CVE-2025-14418

pdfforge PDF Architect XLS File Insufficient UI Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of pdfforge PDF Architect. User interaction is required to exploit this vulnerability in that the target must...

CVE-2025-14402

PDFsam Enhanced DOC File Insufficient UI Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDFsam Enhanced. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2025-14404

PDFsam Enhanced XLS File Insufficient UI Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDFsam Enhanced. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2025-14402

PDFsam Enhanced DOC File Insufficient UI Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDFsam Enhanced. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2025-14416 pdfforge PDF Architect DOC File Insufficient UI Warning Remote Code Execution Vulnerability

pdfforge PDF Architect DOC File Insufficient UI Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of pdfforge PDF Architect. User interaction is required to exploit this vulnerability in that the target must...

CVE-2025-14404

PDFsam Enhanced XLS File Insufficient UI Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDFsam Enhanced. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2025-14404

CVE-2025-14404 affects PDFsam Enhanced, where the flaw lies in the processing of XLS files. The root cause is the execution of dangerous scripts without a user warning, allowing a remote attacker to run arbitrary code in the context of the current user. Exploitation requires user interaction (the...

CVE-2025-14402

CVE-2025-14402 affects PDFsam Enhanced. The issue is in DOC file processing, where dangerous scripts can execute without user warning, enabling remote code execution in the current user context. User interaction is required (e.g., visiting a malicious page or opening a malicious file). Root cause...

EUVD-2023-60246

SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user consent. Attackers can craft malicious web pages that submit HTTP requests to the radio processing interface, triggering unintended...

PDFsam Enhanced 缓冲区错误漏洞

PDFsam Enhanced is a PDF editing and management tool from PDFsam, Inc. PDFsam Enhanced suffers from a buffer error vulnerability that stems from a lack of validation of user-supplied data when processing App objects, which could lead to out-of-bounds reads and remote code execution...

Soda PDF Desktop 安全漏洞

Soda PDF Desktop is a professional PDF processing software that integrates reading, editing, creating, converting and managing PDF documents. Soda PDF Desktop suffers from a code execution vulnerability that stems from allowing dangerous scripts to be executed when processing Word files without...

PT-2025-52757

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists within the veth module when handling XDP eXpress Data Path with no direct return frames. Specifically, the issue arises from concurrent calls to veth pool in...

PDFsam Enhanced 安全漏洞

PDFsam Enhanced is a PDF editing and management tool from PDFsam, Inc. A security vulnerability exists in PDFsam Enhanced that stems from processing DOC files in a way that allows execution of dangerous scripts without user warnings, which could lead to remote code execution...

Pdfforge Pdf Architect 安全漏洞

Pdfforge Pdf Architect is a solution for viewing and editing PDF documents from Pdfforge. A security vulnerability exists in Pdfforge Pdf Architect that stems from the processing of DOC files that allows the execution of dangerous scripts without user warnings, which could lead to remote code...

CVE-2023-53981

PhotoShow 3.0 contains a remote code execution vulnerability that allows authenticated administrators to inject malicious commands through the exiftran path configuration. Attackers can exploit the ffmpeg configuration settings by base64 encoding a reverse shell command and executing it through a...

CVE-2025-34457

CVE-2025-34457 affects wb2osz/direwolf (Dire Wolf) up to version 1.8, prior to commit 694c954. The issue is a stack-based buffer overflow in the function kiss_rec_byte() in src/kiss_frame.c when processing frames at MAX_KISS_LEN; it appends a terminating FEND byte without reserving space, causing...

webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash

A flaw was found in WebKitGTK. Processing malicious web content can cause JIT issues due to improper checks and result in an unexpected process crash...

SUSE CVE-2025-34449

Genymobile/scrcpy versions up to and including 3.3.3, prior to commit 3e40b24, contain a buffer overflow vulnerability in the scdevicemsgdeserialize function. A compromised device can send crafted messages that cause out-of-bounds reads, which may result in memory corruption or a denial-of-servic...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: libpng (UTSA-2025-991297)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991297 advisory. LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From version 1.6.0 to befor...

webkit2gtk3 security update

An update is available for webkit2gtk3. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list WebKitGTK is the port of the portable web rendering engine WebKit to the...