3 matches found
EUVD-2025-200234
Stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. The 'ShowDownload' function uses “sprintf” to format a string that includes the user-controlled input of 'GetParametermeter' in the fixed-size buffer 'acStack4c' 64 bytes without checking the length. An attacker c...
PT-2025-48672
Name of the Vulnerable Software and Affected Versions Circutor SGE-PLC1000/SGE-PLC50 version 9.0.2 Description A stack-based buffer overflow exists in the software due to insufficient bounds checking when handling user-supplied input. The ShowDownload function utilizes sprintf to format a string,...
Arbitrary File Download Vulnerability in ShowDownload Function of Tibco Call Center System
The core of Tibco's call center system is a communication-based system for internal and external corporate communication. An arbitrary file download vulnerability exists in the showDownload function of the Tibco Call Center System. The vulnerability file is: /userweb/php/index/log.class.php, whic...