HS Brand Logo Slider 2
Description
HS Brand Logo Slider 2
AI Analyst Comment
Remediation
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Search and filter 17282 vulnerabilities with AI analyst insights
HS Brand Logo Slider 2
HS Brand Logo Slider 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Atomic Alarm Clock 6
Atomic Alarm Clock 6
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Joomla com_hdwplayer 4
Joomla com_hdwplayer 4
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Hirschmann HiOS devices versions prior to 08
Hirschmann HiOS devices versions prior to 08
---METADATA---
VENDOR: Hirschmann
PRODUCT: HiOS
AFFECTED_VERSIONS: Hirschmann HiOS devices versions prior to 08
---END_METADATA---
Description Summary:
A late-disclosure vulnerability in Hirschmann HiOS devices prior to version 08 poses a high-severity risk to network infrastructure security.
Executive Summary:
Older versions of Hirschmann HiOS firmware are subject to a high-severity vulnerability that could facilitate unauthorized access to industrial network devices.
Vulnerability Details
CVE-ID: CVE-2020-37216
Affected Software: Hirschmann HiOS
Affected Versions: Hirschmann HiOS devices versions prior to 08
Vulnerability: This vulnerability affects legacy versions of the HiOS firmware. Although it was disclosed late, the CVSS score of 7.5 indicates a significant flaw that likely permits an attacker to bypass security controls or impact device availability.
Business Impact
The presence of this vulnerability in industrial switches can lead to unauthorized network control and potential disruption of critical OT processes. The high severity reflects the risk of long-term exposure in environments where firmware updates are infrequently applied, potentially leading to persistent unauthorized access.
Remediation Plan
Immediate Action: Immediately upgrade all Hirschmann HiOS devices to version 08 or higher to remediate this long-standing vulnerability.
Proactive Monitoring: Conduct a thorough audit of network device logs for any historical signs of unauthorized access or unusual configuration changes.
Compensating Controls: Implement network segmentation to isolate vulnerable legacy devices and use hardware-based firewalls to restrict management traffic.
Exploitation Status
Public Exploit Available: false
Analyst Notes: This is a late disclosure of a 2020 vulnerability. As of April 4, 2026, there is no public information indicating active exploitation, but the age of the flaw increases the likelihood that exploit methods may be known in closed communities.
Analyst Recommendation
The age and severity of this vulnerability make immediate patching mandatory for any remaining legacy installations. Organizations must transition away from HiOS versions prior to 08 to ensure the security of their network infrastructure.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
NBMonitor 1
NBMonitor 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Duplicate Cleaner Pro 4
Duplicate Cleaner Pro 4
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' i...
Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the application by providing an oversized r...
Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the application by providing an oversized registration key
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
BlueAuditor 1
BlueAuditor 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Backup Key Recovery 2
Backup Key Recovery 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
ZIP Password Recovery 2
ZIP Password Recovery 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Top Password Software Dialup Password Recovery 1
Top Password Software Dialup Password Recovery 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Top Password Firefox Password Recovery 2
Top Password Firefox Password Recovery 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
TaskCanvas 1
TaskCanvas 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
SpotOutlook 1
SpotOutlook 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
SpotDialup 1
SpotDialup 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Chevereto 3.13.4 Core contains a remote code execution vulnerability where attackers can inject a PHP shell via the database table prefix parameter du...
Chevereto 3.13.4 Core contains a remote code execution vulnerability where attackers can inject a PHP shell via the database table prefix parameter during installation.
---METADATA---
VENDOR: Chevereto
PRODUCT: Chevereto Core
AFFECTED_VERSIONS: 3.13.4
---END_METADATA---
Description Summary:
Chevereto 3.13.4 Core contains a remote code execution vulnerability where attackers can inject a PHP shell via the database table prefix parameter during installation.
Executive Summary:
An attacker can achieve remote code execution on Chevereto servers by manipulating database configuration parameters to install a malicious PHP shell file.
Vulnerability Details
CVE-ID: CVE-2020-37186
Affected Software: Chevereto Chevereto Core
Affected Versions: 3.13.4
Vulnerability: This is a Remote Code Execution (RCE) vulnerability. During the database configuration phase, an attacker can manipulate the "table prefix" parameter in a POST request to write arbitrary PHP code into a shell file on the server.
Business Impact
A successful exploit grants the attacker the ability to execute arbitrary system commands, leading to complete server takeover, data theft, and the ability to use the server as a pivot point for further internal network attacks. The CVSS score of 9.8 reflects the maximum threat level.
Remediation Plan
Immediate Action: Update Chevereto to the latest secure version. If the installation process is currently active, ensure it is performed in a secured, non-public environment.
Proactive Monitoring: Scan the web root for any unauthorized .php files, particularly those created during or shortly after the installation timestamp.
Compensating Controls: Disable the installation script (typically the install directory) immediately after the initial setup is complete to prevent unauthorized access to configuration functions.
Exploitation Status
Public Exploit Available: No
Analyst Notes: This is a late-disclosure vulnerability. Although first identified in 2020, its publication in 2026 serves as a critical reminder to secure installation scripts. The nature of the flaw makes it a prime target for automated exploitation scripts.
Analyst Recommendation
Remote Code Execution is the most severe class of vulnerability. IT teams must ensure that no Chevereto instances are running version 3.13.4 and that all installation directories are removed or restricted to prevent unauthenticated attackers from re-triggering the configuration process.
Update HP shell file to the latest version. Monitor for exploitation attempts and review access logs.
Backup Key Recovery 2
Backup Key Recovery 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Allok Video Converter 4.6.1217 contains a stack overflow vulnerability in the License Name field, allowing attackers to execute arbitrary code via SEH...
Allok Video Converter 4.6.1217 contains a stack overflow vulnerability in the License Name field, allowing attackers to execute arbitrary code via SEH handler overwrites.
---METADATA---
VENDOR: Allok Soft
PRODUCT: Allok Video Converter
AFFECTED_VERSIONS: 4.6.1217
---END_METADATA---
Description Summary:
Allok Video Converter 4.6.1217 contains a stack overflow vulnerability in the License Name field, allowing attackers to execute arbitrary code via SEH handler overwrites.
Executive Summary:
A stack-based buffer overflow in Allok Video Converter allows an attacker to execute arbitrary system commands by providing a specially crafted payload in the License Name input field.
Vulnerability Details
CVE-ID: CVE-2020-37184
Affected Software: Allok Soft Allok Video Converter
Affected Versions: 4.6.1217
Vulnerability: This is a stack overflow vulnerability located in the License Name input field. By injecting malicious bytecode, an attacker can overwrite Structured Exception Handler (SEH) records to gain control of the execution flow and execute arbitrary code.
Business Impact
Successful exploitation allows for full system compromise on the machine running the software. Given the CVSS score of 9.8, the risk is critical; an attacker could gain a foothold in the corporate network, install persistent malware, or steal sensitive user data.
Remediation Plan
Immediate Action: Discontinue the use of Allok Video Converter version 4.6.1217 and update to the latest available version provided by the vendor.
Proactive Monitoring: Monitor endpoint detection and response (EDR) systems for unusual process spawning from the Allok Video Converter executable.
Compensating Controls: Implement application whitelisting and restrict administrative privileges for end-users to limit the impact of a successful software-based exploit.
Exploitation Status
Public Exploit Available: No
Analyst Notes: This is a late-disclosure vulnerability from 2020, published in 2026. While no active exploitation is currently reported, the technical details provided make the creation of a functional exploit highly feasible for skilled actors.
Analyst Recommendation
Because this vulnerability allows for remote code execution via a simple input field, it is classified as critical. Organizations should immediately identify and update or remove this software from all workstations to mitigate the risk of local privilege escalation or remote compromise.
Update the License Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Allok RM RMVB to AVI MPEG DVD Converter 3.6.1217 contains a stack overflow in the License Name input field, allowing attackers to overwrite SEH regist...
Allok RM RMVB to AVI MPEG DVD Converter 3.6.1217 contains a stack overflow in the License Name input field, allowing attackers to overwrite SEH registers and execute arbitrary code.
---METADATA---
VENDOR: Allok
PRODUCT: RM RMVB to AVI MPEG DVD Converter
AFFECTED_VERSIONS: 3.6.1217
---END_METADATA---
Description Summary:
Allok RM RMVB to AVI MPEG DVD Converter 3.6.1217 contains a stack overflow in the License Name input field, allowing attackers to overwrite SEH registers and execute arbitrary code.
Executive Summary:
Allok Converter software is vulnerable to a stack-based buffer overflow that allows attackers to execute arbitrary system commands via a malicious license input.
Vulnerability Details
CVE-ID: CVE-2020-37183
Affected Software: Allok RM RMVB to AVI MPEG DVD Converter
Affected Versions: 3.6.1217
Vulnerability: A stack overflow vulnerability exists in the License Name input field of the application. By entering a specially crafted, overly long string, an attacker can overwrite the Structured Exception Handler (SEH) registers to execute arbitrary code.
Business Impact
This flaw allows an attacker to execute system commands, such as launching applications or downloading malware, under the context of the current user. The CVSS score of 9.8 indicates a critical risk to the integrity and confidentiality of the host system, particularly if the software is used in a business environment.
Remediation Plan
Immediate Action: Update the Allok Converter to the latest available version or replace it with a secure alternative.
Proactive Monitoring: Use host-based intrusion prevention systems (HIPS) to detect and block buffer overflow attempts against desktop applications.
Compensating Controls: Restrict the ability of standard users to install or run unapproved third-party software that may contain legacy vulnerabilities.
Exploitation Status
Public Exploit Available: No
Analyst Notes: This 2020 vulnerability was disclosed late. There is no evidence of widespread active exploitation, but the flaw remains a viable vector for local privilege escalation or initial execution.
Analyst Recommendation
Immediate action is required to either patch or remove this software. Legacy converters are frequent sources of buffer overflow vulnerabilities, and maintaining them poses an unnecessary risk to the organizational security posture.
Update Allok Multiple Products to the latest version. Check vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
Redir 3
Redir 3
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Torrent FLV Converter 1.51 Build 117 contains a stack overflow vulnerability in the registration code input, allowing attackers to execute arbitrary c...
Torrent FLV Converter 1.51 Build 117 contains a stack overflow vulnerability in the registration code input, allowing attackers to execute arbitrary code via SEH overwrite on Windows 32-bit systems.
---METADATA---
VENDOR: Torrent
PRODUCT: FLV Converter
AFFECTED_VERSIONS: 1.51 Build 117
---END_METADATA---
Description Summary:
Torrent FLV Converter 1.51 Build 117 contains a stack overflow vulnerability in the registration code input, allowing attackers to execute arbitrary code via SEH overwrite on Windows 32-bit systems.
Executive Summary:
Torrent FLV Converter is vulnerable to a stack-based buffer overflow that could allow an attacker to execute malicious code on the host system.
Vulnerability Details
CVE-ID: CVE-2020-37181
Affected Software: Torrent FLV Converter
Affected Versions: 1.51 Build 117
Vulnerability: A stack overflow vulnerability exists when processing registration codes. By providing a specially crafted input, an attacker can trigger a buffer overflow to overwrite the Structured Exception Handler (SEH), leading to arbitrary code execution on 32-bit Windows systems.
Business Impact
Exploitation allows for local code execution with the privileges of the user running the application. This could lead to data theft, malware installation, or system instability. The CVSS score of 9.8 reflects the high potential for impact, though exploitation typically requires the user to input a malicious string.
Remediation Plan
Immediate Action: Discontinue the use of the vulnerable version and update to a patched release or migrate to a supported alternative converter.
Proactive Monitoring: Use endpoint detection and response (EDR) tools to monitor for suspicious process spawns (e.g., cmd.exe or powershell.exe) from the converter application.
Compensating Controls: Enable Windows security features such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to make exploitation more difficult.
Exploitation Status
Public Exploit Available: No
Analyst Notes: This is a late disclosure of a 2020 vulnerability. As of Feb 11, 2026, there is no evidence of active exploitation, but the technical details for SEH overwrites are well-documented.
Analyst Recommendation
Users should avoid using legacy software that does not receive regular security updates. The primary recommendation is to update the software immediately or replace it with a modern, secure equivalent to mitigate the risk of code execution.
Update Torrent Multiple Products to the latest version. Check vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
GTalk Password Finder 2
GTalk Password Finder 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
APKF Product Key Finder 2
APKF Product Key Finder 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
KeePass Password Safe versions before 2
KeePass Password Safe versions before 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
BOOTP Turbo 2
BOOTP Turbo 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Torrent 3GP Converter 1.51 is vulnerable to a stack overflow via the registration dialog, allowing attackers to overwrite SEH registers and execute ar...
Torrent 3GP Converter 1.51 is vulnerable to a stack overflow via the registration dialog, allowing attackers to overwrite SEH registers and execute arbitrary code on the host system.
---METADATA---
VENDOR: Torrent
PRODUCT: 3GP Converter
AFFECTED_VERSIONS: 1.51
---END_METADATA---
Description Summary:
Torrent 3GP Converter 1.51 is vulnerable to a stack overflow via the registration dialog, allowing attackers to overwrite SEH registers and execute arbitrary code on the host system.
Executive Summary:
Torrent 3GP Converter contains a critical stack overflow vulnerability that permits arbitrary code execution through a malicious registration payload.
Vulnerability Details
CVE-ID: CVE-2020-37176
Affected Software: Torrent 3GP Converter
Affected Versions: 1.51
Vulnerability: The application is susceptible to a stack-based buffer overflow within its registration dialog. An attacker can craft a malicious payload that overwrites the Structured Exception Handler (SEH) registers, leading to the execution of arbitrary code when the overflow is triggered.
Business Impact
A successful exploit grants the attacker the ability to execute code with the same privileges as the application user. This could result in the installation of malware or unauthorized access to local files. The CVSS score of 9.8 reflects the critical potential for system-wide impact if the application is run with elevated privileges.
Remediation Plan
Immediate Action: Update to the latest version of Torrent 3GP Converter or uninstall the software if it is no longer required for business operations.
Proactive Monitoring: Monitor for suspicious child processes being created by the converter application, which may indicate successful shellcode execution.
Compensating Controls: Implement application whitelisting and ensure that users do not run media conversion software with administrative privileges.
Exploitation Status
Public Exploit Available: No
Analyst Notes: This is a late disclosure from 2020. While no active exploitation is currently reported, the vulnerability is a classic buffer overflow that is well-understood by threat actors.
Analyst Recommendation
The risk of arbitrary code execution necessitates immediate remediation. Organizations should prioritize updating the software or transitioning to a more modern, actively supported media conversion utility to ensure continued security.
Update Torrent Multiple Products to the latest version. Check vendor security advisory for specific patch details. Monitor for exploitation attempts and review access logs.
P2PWIFICAM2 for iOS 10
P2PWIFICAM2 for iOS 10
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
AVideo Platform 8
AVideo Platform 8
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Ecommerce Systempay 1.0 uses a weak cryptographic implementation, allowing attackers to brute-force the production secret key and forge payment signat...
Ecommerce Systempay 1.0 uses a weak cryptographic implementation, allowing attackers to brute-force the production secret key and forge payment signatures.
---METADATA---
VENDOR: Ecommerce Systempay
PRODUCT: Systempay
AFFECTED_VERSIONS: 1.0
---END_METADATA---
Description Summary:
Ecommerce Systempay 1.0 uses a weak cryptographic implementation, allowing attackers to brute-force the production secret key and forge payment signatures.
Executive Summary:
A critical cryptographic weakness in Ecommerce Systempay 1.0 allows attackers to forge payment signatures and manipulate transaction data.
Vulnerability Details
CVE-ID: CVE-2020-37168
Affected Software: Ecommerce Systempay 1.0
Affected Versions: 1.0
Vulnerability: The software employs an insecure cryptographic implementation for its 16-character production secret key. An attacker can perform a brute-force attack on the key using captured POST requests, subsequently allowing for the forging of valid payment signatures.
Business Impact
With a CVSS score of 9.8, this flaw presents a direct financial risk. Attackers can manipulate transaction amounts and payment data, leading to significant financial losses, fraud, and potential regulatory penalties for non-compliance with payment processing standards (e.g., PCI-DSS).
Remediation Plan
Immediate Action: Upgrade to the latest version of the Ecommerce Systempay software and rotate all secret keys immediately.
Proactive Monitoring: Monitor payment transaction logs for inconsistencies, such as unexpected transaction amounts or signatures that do not match expected patterns.
Compensating Controls: Implement strict rate limiting on the payment endpoint to prevent brute-force attempts on the secret key.
Exploitation Status
Public Exploit Available: Unknown
Analyst Notes: As of May 13, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Financial integrity is paramount; the ability to forge payment signatures effectively negates the security of the entire payment workflow. Organizations must prioritize upgrading this component and treat all transaction data processed through this version as potentially compromised.
Update Ecommerce Systempay Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
ClamAV ClamBC bytecode interpreter contains a vulnerability in function name processing that allows attackers to manipulate bytecode function names. A...
ClamAV ClamBC bytecode interpreter contains a vulnerability in function name processing that allows attackers to manipulate bytecode function names. Attackers can exploit the weak input validation in function name encoding to potentially execute malicious bytecode or cause unexpected behavior in the ClamAV engine.
---METADATA---
VENDOR: ClamAV
PRODUCT: ClamBC
AFFECTED_VERSIONS: See vendor advisory
CONFIDENCE: medium
MISSING: versions, patch
---END_METADATA---
Description Summary:
The ClamAV ClamBC bytecode interpreter contains a vulnerability in function name processing that allows for potential arbitrary bytecode execution via weak input validation.
Executive Summary:
A critical vulnerability in the ClamAV ClamBC bytecode interpreter may allow attackers to execute malicious code via manipulated function name inputs.
Vulnerability Details
CVE-ID: CVE-2020-37167
Affected Software: ClamAV ClamBC
Affected Versions: See vendor advisory
Vulnerability: The vulnerability stems from weak input validation within the bytecode interpreter's function name processing, which may be exploited by an attacker to execute malicious bytecode or trigger unexpected engine behavior.
Business Impact
With a CVSS score of 9.8, this vulnerability represents a severe risk to any environment relying on ClamAV for malware scanning. Successful exploitation could lead to remote code execution on the scanning server, effectively turning a security tool into an attack vector and potentially compromising the integrity of the entire network.
Remediation Plan
Immediate Action: Consult the official ClamAV security advisories to identify and install the patched version that addresses the ClamBC bytecode interpreter flaw.
Proactive Monitoring: Monitor scanning engine processes for crashes or anomalous resource consumption, which may indicate attempted exploitation of the bytecode interpreter.
Compensating Controls: If patching is delayed, isolate ClamAV instances to a restricted environment with minimal network access to prevent successful exploitation from impacting internal systems.
Exploitation Status
Public Exploit Available: Unknown
Analyst Notes: As of Feb 12, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Organizations using the ClamAV engine should verify their current version and apply security updates as soon as they are available. The potential for remote code execution in a core security component necessitates urgent attention.
Update function name Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
QuickDate 1
QuickDate 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
A stack-based buffer overflow in Wedding Slideshow Studio 1.36 allows attackers to execute arbitrary code by supplying a malicious 1608-byte registrat...
A stack-based buffer overflow in Wedding Slideshow Studio 1.36 allows attackers to execute arbitrary code by supplying a malicious 1608-byte registration key.
---METADATA---
VENDOR: Wedding Slideshow Studio
PRODUCT: Wedding Slideshow Studio
AFFECTED_VERSIONS: 1.36
---END_METADATA---
Description Summary:
A stack-based buffer overflow in Wedding Slideshow Studio 1.36 allows attackers to execute arbitrary code by supplying a malicious 1608-byte registration key.
Executive Summary:
Wedding Slideshow Studio 1.36 is susceptible to a critical buffer overflow that allows attackers to execute arbitrary code by supplying a 1608-byte payload in the registration key field.
Vulnerability Details
CVE-ID: CVE-2020-37162
Affected Software: Wedding Slideshow Studio Wedding Slideshow Studio
Affected Versions: 1.36
Vulnerability: A stack-based buffer overflow exists in the registration key input mechanism of the application. By providing a malicious payload of exactly 1608 bytes, an attacker can overwrite the stack and redirect execution flow to arbitrary commands.
Business Impact
The vulnerability facilitates complete system compromise through remote code execution. The CVSS score of 9.8 underscores the high risk, as an attacker could potentially use this flaw to install malware, steal sensitive user data, or disrupt business operations.
Remediation Plan
Immediate Action: Immediately update Wedding Slideshow Studio to the latest version or apply any available vendor patches specifically targeting the registration module.
Proactive Monitoring: Monitor for crashed application instances which may indicate failed or successful exploitation attempts involving stack exhaustion.
Compensating Controls: Deploy host-based intrusion prevention systems (HIPS) to detect and block stack-based overflow attempts in real-time.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 7, 2026, there is no public information indicating active exploitation of this vulnerability. This vulnerability is distinct from CVE-2020-37161 as it targets the registration key field rather than the name field.
Analyst Recommendation
The presence of multiple critical buffer overflows in the same version of this software indicates a significant lack of secure coding practices. Immediate updating is mandatory to mitigate the risk of arbitrary code execution.
Update the registration Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Wedding Slideshow Studio 1.36 contains a buffer overflow in the registration name field, allowing attackers to execute arbitrary system commands via a...
Wedding Slideshow Studio 1.36 contains a buffer overflow in the registration name field, allowing attackers to execute arbitrary system commands via a malicious payload.
---METADATA---
VENDOR: Wedding Slideshow Studio
PRODUCT: Wedding Slideshow Studio
AFFECTED_VERSIONS: 1.36
---END_METADATA---
Description Summary:
Wedding Slideshow Studio 1.36 contains a buffer overflow in the registration name field, allowing attackers to execute arbitrary system commands via a malicious payload.
Executive Summary:
A critical buffer overflow vulnerability in Wedding Slideshow Studio 1.36 allows attackers to execute arbitrary system commands by providing a malicious registration name.
Vulnerability Details
CVE-ID: CVE-2020-37161
Affected Software: Wedding Slideshow Studio Wedding Slideshow Studio
Affected Versions: 1.36
Vulnerability: This vulnerability is a classic buffer overflow located in the "registration name" input field. An attacker can craft a specially designed payload that, when entered into the registration field, triggers memory corruption and allows for the execution of arbitrary commands, such as launching system utilities.
Business Impact
Successful exploitation grants the attacker the ability to run code with the privileges of the logged-in user. With a CVSS score of 9.8, this flaw could be used as an entry point for further exploitation of the host system and the local network.
Remediation Plan
Immediate Action: Update Wedding Slideshow Studio to the latest version to address the improper handling of registration input.
Proactive Monitoring: Review application logs for unusually long strings entered into registration or configuration fields.
Compensating Controls: Implement application whitelisting to prevent the execution of unauthorized binaries or scripts spawned by the slideshow software.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 7, 2026, there is no public information indicating active exploitation of this vulnerability. The vulnerability demonstrates a fundamental failure in input validation within the registration module.
Analyst Recommendation
Due to the critical severity and the potential for remote code execution, it is recommended that this software be updated or removed immediately. Organizations should ensure that all third-party media software is included in regular vulnerability scanning cycles.
Update Wedding Slideshow Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
Parallaxis Cuckoo Clock 5.0 is vulnerable to a buffer overflow in alarm scheduling, enabling shellcode execution via EIP and EBP register overwrites.
Parallaxis Cuckoo Clock 5.0 is vulnerable to a buffer overflow in alarm scheduling, enabling shellcode execution via EIP and EBP register overwrites.
---METADATA---
VENDOR: Parallaxis
PRODUCT: Cuckoo Clock
AFFECTED_VERSIONS: 5.0
---END_METADATA---
Description Summary:
Parallaxis Cuckoo Clock 5.0 is vulnerable to a buffer overflow in alarm scheduling, enabling shellcode execution via EIP and EBP register overwrites.
Executive Summary:
Parallaxis Cuckoo Clock 5.0 contains a critical memory corruption flaw that allows attackers to execute arbitrary shellcode by exploiting the alarm scheduling function.
Vulnerability Details
CVE-ID: CVE-2020-37159
Affected Software: Parallaxis Cuckoo Clock
Affected Versions: 5.0
Vulnerability: The application suffers from a buffer overflow within the alarm scheduling feature. By submitting a malicious payload exceeding 260 bytes, an attacker can overwrite critical memory registers, including EIP and EBP, allowing for the execution of arbitrary shellcode with the privileges of the application.
Business Impact
A successful exploit could lead to full remote code execution on the host machine. The CVSS score of 9.8 indicates that the vulnerability is easily exploitable and results in a total loss of confidentiality, integrity, and availability for the affected system.
Remediation Plan
Immediate Action: Update the Parallaxis Cuckoo Clock software to the most recent version or decommission the software if it is no longer required for business operations.
Proactive Monitoring: Scan for anomalous payloads in application-specific configuration files and monitor for unexpected changes to the EIP/EBP registers during runtime.
Compensating Controls: Utilize Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) at the operating system level to mitigate the effectiveness of buffer overflow attacks.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of Feb 7, 2026, there is no public information indicating active exploitation of this vulnerability. Despite its age, the technical simplicity of the overflow makes it a prime target for automated exploitation tools.
Analyst Recommendation
This vulnerability presents a critical risk to endpoint security due to the potential for arbitrary code execution. Users are urged to apply the vendor-provided updates immediately to secure their systems against memory corruption attacks.
Update Parallaxis Cuckoo Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
DBPower C300 HD Camera contains a configuration disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive credentials throu...
DBPower C300 HD Camera contains a configuration disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive credentials through an unprotected configuration backup endpoint
---METADATA---
VENDOR: DBPower
PRODUCT: C300 HD Camera
AFFECTED_VERSIONS: See vendor advisory for affected versions
---END_METADATA---
Description Summary:
DBPower C300 HD Camera contains a configuration disclosure vulnerability. Unauthenticated attackers can retrieve sensitive credentials via an unprotected configuration backup endpoint.
Executive Summary:
The DBPower C300 HD Camera suffers from a critical configuration disclosure vulnerability that allows unauthenticated attackers to steal sensitive credentials.
Vulnerability Details
CVE-ID: CVE-2020-37157
Affected Software: DBPower C300 HD Camera
Affected Versions: See vendor advisory for affected versions
Vulnerability: This vulnerability involves an unprotected configuration backup endpoint. An unauthenticated attacker can access this endpoint to download configuration files containing sensitive credentials and system settings without any form of authentication.
Business Impact
The impact of credential theft from an IoT device is severe, as it allows attackers to gain full administrative control over the camera. This could lead to unauthorized surveillance, loss of privacy, and the potential for the device to be recruited into a botnet. The CVSS score of 7.5 reflects the high risk associated with the ease of access to these sensitive credentials.
Remediation Plan
Immediate Action: Update the camera firmware to the latest version provided by DBPower to secure the backup endpoint.
Proactive Monitoring: Monitor for unusual outbound traffic from IoT devices and audit web server logs for hits on backup or configuration file paths.
Compensating Controls: Disable any unnecessary cloud or remote access features on the camera and ensure it is behind a robust firewall that restricts access to the web management interface.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 8, 2026, there is no public information indicating active exploitation of this vulnerability. This late-disclosure vulnerability is particularly dangerous because the exposure of credentials often leads to persistent access for attackers.
Analyst Recommendation
Immediate remediation is required to prevent the unauthorized disclosure of device credentials. Organizations and home users should verify firmware versions and ensure that these devices are not exposed to the public internet, as the unauthenticated nature of the flaw makes it highly exploitable.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Core FTP Lite 1
Core FTP Lite 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
eLection 2
eLection 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
ASTPP 4.0.1 is vulnerable to XSS and command injection in SIP and plugin management interfaces, allowing attackers to hijack sessions and execute code...
ASTPP 4.0.1 is vulnerable to XSS and command injection in SIP and plugin management interfaces, allowing attackers to hijack sessions and execute code with root permissions.
---METADATA---
VENDOR: ASTPP
PRODUCT: Open Source Smart VoIP Billing Solution
AFFECTED_VERSIONS: 4.0.1
---END_METADATA---
Description Summary:
ASTPP 4.0.1 is vulnerable to XSS and command injection in SIP and plugin management interfaces, allowing attackers to hijack sessions and execute code with root permissions.
Executive Summary:
ASTPP 4.0.1 contains multiple critical flaws that enable attackers to gain root-level access and hijack administrator sessions through command injection and XSS.
Vulnerability Details
CVE-ID: CVE-2020-37153
Affected Software: ASTPP (Open Source Smart VoIP Billing Solution)
Affected Versions: 4.0.1
Vulnerability: The application suffers from multiple flaws including cross-site scripting (XSS) and command injection within the SIP device configuration and plugin management modules. Attackers can leverage these to inject system commands or manipulate cron tasks to achieve root-level code execution.
Business Impact
The compromise of a VoIP billing solution can lead to massive financial fraud, interception of sensitive communication data, and total system takeover. The CVSS score of 9.8 highlights the critical nature of these flaws, as they can lead to full administrative compromise and persistent access via cron manipulation.
Remediation Plan
Immediate Action: Upgrade ASTPP installations to the latest stable version where these vulnerabilities have been addressed.
Proactive Monitoring: Monitor system cron jobs for unauthorized changes and audit administrator session logs for suspicious activity or session hijacking indicators.
Compensating Controls: Use a WAF to filter malicious input in SIP configuration fields and enforce strict IP whitelisting for the management interface.
Exploitation Status
Public Exploit Available: No
Analyst Notes: As of Feb 11, 2026, there is no public information indicating active exploitation. This is a late disclosure of a 2020 vulnerability, suggesting that legacy systems may still be at risk.
Analyst Recommendation
Given the potential for root-level access and the sensitive nature of VoIP billing data, this vulnerability must be addressed with high urgency. Administrators should move away from version 4.0.1 immediately and conduct a thorough audit of their system configurations for any signs of past tampering.
Update AWS to inject to the latest version. Monitor for exploitation attempts and review access logs.
phpMyChat Plus 1
phpMyChat Plus 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Edimax EW-7438RPn-v3 Mini 1
Edimax EW-7438RPn-v3 Mini 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Edimax EW-7438RPn-v3 Mini 1
Edimax EW-7438RPn-v3 Mini 1
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
ATutor 2
ATutor 2
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
ACE Security WiP-90113 HD Camera contains a configuration disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive configu...
ACE Security WiP-90113 HD Camera contains a configuration disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive configuration files
---METADATA---
VENDOR: ACE Security
PRODUCT: WiP-90113 HD Camera
AFFECTED_VERSIONS: See vendor advisory for affected versions
---END_METADATA---
Description Summary:
ACE Security WiP-90113 HD Camera contains a configuration disclosure vulnerability. Unauthenticated attackers can remotely retrieve sensitive configuration files from the device.
Executive Summary:
The ACE Security WiP-90113 HD Camera is vulnerable to an unauthenticated configuration disclosure flaw that allows attackers to steal sensitive device information.
Vulnerability Details
CVE-ID: CVE-2020-37146
Affected Software: ACE Security WiP-90113 HD Camera
Affected Versions: See vendor advisory for affected versions
Vulnerability: This vulnerability is a configuration disclosure flaw that allows an unauthenticated, remote attacker to retrieve sensitive configuration files. The lack of proper access controls on the device's web interface enables the extraction of critical system settings.
Business Impact
The exposure of configuration files represents a critical privacy and security breach. Attackers can use the extracted data to gain deeper access to the camera, potentially viewing live feeds or using the device as a pivot point into the local network. With a CVSS score of 7.5, this vulnerability threatens the physical security and data privacy of the environment where the camera is deployed.
Remediation Plan
Immediate Action: Apply the latest firmware update from ACE Security to address the insecure configuration endpoint.
Proactive Monitoring: Inspect network traffic for unauthorized HTTP requests targeting configuration paths on IoT camera devices.
Compensating Controls: Place IP cameras on a segmented VLAN with no direct access to the internet and implement strict firewall rules to block unauthorized inbound traffic.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of February 8, 2026, there is no public information indicating active exploitation of this vulnerability. Despite being a late disclosure, the unauthenticated nature of the flaw makes it a high-priority target for automated scanners.
Analyst Recommendation
The ability for unauthenticated users to pull sensitive configuration data is a major security failure. Administrators must ensure that all ACE Security WiP-90113 cameras are updated immediately and isolated from public-facing networks to mitigate the risk of unauthorized surveillance or network intrusion.
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
ProficySCADA for iOS 5
ProficySCADA for iOS 5
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
10-Strike Network Inventory Explorer 8
10-Strike Network Inventory Explorer 8
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
AMSS++ version 4
AMSS++ version 4
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
Odin Secure FTP Expert 7
Odin Secure FTP Expert 7
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
A stack-based buffer overflow in the 10-Strike Network Inventory Explorer file import functionality allows remote attackers to execute arbitrary code...
A stack-based buffer overflow in the 10-Strike Network Inventory Explorer file import functionality allows remote attackers to execute arbitrary code via a malicious text file.
---METADATA---
VENDOR: 10-Strike Software
PRODUCT: Network Inventory Explorer
AFFECTED_VERSIONS: 9.03
---END_METADATA---
Description Summary:
A stack-based buffer overflow in the 10-Strike Network Inventory Explorer file import functionality allows remote attackers to execute arbitrary code via a malicious text file.
Executive Summary:
A critical buffer overflow vulnerability in 10-Strike Network Inventory Explorer allows remote attackers to execute arbitrary code by tricking a user into importing a malicious file.
Vulnerability Details
CVE-ID: CVE-2020-37138
Affected Software: 10-Strike Network Inventory Explorer
Affected Versions: 9.03
Vulnerability: The vulnerability exists in the file import feature. By crafting a malicious text file with a specifically constructed payload, an attacker can trigger a stack-based buffer overflow. This allows the attacker to bypass Data Execution Prevention (DEP) using a ROP chain and execute arbitrary code on the system.
Business Impact
Network Inventory Explorer is typically used by system administrators to manage corporate assets. A compromise of this tool could allow an attacker to gain administrative access to the management workstation, leading to the theft of network topology data, credentials, and potential lateral movement. The CVSS score of 9.8 underscores the severe impact of this RCE flaw.
Remediation Plan
Immediate Action: Update 10-Strike Network Inventory Explorer to the latest version. Avoid importing files from untrusted or unknown sources until the update is applied.
Proactive Monitoring: Use Endpoint Detection and Response (EDR) tools to monitor the Network Inventory Explorer process for suspicious child processes or memory anomalies.
Compensating Controls: Restrict the application's permissions to the minimum required for its function and use sandboxing for file import operations where possible.
Exploitation Status
Public Exploit Available: No
Analyst Notes: This 2020 vulnerability was disclosed in 2026. The use of ROP chains indicates a sophisticated exploitation path that can bypass modern OS protections like DEP.
Analyst Recommendation
Because this tool is central to asset management, its security is paramount. We recommend an immediate update to the latest version provided by 10-Strike Software. Administrators should be cautioned against importing inventory data from any source that has not been strictly verified, as this is the primary infection vector.
Update the file Multiple Products to the latest version. Monitor for exploitation attempts and review access logs.
ZOC Terminal 7
ZOC Terminal 7
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
---METADATA---
VENDOR: Unknown
PRODUCT: HS Brand Logo Slider 2
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
CONFIDENCE: low
MISSING: versions, patch, exploit_status, technical_details
---END_METADATA---
Description Summary:
The HS Brand Logo Slider 2 plugin contains an unspecified vulnerability that requires further investigation to determine the exact attack vector and impact.
Executive Summary:
The HS Brand Logo Slider 2 plugin contains a security vulnerability that poses a high risk to the availability and integrity of the affected website.
Vulnerability Details
CVE-ID: CVE-2020-37227
Affected Software: Unknown HS Brand Logo Slider 2
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: The specific technical nature of this vulnerability is currently undocumented, preventing a definitive assessment of the required authentication level or attack vector.
Business Impact
With a CVSS score of 8.8, this vulnerability is classified as High severity, indicating a significant risk of unauthorized access or service disruption. Successful exploitation could lead to unauthorized modification of web content or potential compromise of the underlying hosting environment, resulting in reputational damage and operational downtime.
Remediation Plan
Immediate Action: Identify all instances of the HS Brand Logo Slider 2 plugin within the environment and evaluate the necessity of the plugin.
Proactive Monitoring: Review web server and application logs for anomalous traffic patterns or unauthorized access attempts targeting the plugin directory.
Compensating Controls: Deploy a Web Application Firewall (WAF) with generic rulesets configured to block common web-based attack patterns until official vendor guidance is released.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of May 17, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Given the High severity score, administrators should treat this vulnerability with urgency. If the plugin is not essential for business operations, it should be removed from the environment immediately to eliminate the attack surface.