Lucene search
K

34 matches found

ATTACKERKB
ATTACKERKB
added 6 days ago4 views

CVE-2026-34103

Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in subtitles.php line 16: SELECT id, filename, extension, type FROM files where id = '".$GET'id'."'. An authenticated attacker can perform error-based SQL injection to extract database contents...

9.8CVSS5.8AI score0.00373EPSS
Exploits0References3
Cvelist
Cvelist
added 6 days ago33 views

CVE-2026-34103 Guardian Language-System Unauthenticated SQL Injection via id Parameter in subtitles.php

Guardian language-system passes the id GET parameter directly into an unsanitized SQL query in subtitles.php line 16: SELECT id, filename, extension, type FROM files where id = '".$GET'id'."'. An authenticated attacker can perform error-based SQL injection to extract database contents...

9.8CVSS0.00373EPSS
Exploits0References2
CVE
CVE
added 6 days ago7 views

CVE-2026-34103

CVE-2026-34103 affects Guardian Language-System. The vulnerability arises from passing the unvalidated GET parameter 'id' directly into an unsanitized SQL query in subtitles.php, enabling error-based SQL injection that can disclose database contents. The query shown is: SELECT id, filename, exten...

9.8CVSS5.8AI score0.00373EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-17274

Malware in sbrugna...

5.5CVSS6.5AI score0.01481EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-17271

Malware in sbrugna...

5.5CVSS6.5AI score0.01258EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-17273

Malware in sbrugna...

5.5CVSS6.3AI score0.01358EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:46 a.m.3 views

SUSE CVE-2017-8310

Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process causing a denial of service via a crafted subtitles file...

5.5CVSS6.1AI score0.01258EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:46 a.m.3 views

SUSE CVE-2017-8311

Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to execute arbitrary code via a crafted subtitles file...

7.8CVSS8.3AI score0.08765EPSS
Exploits4References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:46 a.m.4 views

SUSE CVE-2017-8312

Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows attackers to read heap uninitialized data via a crafted subtitles file...

5.5CVSS6.1AI score0.01358EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/07/10 12:0 a.m.39 views

GLSA-201707-10 : VLC: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201707-10 VLC: Multiple vulnerabilities Multiple vulnerabilities have been discovered in VLC. Please review the CVE identifiers referenced below for details. Impact : A remote attacker, by enticing a user to open a specially craft...

7.8CVSS6.9AI score0.08765EPSS
Exploits4References5
Prion
Prion
added 2017/05/23 9:29 p.m.21 views

Heap overflow

Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process causing a denial of service via a crafted subtitles file...

4.3CVSS5.8AI score0.01258EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2017/05/23 9:29 p.m.33 views

CVE-2017-8310

Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process causing a denial of service via a crafted subtitles file...

5.5CVSS6.8AI score0.01258EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2017/05/23 9:29 p.m.29 views

CVE-2017-8311

Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to execute arbitrary code via a crafted subtitles file...

7.8CVSS7.6AI score0.08765EPSS
Exploits4References1
UbuntuCve
UbuntuCve
added 2017/05/23 9:29 p.m.26 views

CVE-2017-8313

Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process via a crafted subtitles file...

5.5CVSS6.8AI score0.01481EPSS
Exploits0References1
Prion
Prion
added 2017/05/23 9:29 p.m.14 views

Heap overflow

Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process via a crafted subtitles file...

4.3CVSS5.6AI score0.01481EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2017/05/23 9:29 p.m.17 views

CVE-2017-8311

Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to execute arbitrary code via a crafted subtitles file...

7.8CVSS7.9AI score0.08765EPSS
Exploits4References5
NVD
NVD
added 2017/05/23 9:29 p.m.19 views

CVE-2017-8313

Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process via a crafted subtitles file...

5.5CVSS6AI score0.01481EPSS
Exploits0References4
OSV
OSV
added 2017/05/23 9:29 p.m.4 views

UBUNTU-CVE-2017-8310

Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process causing a denial of service via a crafted subtitles file...

5.5CVSS6.8AI score0.01258EPSS
Exploits0References2
OSV
OSV
added 2017/05/23 9:29 p.m.5 views

CVE-2017-8311

Potential heap based buffer overflow in ParseJSS in VideoLAN VLC before 2.2.5 due to skipping NULL terminator in an input string allows attackers to execute arbitrary code via a crafted subtitles file...

7.8CVSS7.9AI score
Exploits0References5
Prion
Prion
added 2017/05/23 9:29 p.m.17 views

Heap overflow

Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows attackers to read heap uninitialized data via a crafted subtitles file...

4.3CVSS5.9AI score0.01358EPSS
Exploits0References4Affected Software2
Rows per page
Query Builder