CVE-2020-10618

LCDS LAquis SCADA Versions 4.3.1 and prior. The affected product is vulnerable to sensitive information exposure by unauthorized users...

CVE-2025-10618

The CVE-2025-10618 issue affects itsourcecode Online Clinic Management System 1.0, specifically the transact.php file where manipulation of the firstname parameter enables a SQL injection. Multiple connected sources corroborate remote exploitability and publicly disclosed PoCs. Evidence across NV...

CVE-2025-10618 itsourcecode Online Clinic Management System transact.php sql injection

A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...

MAL-2025-10618 Malicious code in @zalastax/nolb-_zo (npm)

The package @zalastax/nolb-zo was found to contain malicious code...

RockyLinux 8 : jq (RLSA-2025:10618)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:10618 advisory. jq: jq has signed integer overflow in jv.c:jvparraywrite CVE-2024-23337 jq: AddressSanitizer: stack-buffer-overflow in jqfuzzexecute jvstringvfmt...

CVE-2024-10618

creationtimestamp| type| source ---|---|--- 2024-11-01 06:19:13+00:00| seen| https://t.me/cvedetector/9561...

CVE-2024-10618

CVE-2024-10618 affects Tongda OA 2017 up to 11.10. The vulnerability is a SQL injection in the repid parameter of /pda/reportshop/record_detail.php, exploitable remotely. Public exploit disclosure is noted. Connected sources (Red Hat/CVE lists, CNNVD, PT-Security, and Vuldb) consistently describe...

CVE-2024-10618 Tongda OA 2017 record_detail.php sql injection

A vulnerability, which was classified as critical, has been found in Tongda OA 2017 up to 11.10. This issue affects some unknown processing of the file /pda/reportshop/recorddetail.php. The manipulation of the argument repid leads to sql injection. The attack may be initiated remotely. The exploi...

Siemens Tecnomatix Plant Simulation Out-of-Bounds Write Vulnerability (CNVD-2023-10618)

Siemens Tecnomatix Plant Simulation is an object-oriented, graphical, integrated modeling and simulation tool. An out-of-bounds write vulnerability exists in Siemens Tecnomatix Plant Simulation due to an affected application containing an out-of-bounds write beyond the end of the allocated buffer...

CVE-2020-10618

CVE-2020-10618 affects LCDS LAquis SCADA versions 4.3.1 and earlier. The available connected documents indicate a vulnerability that could lead to sensitive information exposure by unauthorized users. No explicit exploitation vector, attacker capabilities, or remediation steps are provided within...

CVE-2019-10618

Driver may access an invalid address while processing IO control due to lack of check of address validation in Snapdragon Connectivity in QCA6390...

CVE-2019-10618

CVE-2019-10618 affects Qualcomm Snapdragon Connectivity on the QCA6390, where the driver may access an invalid address while processing an IOCTL due to insufficient address validation. The issue is documented across multiple feeds (NVD, Red Hat, CVE lists) with a low to medium overall risk profil...

node-qrcode (>=0.0.1 <=0.0.4), ocast-dongletv (>=1.0.1 <=1.1.0) potentially affected by CVE-2016-10618 via node-browser (>=0.0.1 <=0.0.3)

node-browser NPM version =0.0.1, =0.0.1, =1.0.1, =1.1.0 Source cves: CVE-2016-10618 Source advisory: OSV:GHSA-8R98-RQG5-4VM3...

CVE-2018-10618

creationtimestamp| type| source ---|---|--- 2018-08-02 08:58:11+00:00| seen| https://t.me/SecLabNews/2808...

CVE-2018-10618

Davolink DVW-3200N routers are affected. CVE-2018-10618 describes a weakness in the password handling: all DVW-3200N versions prior to firmware version 1.00.06 generate a weak password hash that can be cracked, allowing a remote attacker to obtain the device password. The issue is triggered remot...

CVE-2016-10618

node-browser is a wrapper webdriver by nodejs. node-browser downloads resources over HTTP, which leaves it vulnerable to MITM attacks...

CVE-2016-10618

node-browser is a wrapper webdriver by nodejs. node-browser downloads resources over HTTP, which leaves it vulnerable to MITM attacks...

CVE-2016-10618

node-browser is vulnerable to MITM because it downloads resources over HTTP, allowing an attacker on a privileged network to modify or read resources and potentially achieve remote code execution. The advisories note no patch is available and recommend avoiding the package or limiting use on publ...

Juniper Junos BGP Update Vulnerability (JSA10820)

According to its self-reported version number, the remote Junos device is affected by a vulnerability in the 'bgp-error-tolerance' feature that when enabled, a BGP UPDATE containing a specifically crafted set of transitive attributes can cause the RPD routing process to crash and restart. TRUSTED...

CVE-2017-10618

When the 'bgp-error-tolerance' feature " designed to help mitigate remote session resets from malformed path attributes " is enabled, a BGP UPDATE containing a specifically crafted set of transitive attributes can cause the RPD routing process to crash and restart. Devices with BGP enabled that d...