What is GHSA-pgw3-2gmg-gfqx?

GHSA-pgw3-2gmg-gfqx is a security advisory published by GitHub Security Advisories with High severity. Flash Slideshow Maker Professional 5.20 contains a buffer overflow vulnerability in the...

Which CVE IDs does GHSA-pgw3-2gmg-gfqx cover?

GHSA-pgw3-2gmg-gfqx covers the following CVE IDs: CVE-2018-25377. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-pgw3-2gmg-gfqx?

GHSA-pgw3-2gmg-gfqx has a CVSS v3 base score of 8.4, published by GitHub Security Advisories.

GHSA-pgw3-2gmg-gfqxHighCVSS 8.4

Flash Slideshow Maker Professional 5.20 contains a buffer overflow vulnerability in the...

Vendor

GitHub Security Advisories

Published

May 26, 2026

Last Modified

May 26, 2026

🔗 CVE IDs covered (1)

CVE-2018-25377 →

📋 Description

Flash Slideshow Maker Professional 5.20 contains a buffer overflow vulnerability in the registration dialog that allows local attackers to execute arbitrary code by exploiting structured exception handling. Attackers can craft a malicious payload and paste it into the Name and Code fields of the Help > Register dialog to trigger a reverse shell with system privileges.

🔗 References (5)

https://nvd.nist.gov/vuln/detail/CVE-2018-25377
https://www.exploit-db.com/exploits/45355
https://www.vulncheck.com/advisories/flash-slideshow-maker-professional-buffer-overflow-seh
http://flash.dvd-photo-slideshow.com
https://github.com/advisories/GHSA-pgw3-2gmg-gfqx