20 matches found
EUVD-2025-3039
Malicious code in bioql PyPI...
EUVD-2025-2149
Malicious code in bioql PyPI...
CVE-2025-59050
Greenshot is an open source Windows screenshot utility. Greenshot 1.3.300 and earlier deserializes attacker-controlled data received in a WMCOPYDATA message using BinaryFormatter.Deserialize without prior validation or authentication, allowing a local process at the same integrity level to trigge...
GreenShot 安全漏洞
GreenShot is a lightweight screenshot software tool for Windows from GreenShot, Inc. A security vulnerability exists in GreenShot 1.3.300 and earlier versions that originates from deserializing attacker-controlled data in the WMCOPYDATA message without validation or authentication, which could...
CVE-2025-22894
Unprotected Windows messaging channel 'Shatter' issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker sends a specially crafted message to the specific process of the Windows system where the product is running, arbitrary files in the system may be altered. As a...
CVE-2025-20094
Unprotected Windows messaging channel 'Shatter' issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker sends a specially crafted message to the specific process of the Windows system where the product is running, arbitrary code may be executed with SYSTEM privilege...
CVE-2025-22894
Unprotected Windows messaging channel 'Shatter' issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker sends a specially crafted message to the specific process of the Windows system where the product is running, arbitrary files in the system may be altered. As a...
CVE-2025-22894
Unprotected Windows messaging channel 'Shatter' issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker sends a specially crafted message to the specific process of the Windows system where the product is running, arbitrary files in the system may be altered. As a...
CVE-2025-20094
Unprotected Windows messaging channel 'Shatter' issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker sends a specially crafted message to the specific process of the Windows system where the product is running, arbitrary code may be executed with SYSTEM privilege...
CVE-2025-20094
Unprotected Windows messaging channel 'Shatter' issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker sends a specially crafted message to the specific process of the Windows system where the product is running, arbitrary code may be executed with SYSTEM privilege...
CVE-2025-20094
Unprotected Windows messaging channel 'Shatter' issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker sends a specially crafted message to the specific process of the Windows system where the product is running, arbitrary code may be executed with SYSTEM privilege...
CVE-2025-22894
Unprotected Windows messaging channel 'Shatter' issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker sends a specially crafted message to the specific process of the Windows system where the product is running, arbitrary files in the system may be altered. As a...
CVE-2025-22894
CVE-2025-22894 involves an unprotected Windows messaging channel, named ‘Shatter’, in Defense Platform Home Edition (DPHE) v3.9.51.x and earlier. The issue allows a local attacker who can send a crafted message to a specific Windows process to alter system files and cause the execution of an arbi...
CVE-2025-22894
Unprotected Windows messaging channel 'Shatter' issue exists in Defense Platform Home Edition Ver.3.9.51.x and earlier. If an attacker sends a specially crafted message to the specific process of the Windows system where the product is running, arbitrary files in the system may be altered. As a...
PT-2025-5804
Name of the Vulnerable Software and Affected Versions: Defense Platform Home Edition versions 3.9.51.x and earlier Description: The issue is related to an unprotected Windows messaging channel, also known as 'Shatter'. This allows an attacker to send a specially crafted message to a specific...
PT-2025-5803
Name of the Vulnerable Software and Affected Versions: Defense Platform Home Edition versions 3.9.51.x and earlier Description: The issue exists due to an unprotected Windows messaging channel, also known as 'Shatter'. If an attacker sends a specially crafted message to the specific process of th...
CVE-2024-20663
Windows Message Queuing Client MSMQC Information Disclosure...
ArGoSoft Mail Server Pro Webmail viewheaders Multiple Field XSS
The remote host is running ArGoSoft Mail Server Pro, a messaging system for Windows. According to its banner, the webmail server bundled with the version of ArGoSoft Mail Server Pro installed on the remote host fails to properly filter message headers before displaying them as part of a message t...
Win32: Postmessage API security flaw
Hello, I would like to bring to your notice a certain vulnerability that has existed in Win 9x platforms for many years and now in Win2k/XP. Most of us our familiar with password revealers and password stealing trojans. Though flaws in Windows Messaging API have been show before this one relates ...
CVE-2000-0216
Affected software: Microsoft email clients (Outlook, Exchange, Windows Messaging). Vulnerability: servers/clients automatically respond to Read Receipt and Delivery Receipt tags. Root cause: auto-generated responses to receipt requests, enabling amplification by redirecting to a large distributio...