Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

CNNVD
CNNVDadded 2026/02/25 12:0 a.m.3 views

asbplayer 安全漏洞

ASBPlayer is a language learning tool developed by Raphael-Joel Lim. Version 1.13.0 of ASBPlayer contains a security vulnerability. This vulnerability stems from the subtitle loading function allowing arbitrary file uploads, which could enable attackers to execute arbitrary code by uploading...

9.6CVSS6.2AI score0.00053EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/12/05 3:27 p.m.1 views

CVE-2025-29845

A vulnerability in VideoPlayer2 subtitle cgi allows remote authenticated users to read .srt files...

4.3CVSS6.7AI score0.00285EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/04 3:1 p.m.1 views

EUVD-2025-201173

A vulnerability in VideoPlayer2 subtitle cgi allows remote authenticated users to read .srt files...

4.3CVSS6.2AI score0.00285EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2004-1469

Malware in sbrugna...

5.1CVSS6.1AI score0.05483EPSS
Exploits0References8
OSV
OSVadded 2024/05/03 2:15 a.m.3 views

AZL-43777 CVE-2023-37329 affecting package gstreamer1-plugins-base 1.20.0-3

GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may va...

8.8CVSS7.3AI score0.063EPSS
Exploits0References1
CNVD
CNVDadded 2017/05/25 12:0 a.m.1 views

VideoLAN VLC Heap Buffer Overflow Vulnerability

VideoLAN VLC is a free and open source cross-platform multimedia player also a multimedia framework developed by the French organization VideoLAN. It supports playback of multiple media files, CD-ROMs, etc., multiple audio and video formats WMV, MP3, etc., etc. ParseJSS is one of the subtitle fil...

7.8CVSS8.2AI score0.07052EPSS
Exploits4References1
ThreatPost
ThreatPostadded 2017/05/23 5:33 p.m.25 views

Subtitle Hack Leaves 200 Million Vulnerable to Remote Code Execution

A proof of concept attack using malicious video subtitle files reveals how adversaries can execute remote code on PCs, Smart TVs and mobile devices using popular video players and services such as VLC Media Player, Kodi, Stremio and Popcorn Time. “This is a brand new attack vector. We haven’t see...

6.8CVSS2.1AI score0.07052EPSS
Exploits4References1
Prion
Prionadded 2011/02/07 9:0 p.m.21 views

Memory corruption

The StripTags function in 1 the USF decoder modules/codec/subtitles/subsdec.c and 2 the Text decoder modules/codec/subtitles/subsusf.c in VideoLAN VLC Media Player 1.1 before 1.1.6-rc allows remote attackers to execute arbitrary code via a subtitle with an opening "" in an MKV file, which trigger...

6.8CVSS8.1AI score0.66189EPSS
Exploits2References11Affected Software1
Prion
Prionadded 2008/04/22 4:41 a.m.10 views

Stack overflow

Stack-based buffer overflow in DivX Player 6.7 build 6.7.0.22 and earlier allows user-assisted remote attackers to cause a denial of service application crash or execute arbitrary code via a long subtitle in a .SRT file...

9.3CVSS8.7AI score0.23556EPSS
Exploits0References7Affected Software1
Prion
Prionadded 2008/01/17 1:0 a.m.23 views

Stack overflow

Stack-based buffer overflow in modules/demux/subtitle.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via a long subtitle in a 1 MicroDvd, 2 SSA, and 3 Vplayer file...

7.5CVSS8AI score0.39044EPSS
Exploits5References18Affected Software1
Rows per page
Query Builder