CVE-2025-4238 – PCMan FTP Server MGET Command Handler Buffer Overflow

May 3, 2025

CVE ID : CVE-2025-4238

Published : May 3, 2025, 5:15 p.m. | 16 minutes ago

Description : A vulnerability was found in PCMan FTP Server 2.0.7. It has been classified as critical. This affects an unknown part of the component MGET Command Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4239 – PCMan FTP Server Buffer Overflow

Next Article CVE-2025-1495 – IBM Business Automation Workflow Information Disclosure Vulnerability

Highlights

CVE-2025-9167 – SolidInvoice Cross-Site Scripting Vulnerability

August 19, 2025

CVE ID : CVE-2025-9167

Published : Aug. 19, 2025, 9:15 p.m. | 4 hours, 28 minutes ago

Description : A vulnerability has been found in SolidInvoice up to 2.4.0. This vulnerability affects unknown code of the file /invoice/recurring of the component Recurring Invoice Module. The manipulation of the argument client name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 5.1 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Representative Line: Brace Yourself

Beyond the Pilot: A Playbook for Enterprise-Scale Agentic AI

GitHub launches MCP Registry to provide central location for trusted servers

MongoDB brings Search and Vector Search to self-managed versions of database

Distribution Release: Security Onion 2.4.180

Distribution Release: Omarchy 3.0.1

Distribution Release: Mauna Linux 25

Distribution Release: SparkyLinux 2025.09

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

AI Momentum and Perficient’s Inclusion in Analyst Reports – Highlights From 2025 So Far

Shopping Portal using Python Django & MySQL

Perficient Earns Adobe’s Real-time CDP Specialization

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Valve Survey Reveals Slight Retreat in Steam-on-Linux Share

Review: Elecrow’s All-in-one Starter Kit for Pico 2

FOSS Weekly #25.38: GNOME 49 Release, KDE Drama, sudo vs sudo-rs, Local AI on Android and More Linux Stuff

CVE-2025-4238 – PCMan FTP Server MGET Command Handler Buffer Overflow

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

PowerToys Dashboard is Finally Getting a Much-Needed Redesign

Google says easy email encryption is on the way – for some users

Sequential-NIAH: A Benchmark for Evaluating LLMs in Extracting Sequential Information from Long Texts

Windows 11’s handheld gaming UI references spotted ahead of Xbox Ally

CVE-2025-9167 – SolidInvoice Cross-Site Scripting Vulnerability

Qwen3 family of reasoning models now available in Amazon Bedrock Marketplace and Amazon SageMaker JumpStart

Distribution Release: SparkyLinux 8.0

CVE-2025-5214 – Kashipara Responsive Online Learning Platform SQL Injection Vulnerability

CVE-2025-4238 – PCMan FTP Server MGET Command Handler Buffer Overflow

Related Posts