8.6

CVSS4.0

CVE-2019-25611 - MiniFtp parseconf_load_setting Buffer Overflow via Configuration

MiniFtp contains a buffer overflow vulnerability in the parseconf_load_setting function that allows local attackers to execute arbitrary code by supplying oversized configuration values. Attackers can craft a miniftpd.conf file with values exceeding 128 bytes to overflow stack buffers and overwrite…

📅 Published: March 22, 2026, 1:38 p.m. 🔄 Last Modified: March 22, 2026, 1:38 p.m.

7.1

CVSS4.0

CVE-2019-25610 - NetNumber Titan Master 7.9.1 Path Traversal via drp

NetNumber Titan Master 7.9.1 contains a path traversal vulnerability in the drp endpoint that allows authenticated users to download arbitrary files by injecting directory traversal sequences. Attackers can manipulate the path parameter with base64-encoded payloads containing ../ sequences to bypas…

📅 Published: March 22, 2026, 1:38 p.m. 🔄 Last Modified: March 22, 2026, 1:38 p.m.

8.6

CVSS4.0

CVE-2019-25609 - JetAudio jetCast Server 2.0 Local SEH Buffer Overflow

JetAudio jetCast Server 2.0 contains a stack-based buffer overflow vulnerability in the Log Directory configuration field that allows local attackers to overwrite structured exception handling pointers. Attackers can inject alphanumeric encoded shellcode through the Log Directory field to trigger a…

📅 Published: March 22, 2026, 1:38 p.m. 🔄 Last Modified: March 22, 2026, 1:38 p.m.

8.6

CVSS4.0

CVE-2019-25608 - Iperius Backup 6.1.0 Privilege Escalation via Backup Job

Iperius Backup 6.1.0 contains a privilege escalation vulnerability that allows low-privilege users to execute arbitrary programs with elevated privileges by creating backup jobs. Attackers can configure backup jobs to execute malicious batch files or programs before or after backup operations, whic…

📅 Published: March 22, 2026, 1:38 p.m. 🔄 Last Modified: March 22, 2026, 1:38 p.m.

8.6

CVSS4.0

CVE-2019-25607 - Axessh 4.2 Local Stack-based Buffer Overflow via Log File Name

Axessh 4.2 contains a stack-based buffer overflow vulnerability in the log file name field that allows local attackers to execute arbitrary code by supplying an excessively long filename. Attackers can overflow the buffer at offset 214 bytes to overwrite the instruction pointer and execute shellcod…

📅 Published: March 22, 2026, 1:38 p.m. 🔄 Last Modified: March 22, 2026, 1:38 p.m.

6.8

CVSS4.0

CVE-2019-25606 - Fast AVI MPEG Joiner 1.2.0812 Buffer Overflow Denial of Service

Fast AVI MPEG Joiner 1.2.0812 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized payload in the License Name field. Attackers can create a malicious text file containing 6000 bytes of data and paste it into the License Name input …

📅 Published: March 22, 2026, 1:38 p.m. 🔄 Last Modified: March 22, 2026, 1:38 p.m.

8.7

CVSS4.0

CVE-2019-25605 - EquityPandit 1.0 Insecure Logging Information Disclosure

EquityPandit 1.0 contains an insecure logging vulnerability that allows attackers to capture sensitive user credentials by accessing developer console logs via Android Debug Bridge. Attackers can use adb logcat to extract plaintext passwords logged during the forgot password function, exposing user…

📅 Published: March 22, 2026, 1:38 p.m. 🔄 Last Modified: March 22, 2026, 1:38 p.m.

8.6

CVSS4.0

CVE-2019-25604 - DVDXPlayer Pro 5.5 Local Buffer Overflow with SEH

DVDXPlayer Pro 5.5 contains a local buffer overflow vulnerability with structured exception handling that allows local attackers to execute arbitrary code by crafting malicious playlist files. Attackers can create a specially crafted .plf file containing shellcode and NOP sleds that overflows a buf…

📅 Published: March 22, 2026, 1:38 p.m. 🔄 Last Modified: March 22, 2026, 1:38 p.m.

8.6

CVSS4.0

CVE-2019-25603 - TuneClone 2.20 Structured Exception Handler Buffer Overflow

TuneClone 2.20 contains a structured exception handler (SEH) buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious license code string. Attackers can craft a payload with a controlled buffer, NSEH jump instruction, and SEH handler address point…

📅 Published: March 22, 2026, 1:38 p.m. 🔄 Last Modified: March 22, 2026, 1:38 p.m.

6.8

CVSS4.0

CVE-2019-25602 - GSearch 1.0.1.0 Denial of Service via Search Input

GSearch 1.0.1.0 contains a denial of service vulnerability that allows local attackers to crash the application by inputting an excessively long string in the search bar. Attackers can paste a buffer of 2000 characters into the search field, click search, and select any result to trigger an applica…

📅 Published: March 22, 2026, 1:38 p.m. 🔄 Last Modified: March 22, 2026, 1:38 p.m.
Total resulsts: 339333
Page 2 of 33,934
« previous page » next page
Filters