PT-2026-6546

Name of the Vulnerable Software and Affected Versions Quick.Cart version 6.7 Quick.Cart affected versions not specified Description A user's session identifier can be set before authentication in Quick.Cart. The session ID remains consistent even after authentication, allowing an attacker to fixa...

OpenSolution Quick.Cart 安全漏洞

OpenSolution Quick.Cart is an online store system developed by the Polish company OpenSolution. Version 6.7 of OpenSolution Quick.Cart contains a security vulnerability, which stems from storing user passwords in plaintext. This vulnerability could allow privileged attackers to access user...

OpenSolution Quick.Cart 授权问题漏洞

OpenSolution Quick.Cart is an online store system developed by the Polish company OpenSolution. Version 6.7 of OpenSolution Quick.Cart contains an authorization vulnerability. This vulnerability stems from the fact that session identifiers can be set before authentication and remain unchanged...

CVE-2026-23105

In the Linux kernel, the following vulnerability has been resolved: net/sched: qfq: Use clisactive to determine whether class is active in qfqrmfromag This is more of a preventive patch to make the code more consistent and to prevent possible exploits that employ child qlen manipulations on qfq...

WordPress ACF Quick Edit Fields plugin <= 3.2.2 - Authenticated (Contributor+) Insecure Direct Object Reference vulnerability

Authenticated Contributor+ Insecure Direct Object Reference vulnerability discovered by Chris Grello in WordPress Plugin ACF Quick Edit Fields versions = 3.2.2...

CVE-2025-69875

A vulnerability exists in Quick Heal Total Security 23.0.0 in the quarantine management component where insufficient validation of restore paths and improper permission handling allow a low-privileged local user to restore quarantined files into protected system directories. This behavior can be...

CVE-2025-69875

A vulnerability exists in Quick Heal Total Security 23.0.0 in the quarantine management component where insufficient validation of restore paths and improper permission handling allow a low-privileged local user to restore quarantined files into protected system directories. This behavior can be...

CVE-2025-69875

CVE-2025-69875 – Quick Heal Total Security 23.0.0 (quarantine management) : The issue is insufficient validation of restore paths and improper permission handling, allowing a low-privileged local user to restore quarantined files into protected system directories, potentially enabling privilege e...

EUVD-2025-206708

A vulnerability exists in Quick Heal Total Security 23.0.0 in the quarantine management component where insufficient validation of restore paths and improper permission handling allow a low-privileged local user to restore quarantined files into protected system directories. This behavior can be...

CVE-2025-69875

A vulnerability exists in Quick Heal Total Security 23.0.0 in the quarantine management component where insufficient validation of restore paths and improper permission handling allow a low-privileged local user to restore quarantined files into protected system directories. This behavior can be...

EUVD-2020-30931

Quick Player 1.3 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious .m3l file with carefully constructed payload. Attackers can trigger the vulnerability by loading a specially crafted file through the application's file loading...

CVE-2020-37050 Quick Player 1.3 - '.m3l' Buffer Overflow

Quick Player 1.3 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious .m3l file with carefully constructed payload. Attackers can trigger the vulnerability by loading a specially crafted file through the application's file loading...

CVE-2020-37050

Quick Player 1.3 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious .m3l file with carefully constructed payload. Attackers can trigger the vulnerability by loading a specially crafted file through the application's file loading...

CVE-2020-37050

Consolidated view: Quick Player 1.3 is affected by a buffer overflow in the .m3l file loading path, enabling potential remote code execution when a specially crafted file is loaded. Affected component/file: Quick Player 1.3 (buffer overflow in .m3l handling). Root cause: improper handling of craf...

CVE-2020-37050 Quick Player 1.3 - '.m3l' Buffer Overflow

Quick Player 1.3 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious .m3l file with carefully constructed payload. Attackers can trigger the vulnerability by loading a specially crafted file through the application's file loading...

PT-2026-5487

Name of the Vulnerable Software and Affected Versions Quick Player version 1.3 Description The software contains a buffer overflow issue that allows for the execution of arbitrary code. This is achieved by creating a malicious .m3l file with a specifically designed payload. Attackers can trigger...

Quick Player security vulnerability

Quick Player is a video playback application developed by Quick Player Inc. Version 1.3 of Quick Player contains a security vulnerability, which stems from a buffer overflow when loading specially crafted .m3l files, potentially allowing for the execution of arbitrary code...

CVE-2025-7013

Authorization Bypass Through User-Controlled Key vulnerability in QR Menu Pro Smart Menu Systems Menu Panel allows Exploitation of Trusted Identifiers. This issue affects Menu Panel: through 29012026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way...

EUVD-2025-206544

Session Fixation vulnerability in QR Menu Pro Smart Menu Systems Menu Panel allows Session Hijacking.This issue affects Menu Panel: through 29012026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way...

CVE-2025-7015

CVE-2025-7015 is described as a Session Fixation vulnerability affecting the QR Menu feature of Akın Software Computer Import Export Industry and Trade Ltd., with impact stated for versions prior to s1.05.12. The connected sources generally indicate this flaw in the QR Menu component but do not p...