use after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2. Date published : 2022-03-27 https://huntr.dev/bounties/16b9d0ea-71ed-41bc-8a88-2deb4c20be8f https://github.com/mruby/mruby/commit/7f5a490d09f4d56801ac3a3e4e39e03e1471b44c
NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the ipv6_fix.cgi ipv6_wan_ipaddr, ipv6_lan_ipaddr, ipv6_wan_length, or ipv6_lan_length parameter. Date published : 2022-03-26 https://github.com/donothingme/VUL/blob/main/vul1/1.md
NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to admin_account.cgi. Date published : 2022-03-26 https://github.com/donothingme/VUL/blob/main/vul3/3.md
NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to password.cgi. Date published : 2022-03-26 https://github.com/donothingme/VUL/blob/main/vul2/2.md
libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by nm-new. Date published : 2022-03-26 https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105039 https://sourceware.org/bugzilla/show_bug.cgi?id=28995
tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_mpls in common/get.c. Date published : 2022-03-26 https://github.com/appneta/tcpreplay/issues/719
tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.c. Date published : 2022-03-26 https://github.com/appneta/tcpreplay/issues/716
tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c. Date published : 2022-03-26 https://github.com/appneta/tcpreplay/issues/718
tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_v6 in common/get.c. Date published : 2022-03-26 https://github.com/appneta/tcpreplay/issues/717
stb_image.h (aka the stb image loader) 2.19, as used in libsixel and other products, has a reachable assertion in stbi__create_png_image_raw. Date published : 2022-03-26 https://github.com/saitoha/libsixel/issues/163
Marky commit 3686565726c65756e was discovered to contain a remote code execution (RCE) vulnerability via the Display text fields. This vulnerability allows attackers to execute arbitrary code via injection of a crafted payload. Date published...
Notable v1.8.4 does not filter text editing, allowing attackers to execute arbitrary code via a crafted payload injected into the Title text field. Date published : 2022-03-26 https://github.com/notable/notable/issues/1595
phpIPAM 1.4.4 allows Reflected XSS and CSRF via app/admin/subnets/find_free_section_subnets.php of the subnets functionality. Date published : 2022-03-25 http://seclists.org/fulldisclosure/2022/May/43 http://packetstormsecurity.com/files/167227/PHPIPAM-1.4.4-Cross-Site-Request-Forgery-Cross-Site-Scripting.html
Incorrect permissions in the Bluetooth Services in the Fortessa FTBTLD Smart Lock as of 12-13-2022 allows a remote attacker to disable the lock via an unauthenticated edit to the lock name. Date published :...