CVE-2026-6165

creationtimestamp| type| source ---|---|--- 2026-04-13 07:18:08+00:00| seen| Telegram/IHOzCDm6ocMXwhKClYe85fycTrPO6GtT3pOiprPCJXwKD8...

CVE-2026-6165

A weakness has been identified in code-projects Vehicle Showroom Management System 1.0. This vulnerability affects unknown code of the file /util/Logincheck.php. Executing a manipulation of the argument ID can lead to sql injection. The attack can be launched remotely. The exploit has been made...

CVE-2026-6165 code-projects Vehicle Showroom Management System Login_check.php sql injection

A weakness has been identified in code-projects Vehicle Showroom Management System 1.0. This vulnerability affects unknown code of the file /util/Logincheck.php. Executing a manipulation of the argument ID can lead to sql injection. The attack can be launched remotely. The exploit has been made...

CVE-2026-6165 code-projects Vehicle Showroom Management System Login_check.php sql injection

A weakness has been identified in code-projects Vehicle Showroom Management System 1.0. This vulnerability affects unknown code of the file /util/Logincheck.php. Executing a manipulation of the argument ID can lead to sql injection. The attack can be launched remotely. The exploit has been made...

CVE-2025-6165

A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack c...

CVE-2025-6165

A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack c...

CVE-2024-22663

TOTOLINKA3700RV9.1.2u.616520211012has a command Injection vulnerability via setOpModeCfg...

CVE-2006-6165

creationtimestamp| type| source ---|---|--- 2025-01-17 14:57:01+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2144...

CVE-2024-6165

creationtimestamp| type| source ---|---|--- 2024-07-31 09:18:42+00:00| seen| https://t.me/cvedetector/2111...

CVE-2024-6165

The WANotifier WordPress plugin before 2.6.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-6165 WANotifier < 2.6.1 - Admin+ Stored XSS

The WANotifier WordPress plugin before 2.6.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-6165 WANotifier < 2.6.1 - Admin+ Stored XSS

The WANotifier WordPress plugin before 2.6.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

WordPress WANotifier Plugin < 2.6.1 is vulnerable to Cross Site Scripting (XSS)

Software WANotifier Type Plugin Vulnerable versions 2.6.1 Fixed in 2.6.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6165 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID c1bd8e60c4cb Credits Bob Matyas Required privilege...

CVE-2024-37639

TOTOLINK A3700R V9.1.2u.616520211012 was discovered to contain a stack overflow via eport in the function setIpPortFilterRules...

PT-2024-27690 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.6165 20211012 Description: A stack overflow issue was discovered in the setWizardCfg function via ssid5g. Recommendations: For TOTOLINK A3700R version 9.1.2u.6165 20211012, as a temporary workaround, consider...

PT-2024-27693 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.6165 20211012 Description: A stack overflow issue was discovered in the setWiFiEasyGuestCfg function via ssid5g. Recommendations: For TOTOLINK A3700R version 9.1.2u.6165 20211012, as a temporary workaround,...

PT-2024-27691 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.6165 20211012 Description: A stack overflow issue was discovered in the function setIpPortFilterRules via eport. This issue affects the TOTOLINK A3700R router. Recommendations: For TOTOLINK A3700R version...

CVE-2024-37631

TOTOLINK A3700R V9.1.2u.616520211012 was discovered to contain a stack overflow via the File parameter in function UploadCustomModule...

PT-2024-27687 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.6165 20211012 Description: A stack overflow issue was discovered via the password parameter in the loginAuth function. This issue can be exploited, potentially allowing unauthorized access. Recommendations: For...

PT-2024-27689 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.6165 20211012 Description: A stack overflow issue was discovered in the setWiFiBasicCfg function via the ssid parameter. This issue can potentially be exploited. Recommendations: For TOTOLINK A3700R version...