CVE-2025-47814 – GNU PSPP Zip-Reader Heap-Based Buffer Overflow

May 10, 2025

CVE ID : CVE-2025-47814

Published : May 10, 2025, 10:15 p.m. | 2 hours, 9 minutes ago

Description : libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a heap-based buffer overflow in inflate_read (called indirectly from spv_read_xml_member) in zip-reader.c.

Severity: 4.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47815 – GNU PSPP Heap-Based Buffer Overflow Vulnerability

Next Article CVE-2025-4515 – Zylon PrivateGPT Cross-Domain Policy Vulnerability

Highlights

CVE-2025-34032 – Moodle LMS Jmol Reflected Cross-Site Scripting Vulnerability

June 23, 2025

CVE ID : CVE-2025-34032

Published : June 24, 2025, 1:15 a.m. | 46 minutes ago

Description : A reflected cross-site scripting (XSS) vulnerability exists in the Moodle LMS Jmol plugin version 6.1 and prior via the data parameter in jsmol.php. The application fails to properly sanitize user input before embedding it into the HTTP response, allowing an attacker to execute arbitrary JavaScript in the victim’s browser by crafting a malicious link. This can be used to hijack user sessions or manipulate page content.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Can Good UX Protect Older Users From Digital Scams?

Warp 2.0 evolves terminal experience into an Agentic Development Environment

Qodo launches CLI agent framework

Overture Maps launches GERS, a system of unique IDs for global geospatial entities

Microsoft Copilot is “pretty important” but customers still prefer ChatGPT — “OpenAI has done a tremendous job”

Will you sync your Windows 10 PC data to the cloud for free access to security updates beyond 2025?

Red Hat Enterprise Linux (RHEL) quietly released an official image for WSL — but most of us won’t be able to use it

Sam Altman says ChatGPT has evolved beyond a mere “Google replacement” — with ads potentially coming to users

What Are the PHP Trends in 2025

What Are the PHP Trends in 2025

Real-Time Observability for Node.js – Without Code Changes

Elevating API Automation: Exploring Karate as an Alternative to Rest-Assured

Microsoft Copilot is “pretty important” but customers still prefer ChatGPT — “OpenAI has done a tremendous job”

Microsoft Copilot is “pretty important” but customers still prefer ChatGPT — “OpenAI has done a tremendous job”

Will you sync your Windows 10 PC data to the cloud for free access to security updates beyond 2025?

Red Hat Enterprise Linux (RHEL) quietly released an official image for WSL — but most of us won’t be able to use it

CVE-2025-47814 – GNU PSPP Zip-Reader Heap-Based Buffer Overflow

Citrix Bleed 2 Flaw Enables Token Theft; SAP GUI Flaws Risk Sensitive Data Exposure

CVE-2025-3863 – Elementor WordPress Post Carousel Slider Improper Authorization Vulnerability

How to Build a Multi-Tenant SaaS Application with Next.js (Frontend Integration)

This interactive AI video generator feels like walking into a video game – how to try it

Oh My Posh is a prompt theme engine for any shell

In MCP era API discoverability is now more important than ever

CVE-2025-34032 – Moodle LMS Jmol Reflected Cross-Site Scripting Vulnerability

Supercharging vector search performance and relevance with pgvector 0.8.0 on Amazon Aurora PostgreSQL

Netsleuth calculates and analyzes IP subnet values

What is NewSQL? Bridging SQL and NoSQL

CVE-2025-47814 – GNU PSPP Zip-Reader Heap-Based Buffer Overflow

Related Posts