Total CVEs

141,249

Critical Severity

3,795

High Severity

13,708

Last 7 Days

1,901
Quick preset (or use dates below)
Clear Filters
Showing 8,701 - 8,720 of 14,200 CVEs
CVE-2019-25617 MEDIUM - 6.2

Ease Audio Converter 5.30 contains a denial of service vulnerability in the Audio Cutter function that allows local attackers to crash the application by processing malformed MP4 files. Attackers can create a crafted MP4 file containing an oversized buffer and load it through the Audio Cutter interf...

Vendor: Audiotool
Product: Ease Audio Converter
Published: Mar 22, 2026
Source: NVD
CVE-2019-25616 MEDIUM - 6.2

AnMing MP3 CD Burner 2.0 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized string. Attackers can paste a 6000-byte payload into the registration name field to trigger a denial of service condition.

Vendor: Ddz1977
Product: AnMing MP3 CD Burner
Published: Mar 22, 2026
Source: NVD
CVE-2019-25610 MEDIUM - 6.5

NetNumber Titan Master 7.9.1 contains a path traversal vulnerability in the drp endpoint that allows authenticated users to download arbitrary files by injecting directory traversal sequences. Attackers can manipulate the path parameter with base64-encoded payloads containing ../ sequences to bypass...

Vendor: Netnumber
Product: NetNumber Titan ENUM/DNS/NP
Published: Mar 22, 2026
Source: NVD
CVE-2019-25606 MEDIUM - 5.5

Fast AVI MPEG Joiner 1.2.0812 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized payload in the License Name field. Attackers can create a malicious text file containing 6000 bytes of data and paste it into the License Name input f...

Vendor: Alloksoft
Product: Fast AVI MPEG Joiner
Published: Mar 22, 2026
Source: NVD
CVE-2019-25602 MEDIUM - 5.5

GSearch 1.0.1.0 contains a denial of service vulnerability that allows local attackers to crash the application by inputting an excessively long string in the search bar. Attackers can paste a buffer of 2000 characters into the search field, click search, and select any result to trigger an applicat...

Vendor: GSearch
Product: GSearch
Published: Mar 22, 2026
Source: NVD
CVE-2019-25601 MEDIUM - 6.2

UltraVNC Launcher 1.2.2.4 contains a buffer overflow vulnerability in the Path vncviewer.exe property field that allows local attackers to crash the application by supplying an excessively long string. Attackers can input a 300-byte payload of repeated characters through the Properties dialog to tri...

Vendor: Uvnc
Product: UltraVNC Launcher
Published: Mar 22, 2026
Source: NVD
CVE-2019-25600 MEDIUM - 6.5

UltraVNC Viewer 1.2.2.4 contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized string to the VNC Server input field. Attackers can paste a malicious string containing 256 repeated characters into the VNC Server field and click Connect to t...

Vendor: Uvnc
Product: UltraVNC Viewer
Published: Mar 22, 2026
Source: NVD
CVE-2019-25599 MEDIUM - 6.2

Backup Key Recovery 2.2.4 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can paste a buffer of 300 or more characters into the Name field during registration to trigger a crash when ...

Vendor: Nsauditor
Product: Backup Key Recovery
Published: Mar 22, 2026
Source: NVD
CVE-2019-25598 MEDIUM - 6.2

HeidiSQL Portable 10.1.0.5464 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the password field. Attackers can paste a buffer overflow payload into the password input during Microsoft SQL Server login to trig...

Vendor: Heidisql
Product: HeidiSQL Portable
Published: Mar 22, 2026
Source: NVD
CVE-2019-25597 MEDIUM - 6.2

NSauditor 3.1.2.0 contains a buffer overflow vulnerability in the SNMP Auditor Community field that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a large payload into the Community field and trigger the Walk function to cause a denial of...

Vendor: Nsauditor
Product: NSauditor
Published: Mar 22, 2026
Source: NVD
CVE-2019-25596 MEDIUM - 6.2

SpotAuditor 5.2.6 contains a denial of service vulnerability in the registration dialog that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can paste a buffer of 300 repeated characters into the Name input during registration to t...

Vendor: Nsauditor
Product: SpotAuditor
Published: Mar 22, 2026
Source: NVD
CVE-2019-25595 MEDIUM - 6.2

jetAudio 8.1.7.20702 Basic contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string through the URL input handler. Attackers can trigger the crash by pasting a buffer of 5000 characters into the Open URL dialog, causing t...

Vendor: Jetaudio
Product: jetAudio
Published: Mar 22, 2026
Source: NVD
CVE-2019-25594 MEDIUM - 6.2

ASPRunner.NET 10.1 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the table name field. Attackers can input a buffer of 10000 characters in the table name parameter during database table creation to trigger a...

Vendor: Xlinesoft
Product: ASPRunner.NET
Published: Mar 22, 2026
Source: NVD
CVE-2019-25593 MEDIUM - 5.5

jetCast Server 2.0 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Log directory configuration field. Attackers can paste a buffer of 5000 characters into the Log directory input, then click Start to trigg...

Vendor: Jetaudio
Product: jetCast Server
Published: Mar 22, 2026
Source: NVD
CVE-2019-25592 MEDIUM - 6.2

PHPRunner 10.1 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the dashboard name field. Attackers can paste a buffer of 10000 characters into the Name field during dashboard creation to trigger an application...

Vendor: Xlinesoft
Product: PHPRunner
Published: Mar 22, 2026
Source: NVD
CVE-2019-25591 MEDIUM - 6.2

DNSS Domain Name Search Software 2.1.8 contains a buffer overflow vulnerability in the registration code input field that allows local attackers to crash the application by submitting an excessively long string. Attackers can trigger a denial of service by pasting a malicious registration code conta...

Vendor: nsauditor
Product: DNSS Domain Name Search Software
Published: Mar 22, 2026
Source: NVD
CVE-2019-25590 MEDIUM - 6.2

Axessh 4.2 contains a denial of service vulnerability in the logging configuration that allows local attackers to crash the application by supplying an excessively long string in the log file name field. Attackers can enable session logging, paste a buffer of 500 or more characters into the log file...

Vendor: Labf
Product: Axessh
Published: Mar 22, 2026
Source: NVD
CVE-2026-4543 MEDIUM - 6.3

A vulnerability was found in Wavlink WL-WN578W2 221110. The impacted element is an unknown function of the file /cgi-bin/firewall.cgi of the component POST Request Handler. Performing a manipulation of the argument dmz_flag/del_flag results in command injection. It is possible to initiate the attack...

Published: Mar 22, 2026
Source: NVD
CVE-2026-4542 MEDIUM - 5.4

A vulnerability has been found in SSCMS 4.7.0. The affected element is an unknown function of the file LayerImageController.Submit.cs of the component layerImage Endpoint. Such manipulation of the argument filePaths leads to path traversal. The attack may be performed from remote. The exploit has be...

Published: Mar 22, 2026
Source: NVD
CVE-2026-4538 MEDIUM - 5.3

A vulnerability was identified in PyTorch 2.10.0. The affected element is an unknown function of the component pt2 Loading Handler. The manipulation leads to deserialization. The attack can only be performed from a local environment. The exploit is publicly available and might be used. The project w...

Published: Mar 22, 2026
Source: NVD