CVE-2025-4062 – Apache Code-Projects Theater Seat Booking System Stack-Based Buffer Overflow Vulnerability

April 29, 2025

CVE ID : CVE-2025-4062

Published : April 29, 2025, 2:15 p.m. | 1 hour, 48 minutes ago

Description : A vulnerability has been found in code-projects Theater Seat Booking System 1.0 and classified as critical. Affected by this vulnerability is the function cancel. The manipulation of the argument cancelcustomername leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4063 – Code-projects Student Information Management System Buffer Overflow

Next Article CVE-2025-3301 – Marvell Series 2 DPA Vulnerability: ECDH and EdDSA Countermeasures Missing

Highlights

CVE-2025-34067 – Hikvision Integrated Security Management Platform Fastjson Remote Command Execution

July 2, 2025

CVE ID : CVE-2025-34067

Published : July 2, 2025, 2:15 p.m. | 1 hour, 1 minute ago

Description : An unauthenticated remote command execution vulnerability exists in the applyCT component of the Hikvision Integrated Security Management Platform due to the use of a vulnerable version of the Fastjson library. The endpoint /bic/ssoService/v1/applyCT deserializes untrusted user input, allowing an attacker to trigger Fastjson’s auto-type feature to load arbitrary Java classes. By referencing a malicious class via an LDAP URL, an attacker can achieve remote code execution on the underlying system.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

ServiceNow unveils Zurich AI platform

DistroWatch Weekly, Issue 1139

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Optimizely Mission Control – Part III

Optimizely Mission Control – Part III

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

DistroWatch Weekly, Issue 1139

DistroWatch Weekly, Issue 1139

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

Dmitry — The Deep Magic

CVE-2025-4062 – Apache Code-Projects Theater Seat Booking System Stack-Based Buffer Overflow Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

ROG Xbox Ally X Shows Off Ryzen AI Z2 Extreme Power in an Early Benchmark Test

CVE-2025-46216 – Apache HTTP Server HTTP Request Smuggling

NVIDIA Open Sources Parakeet TDT 0.6B: Achieving a New Standard for Automatic Speech Recognition ASR and Transcribes an Hour of Audio in One Second

CVE-2025-6936 – Simple Pizza Ordering System SQL Injection

CVE-2025-34067 – Hikvision Integrated Security Management Platform Fastjson Remote Command Execution

CVE-2025-7832 – Church Donation System SQL Injection Vulnerability

Design for the AI age

CVE-2025-49651 – Lablup BackendAI Unauthenticated Session Hijacking

CVE-2025-4062 – Apache Code-Projects Theater Seat Booking System Stack-Based Buffer Overflow Vulnerability

Related Posts