CVE-2025-4061

A vulnerability, which was classified as critical, was found in code-projects Clothing Store Management System up to 1.0. Affected is the function additem. The manipulation of the argument st.productname leads to stack-based buffer overflow. Attacking locally is a requirement. The exploit has bee...

Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities

Summary IBM Cloud Transformation Advisor has addressed multiple security vulnerabilities listed herein. Vulnerability Details CVEID:CVE-2023-49569 DESCRIPTION: go-git could allow a remote attacker to traverse directories on the system. By sending a specially crafted request using the ChrootOS...

PT-2025-18201 · Unknown · Code-Projects School Billing System

Name of the Vulnerable Software and Affected Versions: code-projects School Billing System version 1.0 Description: A critical vulnerability was found in the code-projects School Billing System. This issue affects the searchrec function. The manipulation of the Name argument leads to a stack-base...

CVE-2025-4038

A vulnerability was found in code-projects Train Ticket Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is the function Reservation of the component Ticket Reservation. The manipulation of the argument Name leads to stack-based buffer overflow. Attacking...

CVE-2025-4038

CVE-2025-4038 affects Code-Projects Train Ticket Reservation System 1.0. The vulnerability resides in the Reservation function of the Ticket Reservation component, where manipulating the Name argument causes a stack-based buffer overflow. Local attack is required, and public disclosure of the exp...

CVE-2025-4029

A vulnerability was found in code-projects Personal Diary Management System 1.0 and classified as critical. Affected by this issue is the function addrecord of the component New Record Handler. The manipulation of the argument filename leads to stack-based buffer overflow. Local access is require...

CVE-2025-4029

The CVE-2025-4029 entry concerns code-projects Personal Diary Management System 1.0. The vulnerable component is the function addrecord in the New Record Handler, where manipulation of the filename argument causes a stack-based buffer overflow. Local access is required to exploit, and public disc...

CVE-2025-4007

Summary: CVE-2025-4007 affects Tenda W12 and i24 (versions 3.0.0.4–3.0.0.5). The vulnerability is in the httpd module’s function cgidhcpsCfgSet in /goform/modules. An attacker can remotely exploit a crafted json argument to trigger a stack-based buffer overflow, potentially enabling arbitrary cod...

PT-2025-18118 · Unknown · Code-Projects Online Ticket Reservation System

Name of the Vulnerable Software and Affected Versions: code-projects Train Ticket Reservation System version 1.0 Description: A critical vulnerability was found in the function Reservation of the component Ticket Reservation. The manipulation of the argument Name leads to a stack-based buffer...

CVE-2025-3803

A vulnerability was found in Tenda W12 and i24 3.0.0.42887/3.0.0.53644. It has been rated as critical. This issue affects the function cgiSysScheduleRebootSet of the file /bin/httpd. The manipulation of the argument rebootDate leads to stack-based buffer overflow. The attack may be initiated...

CVE-2025-3693

A vulnerability was found in Tenda W12 3.0.0.5. It has been rated as critical. Affected by this issue is the function cgiWifiRadioSet of the file /bin/httpd. The manipulation leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public an...

CVE-2025-3820

A vulnerability was found in Tenda W12 and i24 3.0.0.42887/3.0.0.53644 and classified as critical. Affected by this issue is the function cgiSysUplinkCheckSet of the file /bin/httpd. The manipulation of the argument hostIp1/hostIp2 leads to stack-based buffer overflow. The attack may be launched...

Stack Based Buffer Overflow

org.jsonschema2pojo, jsonschema2pojo-core is vulnerable to Stack-based buffer overflow. The vulnerability is due to improper input validation in the apply function of the SchemaRule.java file, allows attackers to exploit the function, leading to a stack-based buffer overflow...

CVE-2025-3802

A vulnerability was found in Tenda W12 and i24 3.0.0.42887/3.0.0.53644. It has been declared as critical. This vulnerability affects the function cgiPingSet of the file /bin/httpd. The manipulation of the argument pingIP leads to stack-based buffer overflow. The attack can be initiated remotely...

Autodesk Revit 2024.x < 2024.3.2 / 2025.x < 2025.4.1 Multiple Vulnerabilities

The version of Autodesk Revit installed on the remote host is prior to 25.4.1.0 2025.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the ADSK-SA-2025-0003 and ADSK-SA-2025-0005 advisories. - A maliciously crafted DWG file, when parsed through Autodesk Revit, can cause...

CVE-2025-3693

A vulnerability was found in Tenda W12 3.0.0.5. It has been rated as critical. Affected by this issue is the function cgiWifiRadioSet of the file /bin/httpd. The manipulation leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public an...

CVE-2025-3693 Tenda W12 httpd cgiWifiRadioSet stack-based overflow

A vulnerability was found in Tenda W12 3.0.0.5. It has been rated as critical. Affected by this issue is the function cgiWifiRadioSet of the file /bin/httpd. The manipulation leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public an...

CVE-2025-3693

CVE-2025-3693 affects Tenda W12 3.0.0.5. The vulnerability is a stack-based buffer overflow in the function cgiWifiRadioSet of the file /bin/httpd . Exploitation is possible remotely over the network, and public exploits have been disclosed. Multiple connected sources corroborate this issue and i...

CVE-2025-2497

A maliciously crafted DWG file, when parsed through Autodesk Revit, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

CVE-2025-2497 DWG File Parsing Stack-Based Buffer Vulnerability

A maliciously crafted DWG file, when parsed through Autodesk Revit, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...