3 matches found
CVE-2026-34243
wenxian is a tool to generate BIBTEX files from given identifiers DOI, PMID, arXiv ID, or paper title. In versions 0.3.1 and prior, a GitHub Actions workflow uses untrusted user input from issuecomment.body directly inside a shell command, allowing potential command injection and arbitrary code...
Nanopb 缓冲区错误漏洞
Nanopb is a protocol buffer implementation for microprocessors from the individual developers of Nanopb. A security vulnerability exists in Nanopb versions prior to 0.3.1, which stems from an overflow in pbdecbytes and pbdecstring...
UBUNTU-CVE-2016-2347
Integer underflow in the decodelevel3header function in lib/lhafileheader.c in Lhasa before 0.3.1 allows remote attackers to execute arbitrary code via a crafted archive...