CVE-2026-1157 Totolink LR350 cstecgi.cgi setWiFiEasyCfg buffer overflow

A vulnerability was identified in Totolink LR350 9.3.5u.6369B20220309. This affects the function setWiFiEasyCfg of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument ssid leads to buffer overflow. It is possible to launch the attack remotely. The exploit is publicly available and...

CVE-2026-1157

A vulnerability was identified in Totolink LR350 9.3.5u.6369B20220309. This affects the function setWiFiEasyCfg of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument ssid leads to buffer overflow. It is possible to launch the attack remotely. The exploit is publicly available and...

CVE-2026-1157

creationtimestamp| type| source ---|---|--- 2026-01-18 20:32:35+00:00| seen| https://infosec.exchange/users/vuldb/statuses/115918002947014061 2026-01-19 14:50:08+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcrvbdoy7p2y 2026-01-19 17:46:35+00:00| seen|...

EUVD-2016-1157

Malware in sbrugna...

CVE-2023-1157

A vulnerability, which was classified as problematic, was found in finixbit elf-parser. Affected is the function elfparser::Elfparser::getsegments of the file elfparser.cpp. The manipulation leads to denial of service. Local access is required to approach this attack. The exploit has been disclos...

CVE-2020-1157

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1077, CVE-2020-1086, CVE-2020-1090, CVE-2020-1125, CVE-2020-1139, CVE-2020-1149,...

Linux Distros Unpatched Vulnerability : CVE-2010-1157

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Tomcat 5.5.0 through 5.5.29 and 6.0.0 through 6.0.26 might allow remote attackers to discover the server's hostname or IP address by sending a request fo...

CVE-2025-1157

A vulnerability was found in Allims lab.online up to 20250201 and classified as critical. This issue affects some unknown processing of the file /model/modelrecuperarsenha.php. The manipulation of the argument recuperacao leads to sql injection. The attack may be initiated remotely. The exploit h...

CVE-2025-1157

CVE-2025-1157 pertains to Allims lab.online up to 20250201, where the SQL injection vulnerability is triggered by manipulating the recuperacao parameter in the file /model/model_recuperar_senha.php. The issue can be exploited remotely and the exploit has been publicly disclosed. Connected sources...

CVE-2025-1157 Allims lab.online model_recuperar_senha.php sql injection

A vulnerability was found in Allims lab.online up to 20250201 and classified as critical. This issue affects some unknown processing of the file /model/modelrecuperarsenha.php. The manipulation of the argument recuperacao leads to sql injection. The attack may be initiated remotely. The exploit h...

CVE-2025-1157 Allims lab.online model_recuperar_senha.php sql injection

A vulnerability was found in Allims lab.online up to 20250201 and classified as critical. This issue affects some unknown processing of the file /model/modelrecuperarsenha.php. The manipulation of the argument recuperacao leads to sql injection. The attack may be initiated remotely. The exploit h...

RHEL 5 : tomcat (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tomcat: tomcat writable config files allow privilege escalation CVE-2016-6325 - Apache Tomcat 5.5.0 throu...

MikroTik RouterOS Uncontrolled Resource Consumption (CVE-2018-1157)

Mikrotik RouterOS before 6.42.7 and 6.40.9 is vulnerable to a memory exhaustion vulnerability. An authenticated remote attacker can crash the HTTP server and in some circumstances reboot the system via a crafted HTTP POST request. This plugin only works with Tenable.ot. Please visit...

CVE-2024-1157

creationtimestamp| type| source ---|---|--- 2024-02-13 11:21:48+00:00| seen| https://t.me/ctinow/183740 2024-03-04 07:11:54+00:00| seen| https://t.me/ctinow/199030...

CVE-2024-1157 Bold Page Builder <= 4.8.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Button URL

The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's button URL in all versions up to, and including, 4.8.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with contributor-level and...

CVE-2024-1157

The CVE concerns Bold Page Builder for WordPress (affected: all versions up to 4.8.0) with a Stored Cross‑Site Scripting (XSS) flaw via the plugin’s button URL due to insufficient input sanitization/output escaping. Exploitation requires authenticated access (contributor+). Wordfence and Red Hat ...

WordPress Bold Page Builder Plugin <= 4.8.0 is vulnerable to Cross Site Scripting (XSS)

Software Bold Page Builder Type Plugin Vulnerable versions = 4.8.0 Fixed in 4.8.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1157 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d94380d5f2fc Credits Mdr Required privilege...

GitLab < 14.7.7 (CVE-2022-1157)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 of GitLab CE/EE causes potential sensitive values in invalid URLs to b...

Debian: Security Advisory (DLA-1157-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-1157

creationtimestamp| type| source ---|---|--- 2023-03-02 22:34:35+00:00| seen| https://t.me/cibsecurity/59333...