WordPress Content Visibility for Divi Builder plugin <= 4.02 - Authenticated (Contributor+) Remote Code Execution vulnerability

Authenticated Contributor+ Remote Code Execution vulnerability discovered by ZAST.AI - ZAST.AI in WordPress Plugin Content Visibility for Divi Builder versions = 4.02...

EUVD-2026-12494

Buffalo TeraStation NAS TS5400R firmware version 4.02-0.06 and prior contain an excessive file permissions vulnerability that allows authenticated attackers to read the /etc/shadow file by uploading and executing a PHP file through the webserver. Attackers can exploit world-readable permissions o...

CVE-2026-29516

Buffalo TeraStation NAS TS5400R firmware version 4.02-0.06 and prior contain an excessive file permissions vulnerability that allows authenticated attackers to read the /etc/shadow file by uploading and executing a PHP file through the webserver. Attackers can exploit world-readable permissions o...

CVE-2026-29516

Affected product : Buffalo TeraStation NAS TS5400R (firmware 4.02-0.06 and earlier). Vulnerability : excessive file permissions allow an authenticated attacker to read /etc/shadow by uploading and executing a PHP file via the webserver, enabling disclosure of hashed passwords for all accounts inc...

EUVD-2022-51241

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2020-25725

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Xpdf 4.02, SplashOutputDev::endType3CharGfxState state SplashOutputDev.cc:3079 is trying to use the freed t3GlyphStack-cache, which causes an...

CVE-2024-7897

A vulnerability classified as critical has been found in Tosei Online Store Management System ネット店舗管理システム 4.02/4.03/4.04. This affects an unknown part of the file /cgi-bin/toseikikai.php. The manipulation of the argument kikaibangou leads to command injection. It is possible to initiate the attac...

CVE-2022-48545

An infinite recursion in Catalog::findDestInTree can cause denial of service for xpdf 4.02...

Tosei Online Store Management System 安全漏洞

Tosei Online Store Management System is an online store management system from Tosei. A security vulnerability exists in TOSEI online store management system version v4.02, v4.03 and v4.04. An attacker can exploit the vulnerability to read arbitrary files on the server running the application...

CVE-2024-7898 Tosei Online Store Management System ネット店舗管理システム Backend default credentials

A vulnerability classified as critical was found in Tosei Online Store Management System ネット店舗管理システム 4.02/4.03/4.04. This vulnerability affects unknown code of the component Backend. The manipulation leads to use of default credentials. The attack can be initiated remotely. The exploit has been...

Tosei Online Store Management System 命令注入漏洞

Tosei Online Store Management System is an online store management system from Tosei Corporation. A command injection vulnerability exists in Tosei Online Store Management System versions 4.02, 4.03, and 4.04, which stems from the parameter adrtxt in the file /cgi-bin/p1ftpserver.php that can lea...

PT-2024-38667 · Unknown · Tosei Online Store Management System

Name of the Vulnerable Software and Affected Versions: Tosei Online Store Management System versions 4.02 through 4.04 Description: A critical issue affects some unknown functionality of the file /cgi-bin/p1 ftpserver.php. The manipulation of the adr txt argument leads to command injection. The...

PT-2024-38668 · Unknown · Tosei Online Store Management System

Name of the Vulnerable Software and Affected Versions: Tosei Online Store Management System versions 4.02 through 4.04 Description: A critical issue has been discovered, affecting an unknown part of the file /cgi-bin/tosei kikai.php. The manipulation of the kikaibangou argument leads to command...

Tosei Online Store Management System 命令注入漏洞

Tosei Online Store Management System is an online store management system from Tosei Corporation. A command injection vulnerability exists in Tosei Online Store Management System versions 4.02, 4.03, and 4.04, which stems from the parameter kikaibangou in the file /cgi-bin/toseikikai.php that can...

VulnCheck KEV: CVE-2024-23842

Improper Input Validation in Hitron Systems DVR LGUVR-16H 1.024.02 allows an attacker to cause network attack in case of using defalut admin ID/PW...

VulnCheck KEV: CVE-2024-22772

Improper Input Validation in Hitron Systems DVR LGUVR-8H 1.024.02 allows an attacker to cause network attack in case of using defalut admin ID/PW...

Hitron Systems DVR HVR-16781 Security Vulnerability

Hitron Systems DVR is a digital video recorder from Hitron Systems, a South Korean company. A security vulnerability exists in Hitron Systems DVR HVR-16781 versions 1.03 through 4.02, which stems from incorrect input validation. An attacker could exploit the vulnerability to trigger a cyber attac...

Hitron Systems DVR Security Vulnerability

Hitron Systems DVR is a digital video recorder from Hitron Systems, a South Korean company. A security vulnerability exists in Hitron Systems DVR HVR-8781 versions 1.03 through 4.02, which stems from incorrect input validation. An attacker could exploit the vulnerability to trigger a cyber attack...

Hitron Systems DVR Security Vulnerability

Hitron Systems DVR is a digital video recorder from Hitron Systems, a South Korean company. A security vulnerability exists in Hitron Systems DVR LGUVR-8H versions 1.02 through 4.02, which originates from incorrect input validation. An attacker could exploit the vulnerability to trigger a cyber...

PT-2024-19557

Name of the Vulnerable Software and Affected Versions Hitron Systems DVR LGUVR-8H versions 1.02 through 4.02 Description The issue is related to improper input validation, which can allow an attacker to cause a network attack if the default admin ID and password are used. Recommendations For...