CVE-2026-7054

creationtimestamp| type| source ---|---|--- 2026-05-29 10:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mmyc2x7f2i2g...

CVE-2026-7054

A weakness has been identified in Tenda F456 1.0.0.5. This vulnerability affects the function fromPptpUserAdd of the file /goform/PPTPDClient of the component httpd. Executing a manipulation of the argument opttype/usernamewith can lead to buffer overflow. The attack can be executed remotely. The...

CVE-2020-7054

MmsValuedecodeMmsData in mms/isomms/server/mmsaccessresult.c in libIEC61850 through 1.4.0 has a heap-based buffer overflow when parsing the MMSBITSTRING data type...

CVE-2013-7054

D-Link DIR-100 4.03B07: cli.cgi XSS...

CVE-2019-7054

creationtimestamp| type| source ---|---|--- 2025-08-31 03:13:07+00:00| seen| MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57...

CVE-2025-7054

creationtimestamp| type| source ---|---|--- 2025-08-19 17:15:10+00:00| seen| https://mastodon.social/users/chrisvest/statuses/115056555293422955...

CVE-2025-7054 vulnerabilities

Vulnerabilities for packages: quiche...

CVE-2025-7054 vulnerabilities

Vulnerabilities for packages: quiche...

SQUICD (>=0.1.0 <=0.1.1), bolic-network (=0.0.1) +7 more potentially affected by CVE-2025-7054 via quiche (>=0.16.0 <=0.22.0)

quiche CARGO version =0.16.0, =0.1.0, =0.2.4, =0.0.1, =0.0.2 - quiche-async =0.0.0 - quiche-tokio =0.1.0 - quiver-h3 =0.1.0 Source cves: CVE-2025-7054 Source advisory: OSV:GHSA-M3HH-F9GH-74C2...

Ubuntu: Security Advisory (USN-7054-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 24.04 LTS : unzip vulnerability (USN-7054-1)

The remote Ubuntu 24.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-7054-1 advisory. It was discovered that unzip did not properly handle unicode strings under certain circumstances. If a user were tricked into opening a specially crafted zip file...

CVE-2024-7054

creationtimestamp| type| source ---|---|--- 2024-08-20 13:46:53+00:00| seen| https://t.me/cvedetector/3610...

CVE-2024-7054

The Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popups Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘closetext’ parameter in all versions up to, and including, 1.19.0 due to insufficient input sanitization and output...

CVE-2023-7054

creationtimestamp| type| source ---|---|--- 2023-12-22 03:32:06+00:00| seen| https://t.me/ctinow/158158 2023-12-28 17:16:56+00:00| seen| https://t.me/ctinow/160110 2024-01-14 14:47:06+00:00| seen| https://t.me/ctinow/168036...

CVE-2023-7054

CVE-2023-7054 pertains to PHPGurukul Online Notes Sharing System 1.0, where unrestricted file upload is possible via processing of the file /user/add-notes.php. The impact, as described across sources, is an unrestricted upload that could enable remote abuse. The description is consistent across ...

K32460441: OpenSSL vulnerabilities CVE-2016-7053 and CVE-2016-7054

Security Advisory Description CVE-2016-7053 In OpenSSL 1.1.0 before 1.1.0c, applications parsing invalid CMS structures can crash with a NULL pointer dereference. This is caused by a bug in the handling of the ASN.1 CHOICE type in OpenSSL 1.1.0 which can result in a NULL value being passed to the...

SUSE CVE-2018-7054

An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1. There is a use-after-free when a server is disconnected during netsplits. NOTE: this issue exists because of an incomplete fix for CVE-2017-7191...

Mageia: Security Advisory (MGASA-2018-0132)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2013-7054

CVE-2013-7054 affects D-Link DIR-100 with firmware 4.03B07 in the cli.cgi component, enabling Cross-Site Scripting (XSS). Public details from multiple sources confirm the issue and indicate a vendor fix to 4.03B13; applying the patched firmware is recommended. CVSS vectors show network-remote acc...

CVE-2020-7054

MmsValuedecodeMmsData in mms/isomms/server/mmsaccessresult.c in libIEC61850 through 1.4.0 has a heap-based buffer overflow when parsing the MMSBITSTRING data type...