CVE-2025-52477 Octo-STS Vulnerable to Unauthenticated SSRF with HTTP Response Reflection in OIDC Flow

Octo-STS is a GitHub App that acts like a Security Token Service STS for the GitHub API. Octo-STS versions before v0.5.3 are vulnerable to unauthenticated SSRF by abusing fields in OpenID Connect tokens. Malicious tokens were shown to trigger internal network requests which could reflect error lo...

CVE-2022-45771

An issue in the /api/audits component of Pwndoc v0.5.3 allows attackers to escalate privileges and execute arbitrary code via uploading a crafted audit file...

GHSA-F2WX-XJFW-XJV6 topgrade Time-of-check Time-of-use (TOCTOU) Race Condition in remove_dir_all

Summary https://github.com/advisories/GHSA-mc8h-8q98-g5hr https://github.com/XAMPPRocky/removedirall/commit/7247a8b6ee59fc99bbb69ca6b3ca4bfd8c809ead tempfile v0.4.26 ships with affected removedirall v0.5.3 and so blocks my deployment of v12 to openSUSE distribution because it imposes a clean carg...

Design/Logic Flaw

An issue in the /api/audits component of Pwndoc v0.5.3 allows attackers to escalate privileges and execute arbitrary code via uploading a crafted audit file...

CVE-2022-45771

CVE-2022-45771 affects Pwndoc v0.5.3, where the /api/audits component allows privilege escalation and arbitrary code execution through uploading a crafted audit file. Multiple connected documents describe two related attack chains: (1) loading user-supplied AuditSchema.language via require during...

Exploit for SQL Injection in Layer5 Meshery

Vulnerability Report CVE-2021-31856: a sql injection in Mesh...

CVE-2021-21235

kamadak-exif is an exif parsing library written in pure Rust. In kamadak-exif version 0.5.2, there is an infinite loop in parsing crafted PNG files. Specifically, reader::readfromcontainer can cause an infinite loop when a crafted PNG file is given. This is fixed in version 0.5.3. No workaround i...

Racer 0.5.3 beta 5 - Remote Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl Credit's to n00b. Racer v0.5.3 beta 5 12-03-07 remote exploit. Racer is also prone to a buffer over flow in the server and client.Automatically the game open's Udp port 26000 and is waiting for a msg buffer. If we send an overly long buffer we are...

Racer 0.5.3 Beta 5 - Remote Buffer Overflow (Metasploit)

$Id: racer503beta5.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

sk.log v0.5.3 Remote File Inclusion

++++++++++++++++++++++++++++++++++++++++++++++++++ + sk.log v0.5.3 Remote File Inclusion + High Risk + Found by Seph1roth + http://blackroots.it ++++++++++++++++++++++++++++++++++++++++++++++++++ + Vulnerable Code + log.inc.php + includeonce "$SKINURL/php/logdisplay.inc.php" ; sk.log v0.5.3 暂无...

Racer v0.5.3 beta 5 Remote Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ================================================== Racer v0.5.3 beta 5 Remote Buffer Overflow Exploit ================================================== !/usr/bin/perl Credit's to n00b. Racer v0.5.3 beta 5 12-03-07 remote exploit. Racer is...

Racer 0.5.3 Beta 5 - Remote Buffer Overflow

!/usr/bin/perl Credit's to n00b. Racer v0.5.3 beta 5 12-03-07 remote exploit. Racer is also prone to a buffer over flow in the server and client.Automatically the game open's Udp port 26000 and is waiting for a msg buffer. If we send an overly long buffer we are able to Control the eip register a...