CVE-2025-13876 Rareprob HD Video Player All Formats App com.rocks.music.videoplayer path traversal

A security vulnerability has been detected in Rareprob HD Video Player All Formats App 12.1.372 on Android. Impacted is an unknown function of the component com.rocks.music.videoplayer. The manipulation leads to path traversal. The attack needs to be performed locally. The exploit has been...

Rareprob HD Video Player All Formats 路径遍历漏洞

Rareprob HD Video Player All Formats is a video player from Rareprob India. A path traversal vulnerability exists in Rareprob HD Video Player All Formats version 12.1.372, which stems from a path traversal issue in the component com.rocks.music.videoplayer...

EUVD-2025-21743

Malicious code in bioql PyPI...

Malicious code in welt-videoplayer (npm)

The package welt-videoplayer was found to contain malicious code...

MAL-2025-39077 Malicious code in welt-videoplayer (npm)

The package welt-videoplayer was found to contain malicious code...

CVE-2025-34128

A buffer overflow vulnerability exists in the X360 VideoPlayer ActiveX control VideoPlayer.ocx version 2.6 when handling overly long arguments to the ConvertFile method. An attacker can exploit this vulnerability by supplying crafted input to cause memory corruption and execute arbitrary code...

CVE-2025-34128

A buffer overflow vulnerability exists in the X360 VideoPlayer ActiveX control VideoPlayer.ocx version 2.6 when handling overly long arguments to the ConvertFile method. An attacker can exploit this vulnerability by supplying crafted input to cause memory corruption and execute arbitrary code...

CVE-2025-34128 X360 VideoPlayer ActiveX Control Buffer Overflow via ConvertFile()

A buffer overflow vulnerability exists in the X360 VideoPlayer ActiveX control VideoPlayer.ocx version 2.6 when handling overly long arguments to the ConvertFile method. An attacker can exploit this vulnerability by supplying crafted input to cause memory corruption and execute arbitrary code...

CVE-2025-34128 X360 VideoPlayer ActiveX Control Buffer Overflow via ConvertFile()

A buffer overflow vulnerability exists in the X360 VideoPlayer ActiveX control VideoPlayer.ocx version 2.6 when handling overly long arguments to the ConvertFile method. An attacker can exploit this vulnerability by supplying crafted input to cause memory corruption and execute arbitrary code...

CVE-2025-34128

CVE-2025-34128 describes a buffer overflow in X360 VideoPlayer ActiveX control (VideoPlayer.ocx) v2.6 triggered by overly long arguments to ConvertFile(), leading to memory corruption and arbitrary code execution in the executing process. Affected component is the ActiveX control; root cause is a...

PT-2025-29890 · Unknown · X360 Videoplayer

Name of the Vulnerable Software and Affected Versions: X360 VideoPlayer versions 2.6 Description: A buffer overflow vulnerability exists in the X360 VideoPlayer ActiveX control VideoPlayer.ocx when handling overly long arguments to the ConvertFile method. An attacker can exploit this vulnerabilit...

X360 VideoPlayer ActiveX control 安全漏洞

X360 VideoPlayer ActiveX control is an ActiveX control from X360. A security vulnerability exists in X360 VideoPlayer ActiveX control version 2.6, which originates from a buffer overflow and could lead to the execution of arbitrary code...

mpv: Format string vulnerability

Background Video player based on MPlayer/mplayer2. Description mpv uses untrusted input within format strings. Impact A remote attacker could entice a user to open a specially crafted m3u playlist file using mpv, possibly resulting in execution of arbitrary code with the privileges of the process...

041.videoplayer.jp Open Redirect vulnerability

Open Bug Bounty ID: OBB-1146007 Security Researcher myNickName Helped patch 200 vulnerabilities Received 2 Coordinated Disclosure badges , a holder of 2 badges for responsible and coordinated disclosure, found a security vulnerability affecting 041.videoplayer.jp website and its users. Following...

Android 7 - 9 VideoPlayer - ihevcd_parse_pps Out-of-Bounds Write

Android 7 - 9 VideoPlayer - ihevcdparsepps Out-of-Bounds Write CVE-2019-2107 - looks scary. Still remember Stagefright and PNG bugs vulns .... With CVE-2019-2107 the decoder/codec runs under mediacodec user and with properly "crafted" video with tiles enabled - pspps-i1tilesenabledflag you can...

Android 7 - 9 VideoPlayer - (ihevcd_parse_pps) Out-of-Bounds Write Exploit

CVE-2019-2107 - looks scary. Still remember Stagefright and PNG bugs vulns .... With CVE-2019-2107 the decoder/codec runs under mediacodec user and with properly "crafted" video with tiles enabled - pspps-i1tilesenabledflag you can possibly do RCE. The codec affected is HVEC a.k.a H.265 and MPEG-...

Android 7 - 9 VideoPlayer - 'ihevcd_parse_pps' Out-of-Bounds Write

CVE-2019-2107 - looks scary. Still remember Stagefright and PNG bugs vulns .... With CVE-2019-2107 the decoder/codec runs under mediacodec user and with properly "crafted" video with tiles enabled - pspps-i1tilesenabledflag you can possibly do RCE. The codec affected is HVEC a.k.a H.265 and MPEG-...

panasonic.com XSS vulnerability

Vulnerable URL: http://www.panasonic.com/globals/videoplayer/index.asp?xmlFile=--...

X360 VideoPlayer ActiveX Control Buffer Overflow Exploit

This Metasploit module exploits a buffer overflow in the VideoPlayer.ocx ActiveX installed with the X360 Software. By setting an overly long value to 'ConvertFile',an attacker can overrun a .data buffer to bypass ASLR/DEP and finally execute arbitrary code. This module requires Metasploit:...

X360 VideoPlayer ActiveX Control Buffer Overflow

This module exploits a buffer overflow in the VideoPlayer.ocx ActiveX installed with the X360 Software. By setting an overly long value to 'ConvertFile', an attacker can overrun a .data buffer to bypass ASLR/DEP and finally execute arbitrary code. This module requires Metasploit:...