CVE-2026-36837

TOTOLINK A3002RU V3 = V3.0.0-B20220304.1804 was discovered to contain a stack-based buffer overflow via the hostname parameter in the formMapDelDevice function...

CVE-2026-36837

creationtimestamp| type| source ---|---|--- 2026-04-30 04:05:18+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116491675981426045 2026-04-30 21:58:17+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqmbwcjls2c...

CVE-2022-36837

creationtimestamp| type| source ---|---|--- 2025-09-18 07:49:15+00:00| seen| https://gist.github.com/Darkcrai86/f0bc59e87b0f256e3fe6bd76f97ae9a6...

CVE-2022-36837

Intent redirection vulnerability using implicit intent in Samsung email prior to version 6.1.70.20 allows attacker to get sensitive information...

CVE-2020-36837

The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a missing capability check on the resetwizardactions function in versions 1.3.4 through 1.6.1. This makes it possible for authenticated attackers to reset the WordPress database. After which, if there ...

CVE-2020-36837 ThemeGrill Demo Importer 1.3.4 - 1.6.1 - Authorization Bypass to Site Reset

The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a missing capability check on the resetwizardactions function in versions 1.3.4 through 1.6.1. This makes it possible for authenticated attackers to reset the WordPress database. After which, if there ...

CVE-2020-36837

The ThemeGrill Demo Importer plugin for WordPress has a vulnerability (CVE-2020-36837) in versions 1.3.4–1.6.1 where a missing capability check in the reset_wizard_actions function allows authentication bypass. If an attacker is authenticated, they can reset the WordPress database, and if there i...

Exploit for SQL Injection in Crmeb

README.md CVE-2024-36837 Disclaimer Zhilianyunca...

Exploit for SQL Injection in Crmeb

CVE-2024-36837 / CNVD-2024-30128 POC write URL in url.txt and...

CVE-2024-36837

CRMEB v5.2.2 is affected by a SQL Injection in the getProductList function of ProductController.php. The issue arises from unvalidated input in the selectId/parameters, enabling an attacker to craft queries that may reveal sensitive data. Public templates and PoCs exist (e.g., CRMEB 5.2.2 SQL Inj...

CVE-2022-36837

Intent redirection vulnerability using implicit intent in Samsung email prior to version 6.1.70.20 allows attacker to get sensitive information...

CVE-2022-36837

CVE-2022-36837 : Affected software is Samsung Email prior to 6.1.70.20. The issue is an implicit-intent redirect that can disclose sensitive information via a local attack vector. Root cause: intent redirection vulnerability in Samsung Email’s handling of implicit intents. Impact per the sources ...