CVE-2026-35007 Open ISES Tickets < 3.44.2 Reflected XSS via single_unit.php id Parameter

Open ISES Tickets before 3.44.2 contains a reflected cross-site scripting vulnerability in singleunit.php that allows authenticated attackers to inject arbitrary JavaScript by passing an unsanitized value through the id GET parameter directly into an HTML attribute. Attackers can craft a maliciou...

CVE-2022-35007

PNGDec commit 8abf6be was discovered to contain a heap buffer overflow via interceptorfwrite.part.57 at sanitizercommoninterceptors.inc...

CVE-2025-35007

Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFRULE command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argume...

CVE-2025-35007

Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFRULE command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argume...

CVE-2025-35007 Microhard Bullet-LTE and IPn4Gii AT+MFRULE Argument Injection

Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFRULE command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argume...

CVE-2025-35007 Microhard Bullet-LTE and IPn4Gii AT+MFRULE Argument Injection

Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFRULE command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argume...

CVE-2022-35007

PNGDec commit 8abf6be was discovered to contain a heap buffer overflow via interceptorfwrite.part.57 at sanitizercommoninterceptors.inc...

CVE-2022-35007

PNGDec commit 8abf6be was discovered to contain a heap buffer overflow via interceptorfwrite.part.57 at sanitizercommoninterceptors.inc...

CVE-2022-35007

PNGDec is affected by a heap buffer overflow in the interceptor function __interceptor_fwrite.part.57 (sanitizer_common_interceptors.inc). The issue is documented across multiple feeds, with CVE-2022-35007 noting the overflow and related Red Hat/PRION/PT-Security references confirming a fix in th...