CVE-2023-54328

AimOne Video Converter 2.04 Build 103 contains a buffer overflow vulnerability in its registration form that causes application crashes. Attackers can generate a 7000-byte payload to trigger the denial of service and potentially exploit the software's registration mechanism...

EUVD-2003-1242

Malware in sbrugna...

EUVD-2008-6804

Malware in sbrugna...

EUVD-2024-32139

Malicious code in bioql PyPI...

CVE-2015-10143

The Platform theme for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ajaxsaveoptions function in all versions up to 1.4.4 exclusive. This makes it possible for unauthenticated attackers to update arbitra...

CVE-2025-2266

The Checkout Mestres do WP for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the cwmpUpdateOptions function in versions 8.6.5 to 8.7.5. This makes it possible for unauthenticated...

CVE-2024-2409

The MasterStudy LMS plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 3.3.1. This is due to insufficient validation checks within the registeruser function called by the 'wpajaxnoprivstmlmsregister' AJAX action. This makes it possible for...

CVE-2017-16666

Xplico before 1.2.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the name of an uploaded PCAP file. NOTE: this issue can be exploited without authentication by leveraging the user registration feature...

TinyPHPForum 3.61 Disclosure / Code Execution

=============================================================================================== Found : brainpillow Dork : "Powered by TinyPHPForum v3.61" Visit : brainpillow.cc, forum.antichat.ru, raz0r.name Mail : [email protected]...

fishyshoop-vuln.txt

Synopsis ======== The Fishyshoop shopping cart software contains a vulnerability which allows arbitrary users to create accounts with administrator privileges Background ========== Fishyshoop is a suite of PHP scripts allowing anybody to create an attractive online store. Affected Versions...

phpBB 2.0.15 - Register Multiple Users (Denial of Service) (C)

phpBB 2.0.15 - Register Multiple Users Denial of Service C / -------------------------------------------------------- Neo Security Team NST® - Advisory 15 - 00/00/06 -------------------------------------------------------- Program: phpBB 2.0.15 Homepage: http://www.phpbb.com Vulnerable Versions:...

S8Forum 3.0 - Remote Command Execution

S8Forum 3.0 - Remote Command Execution source: https://www.securityfocus.com/bid/6547/info S8Forum is prone to a remote command execution vulnerability. When a user registers with the forum, a file is created locally with the specified username. The contents of this file will be the data entered ...

PHP-Nuke 5.0 - 'user.php' Form Element Substitution

source: https://www.securityfocus.com/bid/3107/info PHP-Nuke is a website creation/maintenance tool written in PHP3. If a malicious user may subtitute arbitrary values for image form elements in the PHP-Nuke User Registration Form by saving the webpage locallyas 'user.php.html' and altering the...