14 matches found
SUSE CVE-2026-44724
systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces when an active NetworkManager connection profile name contains shell metacharacters. The vulnerable value is obtained...
gatus 安全漏洞
Gatus is a service health monitoring and alerting tool developed by TwiN’s individual developers. Version 5.36.0 of Gatus contains a security vulnerability. This vulnerability stems from the setSessionCookie function in the OIDC session cookie handler. Performing certain operations may result in...
Audiotool Ease Audio Converter 安全漏洞
Audiotool Ease Audio Converter is an audio format conversion tool developed by Audiotool Corporation. Version 5.30 of Audiotool Ease Audio Converter has a security vulnerability. This vulnerability stems from a denial-of-service attack in the audio editing function, which may allow local attacker...
SUSE CVE-2026-26318
systeminformation is a System and OS information library for node.js. Versions prior to 5.31.0 are vulnerable to command injection via unsanitized locate output in versions. Version 5.31.0 fixes the issue...
EUVD-2010-5305
Malware in sbrugna...
CVE-2010-20045
FileWrangler = 5.30 suffers from a stack-based buffer overflow vulnerability when parsing directory listings from an FTP server. A malicious server can send an overlong folder name in response to a LIST command, triggering memory corruption during client-side rendering. Exploitation requires...
CVE-2010-20045 FileWrangler <= 5.30 Stack Buffer Overflow
FileWrangler = 5.30 suffers from a stack-based buffer overflow vulnerability when parsing directory listings from an FTP server. A malicious server can send an overlong folder name in response to a LIST command, triggering memory corruption during client-side rendering. Exploitation requires...
PT-2025-34097 · Undefined · Undefined
FileWrangler = 5.30 suffers from a stack-based buffer overflow vulnerability when parsing directory listings from an FTP server. A malicious server can send an overlong folder name in response to a LIST command, triggering memory corruption during client-side rendering. Exploitation requires...
DEBIAN-CVE-2025-26619
Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. In vega 5.30.0 and lower and in vega-functions 5.15.0 and lower , it was possible to call JavaScript functions from the Vega expression language that were not meant to be...
WordPress plugin YARPP security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
Zyxel VMG3312-T20A 安全漏洞
The Zyxel VMG3312-T20A is a state-of-the-art VDSL2 gateway from China's Heqin Technology Zyxel. A security vulnerability exists in the Zyxel VMG3312-T20A version 5.30ABFX.5C0, which stems from a potential buffer overflow vulnerability found in some internal functions. An authenticated, local...
UBUNTU-CVE-2020-12723
regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression because of recursive Sstudychunk calls. An application written in Perl would only be vulnerable to this flaw if it evaluates regular expressions supplied by the attacker. Evaluating regular expressions in th...
file buffer overflow vulnerability (CNVD-2020-14286)
file is a set of command-line tools used in Unix-like applications to view file information. A buffer overflow vulnerability exists in cdfreadpropertyinfo in the cdf.c file in file 5.37 and earlier versions, which arises from a networked system or product that performs an operation in memory...
mysql: unspecified vulnerability related to SERVER:OPTIMIZER (CPU October 2014)
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote authenticated users to affect availability via vectors related to SERVER:OPTIMIZER...