V.Pro | | Vendor...
pes-portal.sk XSS vulnerability
Open Bug Bounty ID: OBB-448821 Description| Value ---|--- Affected Website:| pes-portal.sk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Denial Of Service (DoS) Through Memory Leak
ImageMagick is vulnerable to memory leaks. Malicious users can launch the attack by passing a malicious PES file to ReadPESImage in coders/pes.c...
DEBIAN-CVE-2017-12433
In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadPESImage in coders/pes.c, which allows attackers to cause a denial of service, related to ResizeMagickMemory in memory.c...
UBUNTU-CVE-2017-12433
In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadPESImage in coders/pes.c, which allows attackers to cause a denial of service, related to ResizeMagickMemory in memory.c...