EUVD-2025-2038

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2020-27815

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the JFS filesystem code in the Linux Kernel which allows a local attacker with the ability to set extended attributes to panic the system,...

CVE-2025-5297

CVE-2025-5297 affects SourceCodester Computer Store System 1.0; the Add function in main.c is vulnerable due to a stack-based buffer overflow when processing the argument laptopcompany/RAM/Processor. The issue requires local access to exploit. Multiple sources confirm the detail and indicate a la...

CVE-2012-4110

run-script in the fabric-interconnect component in Cisco Unified Computing System UCS allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq86560...

CVE-2002-2042

ptrace in the QNX realtime operating system RTOS 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running processes...

PT-2025-20620 · Unknown · Simple Bus Reservation System

Name of the Vulnerable Software and Affected Versions: code-projects Simple Bus Reservation System version 1.0 Description: A critical vulnerability has been found in the function a::install of the component Install Bus. The manipulation of the argument bus leads to a stack-based buffer overflow...

CVE-2023-27472

quickentity-editor-next is an open source, system local, video game asset editor. In affected versions HTML tags in entity names are not sanitised XSS vulnerability. Allows arbitrary code execution within the browser sandbox, among other things, simply from loading a file containing a script tag ...

CVE-2023-27472 HTML tags in entity names in the tree view are not sanitised in quickentity-editor-next

quickentity-editor-next is an open source, system local, video game asset editor. In affected versions HTML tags in entity names are not sanitised XSS vulnerability. Allows arbitrary code execution within the browser sandbox, among other things, simply from loading a file containing a script tag ...

CVE-2023-27472

The CVE-2023-27472 issue affects quickentity-editor-next. It arises because HTML tags in entity names are not sanitized, enabling XSS and potentially arbitrary code execution within the browser sandbox simply by loading a file containing a script tag in an entity name. The vulnerability is mitiga...

PT-2022-1372 · Google +3 · Android Kernel +3

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue is related to a use after free vulnerability in the Android kernel's binder system, which can lead to local escalation of privilege without requiring additional...

CVE-2020-4756

IBM Spectrum Scale V4.2.0.0 through V4.2.3.23 and V5.0.0.0 through V5.0.5.2 as well as IBM Elastic Storage System 6.0.0 through 6.0.1.0 could allow a local attacker to invoke a subset of ioctls on the device with invalid arguments that could crash the keneral and cause a denial of service. IBM...

JCMS政府信息公开系统在/lm/front/reg_2.jsp存在本地文件包含漏洞

No description provided by source...

CVE-2002-2039

/bin/su in QNX realtime operating system RTOS 4.25 and 6.1.0 allows local users to obtain sensitive information from core dump files by sending the SIGSERV invalid memory reference signal...

CVE-2002-0971

Vulnerability in VNC, TightVNC, and TridiaVNC allows local users to execute arbitrary code as LocalSystem by using the Win32 Messaging System to bypass the VNC GUI and access the "Add new clients" dialogue box...

IRIX (5.3/6.2/6.3/6.4/6.5/6.5.11) /usr/lib/print/netprint Local Exploit

Exploit for irix platform in category local exploits ======================================================================= IRIX 5.3/6.2/6.3/6.4/6.5/6.5.11 /usr/lib/print/netprint Local Exploit ======================================================================= !/bin/sh copyright LAST STAGE ...

DG/UX 4.20 lpsched - 'Error Message' Local Buffer Overflow

// source: https://www.securityfocus.com/bid/2509/info DGUX is the Data General revision of UNIX. It is designed as a solution for Intel systems produced by Data General. A problem in the handling of error messages by the printer scheduler could allow arbitrary execution of code. By placing a...

CVE-1999-0108

The printers program in IRIX has a buffer overflow that gives root access to local users...