Lucene search
K

918 matches found

OSV
OSV
added 2026/02/07 12:15 a.m.5 views

CVE-2020-37161

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the registration name field with malicious payload. Attackers can craft a specially designed payload to trigger remote code execution, demonstrating the ability to...

9.8CVSS6.5AI score0.0087EPSS
Exploits1References3
NVD
NVD
added 2026/02/07 12:15 a.m.6 views

CVE-2020-37161

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the registration name field with malicious payload. Attackers can craft a specially designed payload to trigger remote code execution, demonstrating the ability to...

9.8CVSS0.0087EPSS
Exploits1References3
NVD
NVD
added 2026/02/07 12:15 a.m.6 views

CVE-2020-37162

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...

9.8CVSS0.00655EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/02/07 12:0 a.m.10 views

Wedding Slideshow Studio 安全漏洞

Wedding Slideshow Studio is a wedding photo and video editing software developed by the Wedding Slideshow Studio company. Version 1.36 of Wedding Slideshow Studio contains a security vulnerability; this vulnerability stems from a buffer overflow in the registration name field, which could allow f...

9.8CVSS6.3AI score0.0087EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/02/07 12:0 a.m.7 views

Wedding Slideshow Studio 安全漏洞

Wedding Slideshow Studio is a wedding photo and video editing software developed by the Wedding Slideshow Studio company. Version 1.36 of Wedding Slideshow Studio contains a security vulnerability; this vulnerability stems from a buffer overflow issue in the registration key input process, which...

9.8CVSS6.3AI score0.00655EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/02/06 11:14 p.m.3 views

CVE-2020-37162 Wedding Slideshow Studio 1.36 - 'Key' Buffer Overflow

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...

9.8CVSS6.7AI score0.00655EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/02/06 11:14 p.m.5 views

CVE-2020-37162

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...

9.8CVSS6.4AI score0.00655EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/02/06 11:14 p.m.14 views

CVE-2020-37162

CVE-2020-37162 affects Wedding Slideshow Studio 1.36. The vulnerability is a stack-based buffer overflow in the registration key input. An attacker who has local access can craft a 1608-byte payload to overwrite memory and execute arbitrary code. The CVSS metrics indicate high impact to confident...

9.8CVSS6.4AI score0.00655EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/02/06 11:14 p.m.33 views

CVE-2020-37162 Wedding Slideshow Studio 1.36 - 'Key' Buffer Overflow

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...

9.8CVSS0.00655EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/02/06 11:14 p.m.2 views

CVE-2020-37161 Wedding Slideshow Studio 1.36 - 'Name' Buffer Overflow

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the registration name field with malicious payload. Attackers can craft a specially designed payload to trigger remote code execution, demonstrating the ability to...

9.8CVSS6.7AI score0.0087EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/02/06 11:14 p.m.7 views

CVE-2020-37161

Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the registration name field with malicious payload. Attackers can craft a specially designed payload to trigger remote code execution, demonstrating the ability to...

9.8CVSS6.6AI score0.0087EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.6 views

PT-2026-6827

Name of the Vulnerable Software and Affected Versions Wedding Slideshow Studio version 1.36 Description Wedding Slideshow Studio version 1.36 contains a buffer overflow that allows attackers to execute arbitrary code. This is achieved by overwriting the registration name field with a malicious...

9.8CVSS6.7AI score0.0087EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.4 views

PT-2026-6828

Name of the Vulnerable Software and Affected Versions Wedding Slideshow Studio version 1.36 Description The software contains a buffer overflow issue in the registration key input. An attacker can execute arbitrary code by overwriting memory. A malicious payload of 1608 bytes can trigger a...

9.8CVSS6.7AI score0.00655EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/01/14 2:15 p.m.4 views

CVE-2026-0684

The CP Image Store with Slideshow plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9 due to a logic error in the 'cpisadmininit' function's permission check. This makes it possible for authenticated attackers, with Contributor-level access and...

4.3CVSS6AI score0.00261EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/01/13 9:22 p.m.11 views

WordPress CP Image Store with Slideshow plugin <= 1.1.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary Product Import vulnerability

Missing Authorization to Authenticated Contributor+ Arbitrary Product Import vulnerability discovered by Kazuma Matsumoto - GMO Cybersecurity by IERAE, Inc. in WordPress Plugin CP Image Store with Slideshow versions = 1.1.9...

4.3CVSS7AI score0.00261EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/13 1:49 p.m.3 views

CVE-2026-0684 CP Image Store with Slideshow <= 1.1.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary Product Import

The CP Image Store with Slideshow plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9 due to a logic error in the 'cpisadmininit' function's permission check. This makes it possible for authenticated attackers, with Contributor-level access and...

4.3CVSS5.7AI score0.00261EPSS
Exploits0References3
CVE
CVE
added 2026/01/13 1:49 p.m.9 views

CVE-2026-0684

CVE-2026-0684 affects the WordPress plugin “CP Image Store with Slideshow” (versions ≤ 1.1.9). The root cause is a logic error in the permissions check inside the cpis_admin_init function, enabling an authorization bypass. As a result, authenticated users with Contributor-level access and above c...

4.3CVSS5.7AI score0.00261EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/13 1:49 p.m.20 views

CVE-2026-0684 CP Image Store with Slideshow <= 1.1.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary Product Import

The CP Image Store with Slideshow plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9 due to a logic error in the 'cpisadmininit' function's permission check. This makes it possible for authenticated attackers, with Contributor-level access and...

4.3CVSS0.00261EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.3 views

WordPress plugin CP Image Store with Slideshow 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

4.3CVSS5.8AI score0.00261EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.4 views

PT-2026-2636

The CP Image Store with Slideshow plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9 due to a logic error in the 'cpis admin init' function's permission check. This makes it possible for authenticated attackers, with Contributor-level access and...

4.3CVSS6AI score0.00261EPSS
Exploits0References6
Rows per page
Query Builder