CVE-2019-15296

An issue was discovered in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The faadresetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld-buffersize - words4, cast to uint32. If ld-buffersize - words4 is negative, a...

CVE-2018-14549

An issue has been found in libwav through 2017-04-20. It is a SEGV in the function wavwrite in libwav.c...

Denial Of Service (DoS)

ImageMagick is vulnerable to denial of service DoS attacks. These attacks are possible through the ReadDDSInfo function which can cause CPU exhaustion...

Format string vulnerability description-vulnerability warning-the black bar safety net

Formatted string, is also a relatively Common Vulnerability types. Will trigger the vulnerability function is limited. Main's printf and sprintf, and fprintf, and so the c library in the print family of functions. We first look at the printf function Declaration int printfconst char format,... Th...

Discuz UC_Server 本地文件包含漏洞（有条件限制）

简要描述： 怀着忐忑的心情提交了这个漏洞，依旧相信wooyun是一个良好的平台 赌上了作为一个白帽子的节操，不要在让他碎一地 详细说明： 条件一： 需要UC管理员权限。 条件二： 前台可上传带有PHP代码的可控文件。 漏洞函数onping在文件ucserver\control\admin\app.php function onping $ip = getgpc'ip'; $url = getgpc'url'; $appid = intvalgetgpc'appid'; $app = $ENV'app'-getappbyappid$appid; $status = '';...