GNU Barcode version 0.99 suffers from a memory leak vulnerability.
9168ddd45efc4cc42aff07ec7a49258b7cb156acba0d7c06c76bf35c9ae2d1bc
Barcodes Generator version 1.0 suffers from a persistent cross site scripting vulnerability.
ad8bf5e77fce744e79e98d6d6401df0c9c922345fa6dbfbd73898ab10d8b80b6
BarcodeOCR version 19.3.6 suffers from an unquoted service path vulnerability.
85eed3d140dd92db0817be829bab7352465a92089c165b56f25562f4aa768e3d
Inateck BCST-60 Barcode Scanner suffers from a keystroke injection vulnerability.
c50880f8974ac7beaee4a55dd46fc351b8ac265c434798d48f41fea5ac5aea77
Zint Barcode Generator version 2.6 suffers from a denial of service vulnerability.
683be83a533223f6e9368cef34e66436f6a0d6d41a1a71886439ed6863f01116
GNU Barcode version 0.99 suffers from a buffer overflow vulnerability.
fbe0caf709c2a729a4f377d31d01707a6ff4588d473c3a49a7b628fb46d5df69
BarcodeWiz ActiveX Control versions prior to 6.7 suffers from a buffer overflow vulnerability.
6101e91a84aee00fafb0cebb5718a2df43f7b5c55b823edf4cf69caa14768177
VUPEN Vulnerability Research Team discovered a critical vulnerability in Adobe Acrobat and Reader. The vulnerability is caused by a heap overflow error when processing the "width" and "height" fields of a barcode element in a PDF, which could be exploited to execute arbitrary code via a malicious PDF file.
c5545ff4151f3d3fc0cd08c554b26236da99bbd61f13df1841d24f313158e669
TEC-IT TBarCode OCX active-x control TBarCode4.ocx version 4.1.0 buffer overflow proof of concept exploit.
9e7504858cd2b2e3b4c2b733618f991d98aa8fa02a48edb3d38372d57d04fb75
BarCodeWiz Barcode version 4.0.0.0 suffers from an active-x buffer overflow vulnerability.
b100107c50c5435e8468ce713c08d01fee63a0729c92fd3d29da921ea87d64b1
Morovia Barcode Professional version 3.8.0 suffers from an active-x file overwrite vulnerability.
1e1a448e430489bae7191a00ab4a67b6395df19750905d33595b962ce815c5a4
PHP-Barcode version 0.3pl1 suffers from a remote code execution vulnerability.
1a0fb1da8f684f5fa63bce7737f4422ada3ed7efc234622bba13720c22f02bf6
Secunia Security Advisory - beford has discovered a vulnerability in PHP-Barcode, which can be exploited by malicious people to compromise a vulnerable system.
8d862e6aa950fb4d020e410234e23a6476810f71778b1841f9146f1a82df5b5a
This Metasploit module allows remote attackers to place arbitrary files on a users file system by abusing the "DownloadImageFileURL" method in the Black Ice BIImgFrm.ocx ActiveX Control (BIImgFrm.ocx 12.0.0.0). Code execution can be achieved by first uploading the payload to the remote machine, and then upload another mof file, which enables Windows Management Instrumentation service to execute the binary. Please note that this module currently only works for Windows before Vista. Also, a similar issue is reported in BIDIB.ocx (10.9.3.0) within the Barcode SDK.
c654011b0b3147d7a6b19b80df3e17b7fd597bafa54d127293006bedf2615b9d
Secunia Security Advisory - nSense has reported a vulnerability in Barcode Reader Toolkit, which can be exploited by malicious people to compromise an application using the library.
5ebfc889e39eba9bc3b287f580812f9317f9382b66d3f8bdbf24c88925858009
Anfibia Reactor version 2.1.1 suffers from a cross site scripting POST injection vulnerability in login.do.
586debeac011f1b5df9fe27f6bebf0c0142a76112f15487253577175eb3505c0
TutorialMS version 1.4 suffers from a remote SQL injection vulnerability.
05dc88cc41754a5b425398dbff864e6b5d579f95a6559c9bfbdc906f75486443
DoceboLMS version 4.0.4 suffers from multiple cross site scripting vulnerabilities.
f05d2fc8f18a0ffba23d0c365e3e620e537c53fcdd2ae8528167afa9108942cd
Antamedia Internet Cafe Software version 7.1 suffers from a DLL hijacking vulnerability.
2cfaa2ba266c95b6c2c1ccc52ea1a90642d2fe2083343a19e2517a9131ab83a4
Family Connections CMS version 2.3.2 suffers from stored cross site scripting and XML injection vulnerabilities.
560b3b3d4d08ff3156aae5a09cf91b31f8fe7ef39a5cb6cabff71d7f147a2fbf
Microsoft Source Code Analyzer for SQL Injection is a static code analysis tool for finding SQL Injection vulnerabilities in ASP code. The package suffers from an elevation of privileges vulnerability which can be used by a simple user that can change the executable file with a binary of choice. The vulnerability exists due to the improper permissions, with the "C" flag (Change(write)) for the "Everyone" group, for the binary file msscasi_asp.exe and the package itself, msscasi_asp_pkg.exe.
985f1b8a0c9c7170bfff235022459884dade76cc7504b5ccb7d597a030b5d2e8
Pointter PHP CMS version 1.2 suffers from cross site scripting, local file inclusion, and remote SQL injection vulnerabilities.
9576e04112b662072178f9e55b2f30889f73467a6b27a79f96dc6bffd32f2b9b
Constructr CMS version 3.03 suffers from cross site scripting and remote SQL injection vulnerabilities.
a4224d4b86b1a571f0f86d7e8a69d82fa301a58aad20b4eff53030bccf77f96d
eXPert PDF Reader version 4.0 suffers from a NULL pointer dereference and heap corruption denial of service vulnerability.
290623376432a2f10c80421fb38a2d32682190ff9321dac7e355092b1f5512ff
Nitro PDF Reader version 1.4.0 remote heap memory corruption proof of concept denial of service exploit and advisory.
6f7251db7965fc6a2cb851fe9fe21e4f69d15e09dae81c217b971fb2bc6b0484
Elecard MPEG Player version 5.7 local buffer overflow proof of concept exploit.
e924badb6b079b6080a73804ebae6bfddae61d8bb4d1cbcdd18b7b2f41db3392