CVE-2026-2659 | Squirrel up to 3.2 sqfuncstate.cpp SQFuncState::PopTarget _target_stack out-of-bounds (Issue 311)

A vulnerability described as problematic has been identified in Squirrel up to 3.2. Affected by this vulnerability is the function SQFuncState::PopTarget of the file src/squirrel/squirrel/sqfuncstate.cpp. Executing a manipulation of the argument _target_stack can lead to out-of-bounds read.

This vulnerability is handled as CVE-2026-2659. It is possible to launch the attack on the local host. Additionally, an exploit exists.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-2659 | Squirrel up to 3.2 sqfuncstate.cpp SQFuncState::PopTarget _target_stack out-of-bounds (Issue 311)

Post correlati

CVE-2024-26146 | rubygem-rack Header Parser denial of service

CVE-2025-24609 | PortOne 우커머스 결제 Plugin up to 3.2.4 on WordPress cross site scripting

CVE-2025-1489 | marcelismus WP-Appbox Plugin up to 4.5.4 on WordPress Shortcode appbox cross site scripting

CVE-2024-0682 | Page Restrict Plugin up to 2.5.5 on WordPress protection mechanism