openthread/ncp-uart-received-fuzzer: Stack-buffer-overflow in ot::Message::Write

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5734126906245120 Project: openthread Fuzzer: aflopenthreadncp-uart-received-fuzzer Fuzz target binary: ncp-uart-received-fuzzer Job Type: aflasanopenthread Platform Id: linux Crash Type:...

libarchive/libarchive_fuzzer: Heap-buffer-overflow in run_arm_filter

Project: https://github.com/libarchive/libarchive.git Detailed report: https://oss-fuzz.com/testcase?key=5666609181491200 Project: libarchive Fuzzer: libFuzzerlibarchivefuzzer Fuzz target binary: libarchivefuzzer Job Type: libfuzzerasanlibarchive Platform Id: linux Crash Type: Heap-buffer-overflo...

imagemagick/ping_icon_fuzzer: Use-of-uninitialized-value in png_crc_finish

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5751794220662784 Project: imagemagick Fuzzer: libFuzzerimagemagickpingiconfuzzer Fuzz target binary: pingiconfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

c-ares/ares_parse_reply_fuzzer: Heap-buffer-overflow in ares_parse_aaaa_reply

Project: https://github.com/c-ares/c-ares.git Detailed report: https://oss-fuzz.com/testcase?key=5650695891451904 Project: c-ares Fuzzer: libFuzzerc-aresaresparsereplyfuzzer Fuzz target binary: aresparsereplyfuzzer Job Type: libfuzzerasanc-ares Platform Id: linux Crash Type: Heap-buffer-overflow...

ffmpeg/ffmpeg_AV_CODEC_ID_QDM2_fuzzer: Index-out-of-bounds in fix_coding_method_array

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5749441484554240 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDQDM2fuzzer Fuzz target binary: ffmpegAVCODECIDQDM2fuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: Index-out-of-bounds...

Sahi Pro 8.x Cross Site Scripting

Exploit Title: Sahi pro alertdocument.cookie”.start; log“testing stored XSS injection”; $tc1.end; Step 2 : Execute the created script poc.sah using sahi GUI controller . Step 3 : navigate to the web logs console http://:/logs using the browser for the executed script. XSS is triggered...

Sahi pro 8.x - Cross-Site Scripting Vulnerability

Exploit for multiple platform in category web applications Exploit Title: Sahi pro alertdocument.cookie”.start; log“testing stored XSS injection”; $tc1.end; Step 2 : Execute the created script poc.sah using sahi GUI controller . Step 3 : navigate to the web logs console http://:/logs using the...

Sahi pro 8.x - Cross-Site Scripting

Sahi pro 8.x - Cross-Site Scripting Exploit Title: Sahi pro alertdocument.cookie”.start; log“testing stored XSS injection”; $tc1.end; Step 2 : Execute the created script poc.sah using sahi GUI controller . Step 3 : navigate to the web logs console http://:/logs using the browser for the executed...

Sahi pro 8.x - Cross-Site Scripting

Exploit Title: Sahi pro alertdocument.cookie”.start; log“testing stored XSS injection”; $tc1.end; Step 2 : Execute the created script poc.sah using sahi GUI controller . Step 3 : navigate to the web logs console http://:/logs using the browser for the executed script. XSS is triggered...

ffmpeg/ffmpeg_AV_CODEC_ID_IFF_ILBM_fuzzer: Crash in extract_header

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5080476840099840 Project: ffmpeg Fuzzer: aflffmpegAVCODECIDIFFILBMfuzzer Fuzz target binary: ffmpegAVCODECIDIFFILBMfuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: UNKNOWN WRITE Crash Addres...

imagemagick/encoder_heic_fuzzer: Use-of-uninitialized-value in heif_image_release

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5636585850142720 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderheicfuzzer Fuzz target binary: encoderheicfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

ffmpeg/ffmpeg_AV_CODEC_ID_ALS_fuzzer: Heap-buffer-overflow in read_var_block_data

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5184853437317120 Project: ffmpeg Fuzzer: aflffmpegAVCODECIDALSfuzzer Fuzz target binary: ffmpegAVCODECIDALSfuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 4 Crash...

imagemagick/encoder_heic_fuzzer: Stack-buffer-overflow in std::__1::shared_ptr<heif::HeifPixelImage>::~shared_ptr

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5638446846050304 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderheicfuzzer Fuzz target binary: encoderheicfuzzer Job Type: libfuzzerasanimagemagick Platform Id: linux Crash Type:...

ffmpeg/ffmpeg_AV_CODEC_ID_M101_fuzzer: Heap-buffer-overflow in m101_decode_frame

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5728999453491200 Project: ffmpeg Fuzzer: aflffmpegAVCODECIDM101fuzzer Fuzz target binary: ffmpegAVCODECIDM101fuzzer Job Type: aflasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Cras...

ffmpeg/ffmpeg_AV_CODEC_ID_LIBVORBIS_fuzzer: Crash in oggvorbis_decode_init

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5764908467093504 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDLIBVORBISfuzzer Fuzz target binary: ffmpegAVCODECIDLIBVORBISfuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: UNKNOWN...

imagemagick/ping_dng_fuzzer: Heap-buffer-overflow in LibRaw::get2

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5755410549571584 Project: imagemagick Fuzzer: libFuzzerimagemagickpingdngfuzzer Fuzz target binary: pingdngfuzzer Job Type: libfuzzerasanimagemagick Platform Id: linux Crash Type:...

wireshark/fuzzshark_ip: Heap-buffer-overflow in asn1_get_real

Project: https://code.wireshark.org/review/wireshark Detailed report: https://oss-fuzz.com/testcase?key=5683872097894400 Project: wireshark Fuzzer: libFuzzerwiresharkfuzzsharkip Fuzz target binary: fuzzsharkip Job Type: libfuzzerasanwireshark Platform Id: linux Crash Type: Heap-buffer-overflow RE...

opencv/imread_fuzzer: Use-of-uninitialized-value in cv::ExrDecoder::readData

Detailed report: https://oss-fuzz.com/testcase?key=5744080958521344 Project: opencv Fuzzer: libFuzzeropencvimreadfuzzer Fuzz target binary: imreadfuzzer Job Type: libfuzzermsanopencv Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: cv::ExrDecoder::readData...

wireshark/fuzzshark_ip_proto-udp: Heap-use-after-free in wmem_array_get_count

Detailed report: https://oss-fuzz.com/testcase?key=5757525804187648 Project: wireshark Fuzzer: aflwiresharkfuzzsharkipproto-udp Fuzz target binary: fuzzsharkipproto-udp Job Type: aflasanwireshark Platform Id: linux Crash Type: Heap-use-after-free READ 4 Crash Address: 0x60b00046ab78 Crash State:...

cryptofuzz/cryptofuzz-openssl-110-noasm: Use-of-uninitialized-value in bool std::__1::equal<std::__1::__wrap_iter<unsigned char const*>, std::__1::__wr

Project: https://github.com/guidovranken/cryptofuzz.git Detailed report: https://oss-fuzz.com/testcase?key=5713279621529600 Project: cryptofuzz Fuzzer: libFuzzercryptofuzzcryptofuzz-openssl-110-noasm Fuzz target binary: cryptofuzz-openssl-110-noasm Job Type: libfuzzermsancryptofuzz Platform Id:...