EUVD-2025-7901

Malicious code in bioql PyPI...

CVE-2025-2702

A vulnerability, which was classified as critical, has been found in Softwin WMX3 3.1. This issue affects the function ImageAdd of the file /ImageAdd.ashx. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to t...

CVE-2025-2702

A vulnerability, which was classified as critical, has been found in Softwin WMX3 3.1. This issue affects the function ImageAdd of the file /ImageAdd.ashx. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to t...

CVE-2025-2702 Softwin WMX3 ImageAdd.ashx ImageAdd unrestricted upload

A vulnerability, which was classified as critical, has been found in Softwin WMX3 3.1. This issue affects the function ImageAdd of the file /ImageAdd.ashx. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to t...

CVE-2025-2702 Softwin WMX3 ImageAdd.ashx ImageAdd unrestricted upload

A vulnerability, which was classified as critical, has been found in Softwin WMX3 3.1. This issue affects the function ImageAdd of the file /ImageAdd.ashx. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to t...

CVE-2025-2702

CVE-2025-2702 affects Softwin WMX3 3.1 ; the ImageAdd.ashx endpoint’s function ImageAdd allows unrestricted upload by manipulating the File argument. This enables remote arbitrary file upload. Exploit has been disclosed publicly. Vendor did not respond to disclosure. No remediation details provid...

Softwin WMX3 代码问题漏洞

Softwin WMX3 is an EtherCAT bus and software motion control based application from Softwin China. A code issue vulnerability exists in Softwin WMX3 version 3.1, which originates from an unrestricted upload and could lead to a remote attack...

SOFTWIN Bitdefender Antivirus Local Code Execution Vulnerability

SOFTWIN BitDefender Antivirus is a suite of antivirus programs from the Romanian company SOFTWIN. A local code execution vulnerability exists in SOFTWIN Bitdefender Antivirus, which can be exploited by a local attacker to cause a denial of service by executing arbitrary code within an affected...

BitDefender PE文件解析整数溢出漏洞

BUGTRAQ ID: 32751 BitDefender Antivirus是具有功能强大的反病毒引擎以及互联网过滤技术的杀毒软件。 BitDefender在处理畸形结构的PE文件时存在漏洞，如果使用GNU/Linux版本的BitDefender扫描到了NeoLite或ASProtect封装的特制PE文件的话，就可能触发整数溢出，导致扫描引擎崩溃。 Softwin BitDefender v7 for Linux Softwin ------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

BitDefender pdf.xmd模块PDF解析远程拒绝服务漏洞

BUGTRAQ ID: 32396 BitDefender Antivirus是具有功能强大的反病毒引擎以及互联网过滤技术的杀毒软件。 BitDefender Antivirus的pdf.xmd模块在处理使用FlateDecode和ASCIIHexDecode压缩选项所压缩的数据时存在拒绝服务漏洞。如果用户受骗打开了设置有特制/JavaScript对象标签的pdf文件的话，就可能在扫描文件时触发死循环，导致程序崩溃。 Softwin BitDefender Antivirus 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

BitDefender Antivirus无效SSDT参数本地拒绝服务漏洞

BUGTRAQ ID: 28741 CVECAN ID: CVE-2008-1735 BitDefender Antivirus 2008是具有功能强大的反病毒引擎以及互联网过滤技术的杀毒软件。 BitDefender没有正确地验证提供给NtOpenProcess的CLIENTID结构指针，如果传送了无效指针的话，就会导致整个系统崩溃。 /----------- NtOpenProcessPHANDLE ProcessHandle, ACCESSMASK AccessMask, POBJECTATTRIBUTES ObjectAttributes, PCLIENTID ClientId...

BitDefender在线扫描器OScan.OCX ActiveX控件堆溢出漏洞

BUGTRAQ ID: 26210 CVECAN ID: CVE-2007-5775 BitDefender Online Scanner是一款免费的在线杀毒软件。 BitDefender在线扫描器所捆绑的OScan.ocx控件中存在远程代码执行漏洞，远程攻击者可能利用此漏洞在用户系统上执行任意指令。 OScan.ocx的有漏洞函数为InitX，该函数取得了bstrLocation的字符串参数值用于确认调用域。InitX的IDL类似于以下： Function InitX ByVal bstrLocation as String As Boolean...

Softwin's anti-virus BitDefender contains vulnerable zlib (CA-2007-07)

At least the freeware version of Softwin's anti-virus solution BitDefender Free Edition http://www.bitdefender.com/site/view/Download-Free-Products.html http://download.bitdefender.com/windows/free/winfree/en/bitdefenderfreev10.exe ships with a completely outdated zlib 1.1.3 http://www.zlib.net/...