CVE-2026-5204

A vulnerability was determined in Tenda CH22 1.0.0.1. Affected is the function formWebTypeLibrary of the file /goform/webtypelibrary of the component Parameter Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack can be initiated remotely. The exploi...

CVE-2026-5204

creationtimestamp| type| source ---|---|--- 2026-03-31 17:26:20+00:00| published-proof-of-concept| Telegram/eKNKUl3o6DiU-2-jA1Bozh3wu6D5ajzBDCTSMbn5G7zvLo 2026-03-31 19:25:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mievqqttvn2s 2026-04-02 13:20:09+00:00| seen|...

CVE-2025-5204

A vulnerability classified as problematic has been found in Open Asset Import Library Assimp 5.4.3. This affects the function MDLImporter::ParseSkinLump3DGSMDL7 of the file assimp/code/AssetLib/MDL/MDLMaterialLoader.cpp. The manipulation leads to out-of-bounds read. Attacking locally is a...

CVE-2025-5204

A vulnerability classified as problematic has been found in Open Asset Import Library Assimp 5.4.3. This affects the function MDLImporter::ParseSkinLump3DGSMDL7 of the file assimp/code/AssetLib/MDL/MDLMaterialLoader.cpp. The manipulation leads to out-of-bounds read. Attacking locally is a...

CVE-2025-5204 Open Asset Import Library Assimp MDLMaterialLoader.cpp ParseSkinLump_3DGS_MDL7 out-of-bounds

A vulnerability classified as problematic has been found in Open Asset Import Library Assimp 5.4.3. This affects the function MDLImporter::ParseSkinLump3DGSMDL7 of the file assimp/code/AssetLib/MDL/MDLMaterialLoader.cpp. The manipulation leads to out-of-bounds read. Attacking locally is a...

CVE-2025-5204

CVE-2025-5204 affects Open Asset Import Library Assimp 5.4.3, specifically the MDLImporter::ParseSkinLump_3DGS_MDL7 path in MDLMaterialLoader.cpp. The vulnerability causes an out-of-bounds read and requires local access to exploit. Public disclosure of the exploit is noted. No remediation details...

CVE-2025-5204 Open Asset Import Library Assimp MDLMaterialLoader.cpp ParseSkinLump_3DGS_MDL7 out-of-bounds

A vulnerability classified as problematic has been found in Open Asset Import Library Assimp 5.4.3. This affects the function MDLImporter::ParseSkinLump3DGSMDL7 of the file assimp/code/AssetLib/MDL/MDLMaterialLoader.cpp. The manipulation leads to out-of-bounds read. Attacking locally is a...

CVE-2010-5204

Multiple untrusted search path vulnerabilities in IBM Lotus Symphony 1.3.0 20090908.0900 allow local users to gain privileges via a Trojan horse 1 eclipse1114.dll or 2 emser645mi.dll file in the current working directory, as demonstrated by a directory that contains a .odm, .odt, .otp, .stc, .stw...

Linux Distros Unpatched Vulnerability : CVE-2017-5204

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6print. CVE-2017-5204 Note that Nessus relies on the presence of the package as...

HP Intelligent Management IctDownloadServlet Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP Intelligent Management IctDownloadServlet Directory Traversal', 'Description' = %q This module exploits a lack of authentication and a directo...

CVE-2024-5204 Swiss Toolkit For WP <= 1.0.7 - Authenticated (Contributor+) Authentication Bypass

The Swiss Toolkit For WP plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0.7. This is due to the plugin storing custom data in post metadata without an underscore prefix. This makes it possible for authenticated attackers with contributor-level and...

CVE-2024-5204 Swiss Toolkit For WP <= 1.0.7 - Authenticated (Contributor+) Authentication Bypass

The Swiss Toolkit For WP plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0.7. This is due to the plugin storing custom data in post metadata without an underscore prefix. This makes it possible for authenticated attackers with contributor-level and...

WordPress Swiss Toolkit For WP Plugin <= 1.0.7 is vulnerable to Broken Authentication

Software Swiss Toolkit For WP Type Plugin Vulnerable versions = 1.0.7 Fixed in 1.0.8 OWASP Top 10 A2: Broken Authentication Classification Broken Authentication CVE CVE-2024-5204 Patch priority Medium CVSS severity Medium 8.8 Developer Claim ownership PSID 07e08699642a Credits István Márton...

CVE-2020-5204

creationtimestamp| type| source ---|---|--- 2024-03-19 18:41:21+00:00| seen| https://t.me/ctinow/211829...

CVE-2023-5204

creationtimestamp| type| source ---|---|--- 2024-02-23 11:09:03+00:00| published-proof-of-concept| https://t.me/CNArsenal/2017 2024-02-24 10:46:25+00:00| published-proof-of-concept| https://t.me/apsecurity/475 2026-02-12 15:29:53+00:00| confirmed|...

Exploit for SQL Injection in Quantumcloud Wpbot

CVE-2023-5204 AI ChatBot = 4.8.9 - Unauthenticated SQL Inj...

Malicious code in wlwz-2312-5204 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b1726c28d59dd10e67e6a7188afc1cc3fe07f252dcdc32b08c18ad9c7e22c58b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-642 Malicious code in wlwz-2312-5204 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b1726c28d59dd10e67e6a7188afc1cc3fe07f252dcdc32b08c18ad9c7e22c58b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

WordPress AI ChatBot 4.8.9 SQL Injection / Traversal / File Deletion

Vulnerability Details and Technical Analysis The AI ChatBot plugin provides website owners with a plug and play chat solution that can be expanded upon with customizable FAQs and custom text responses. It provides website users with an interface that allows them to look up order information, leav...

WordPress AI ChatBot 4.8.9 SQL Injection / Traversal / File Deletion Vulnerabilities

Vulnerability Details and Technical Analysis The AI ChatBot plugin provides website owners with a plug and play chat solution that can be expanded upon with customizable FAQs and custom text responses. It provides website users with an interface that allows them to look up order information, leav...