CVE-2022-37823

Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function formSetVirtualSer...

EUVD-2019-11180

Malware in sbrugna...

EUVD-2023-55823

Malicious code in bioql PyPI...

EUVD-2021-31319

Malicious code in bioql PyPI...

EUVD-2022-40431

Malicious code in bioql PyPI...

CVE-2025-53184

Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability...

CVE-2024-28550

Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the filePath parameter of formExpandDlnaFile function...

CVE-2024-22955

swftools 0.9.2 was discovered to contain a stack-buffer-underflow vulnerability via the function parseExpression at swftools/src/swfc.c:2576...

CVE-2022-32417

PbootCMS v3.1.2 was discovered to contain a remote code execution RCE vulnerability via the function parserIfLabel at function.php...

CVE-2020-11834

In /SM8250QMaster/android/vendor/oppocharger/oppo/oppovooc.c, the function procfastchgfwupdatewrite in procfastchgfwupdatewrite does not check the parameter len, resulting in a vulnerability...

CVE-2025-45514

Tenda FH451 V1.0.0.9 has a stack overflow vulnerability in the function.frmL7ImForm...

CVE-2024-47540

GStreamer is a library for constructing graphs of media-handling components. An uninitialized stack variable vulnerability has been identified in the gstmatroskademuxaddwvpkheader function within matroska-demux.c. When size allocator-memunmapfull or mem-allocator-memunmap. This vulnerability coul...

CVE-2024-11262

CVE-2024-11262 affects SourceCodester Student Record Management System 1.0, specifically the View All Student Marks main function. The issue is a stack-based buffer overflow caused by manipulation in that component, enabling a local attack. Public exploit information exists, and multiple feeds de...

CVE-2024-50853

CVE-2024-50853 affects Tenda G3 firmware (version 3.0, v15.11.0.20). The vulnerability is a command injection in the formSetDebugCfg function caused by improper filtering of parameters (enable, level, module). Exploitation may allow an attacker to execute arbitrary commands via a crafted POST req...

CVE-2024-6808 itsourcecode Simple Task List signUp.php insertUserRecord sql injection

A vulnerability was found in itsourcecode Simple Task List 1.0. It has been classified as critical. This affects the function insertUserRecord of the file signUp.php. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2024-22955

swftools 0.9.2 was discovered to contain a stack-buffer-underflow vulnerability via the function parseExpression at swftools/src/swfc.c:2576...

CVE-2024-22919

swftools0.9.2 was discovered to contain a global-buffer-overflow vulnerability via the function parseExpression at swftools/src/swfc.c:2587...

SUSE-SU-2022:0134-2 Security update for python-numpy

This update for python-numpy fixes the following issues: - CVE-2021-33430: Fixed buffer overflow that could lead to DoS in PyArrayNewFromDescrint function of ctors.c bsc1193913. - CVE-2021-41496: Fixed buffer overflow that could lead to DoS in arrayfrompyobj function of fortranobject.c bsc1193907...

CVE-2022-42078

Tenda AC1206 USAC1206V1.0RTLV15.03.06.23multiTD01 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolRestoreSet...

Privilege Escalation

apport is vulnerable to privilege escalation. The getmodifiedconffiles function incorrect changed files...