918 matches found
CVE-2020-37161
Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the registration name field with malicious payload. Attackers can craft a specially designed payload to trigger remote code execution, demonstrating the ability to...
CVE-2020-37161
Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the registration name field with malicious payload. Attackers can craft a specially designed payload to trigger remote code execution, demonstrating the ability to...
CVE-2020-37162
Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...
Wedding Slideshow Studio 安全漏洞
Wedding Slideshow Studio is a wedding photo and video editing software developed by the Wedding Slideshow Studio company. Version 1.36 of Wedding Slideshow Studio contains a security vulnerability; this vulnerability stems from a buffer overflow in the registration name field, which could allow f...
Wedding Slideshow Studio 安全漏洞
Wedding Slideshow Studio is a wedding photo and video editing software developed by the Wedding Slideshow Studio company. Version 1.36 of Wedding Slideshow Studio contains a security vulnerability; this vulnerability stems from a buffer overflow issue in the registration key input process, which...
CVE-2020-37162 Wedding Slideshow Studio 1.36 - 'Key' Buffer Overflow
Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...
CVE-2020-37162
Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...
CVE-2020-37162
CVE-2020-37162 affects Wedding Slideshow Studio 1.36. The vulnerability is a stack-based buffer overflow in the registration key input. An attacker who has local access can craft a 1608-byte payload to overwrite memory and execute arbitrary code. The CVSS metrics indicate high impact to confident...
CVE-2020-37162 Wedding Slideshow Studio 1.36 - 'Key' Buffer Overflow
Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability in the registration key input that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious payload of 1608 bytes to trigger a stack-based buffer overflow and execute commands through t...
CVE-2020-37161 Wedding Slideshow Studio 1.36 - 'Name' Buffer Overflow
Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the registration name field with malicious payload. Attackers can craft a specially designed payload to trigger remote code execution, demonstrating the ability to...
CVE-2020-37161
Wedding Slideshow Studio 1.36 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting the registration name field with malicious payload. Attackers can craft a specially designed payload to trigger remote code execution, demonstrating the ability to...
PT-2026-6827
Name of the Vulnerable Software and Affected Versions Wedding Slideshow Studio version 1.36 Description Wedding Slideshow Studio version 1.36 contains a buffer overflow that allows attackers to execute arbitrary code. This is achieved by overwriting the registration name field with a malicious...
PT-2026-6828
Name of the Vulnerable Software and Affected Versions Wedding Slideshow Studio version 1.36 Description The software contains a buffer overflow issue in the registration key input. An attacker can execute arbitrary code by overwriting memory. A malicious payload of 1608 bytes can trigger a...
CVE-2026-0684
The CP Image Store with Slideshow plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9 due to a logic error in the 'cpisadmininit' function's permission check. This makes it possible for authenticated attackers, with Contributor-level access and...
WordPress CP Image Store with Slideshow plugin <= 1.1.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary Product Import vulnerability
Missing Authorization to Authenticated Contributor+ Arbitrary Product Import vulnerability discovered by Kazuma Matsumoto - GMO Cybersecurity by IERAE, Inc. in WordPress Plugin CP Image Store with Slideshow versions = 1.1.9...
CVE-2026-0684 CP Image Store with Slideshow <= 1.1.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary Product Import
The CP Image Store with Slideshow plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9 due to a logic error in the 'cpisadmininit' function's permission check. This makes it possible for authenticated attackers, with Contributor-level access and...
CVE-2026-0684
CVE-2026-0684 affects the WordPress plugin “CP Image Store with Slideshow” (versions ≤ 1.1.9). The root cause is a logic error in the permissions check inside the cpis_admin_init function, enabling an authorization bypass. As a result, authenticated users with Contributor-level access and above c...
CVE-2026-0684 CP Image Store with Slideshow <= 1.1.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary Product Import
The CP Image Store with Slideshow plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9 due to a logic error in the 'cpisadmininit' function's permission check. This makes it possible for authenticated attackers, with Contributor-level access and...
WordPress plugin CP Image Store with Slideshow 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...
PT-2026-2636
The CP Image Store with Slideshow plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9 due to a logic error in the 'cpis admin init' function's permission check. This makes it possible for authenticated attackers, with Contributor-level access and...