Lucene search
K

8 matches found

Packet Storm
Packet Storm
added 2026/01/19 12:0 a.m.169 views

📄 Abacre Retail Point of Sale 14.0.0.396 SQL Injection

Abacre Retail Point of Sale version 14.0.0.396 suffers from a remote blind SQL injection vulnerability. CVE-2025-67261 - Content-based blind SQL injection on Abacre Retail Point of Sale 14.0.0.396 Abacre Retail Point of Sale 14.0.0.396 is vulnerable to content-based blind SQL injection. The...

6.5CVSS5.8AI score0.00183EPSS
Exploits2
GithubExploit
GithubExploit
added 2026/01/18 6:24 a.m.174 views

Exploit for CVE-2025-67261

CVE-2025-67261 - Content-based blind SQL injection on Abacre R...

8.1AI score0.00183EPSS
Exploits2
CNVD
CNVD
added 2018/08/27 12:0 a.m.3 views

D-Link DIR-615 Cross-Site Scripting Vulnerability (CNVD-2018-16520)

D-Link DIR-615 is a small wireless router product from AUO D-Link. A cross-site scripting vulnerability exists in the D-Link DIR-615 version 20.07. A remote attacker can exploit this vulnerability by injecting JavaScript code into the 'Status - Active Client Table' page with the 'hostname' field ...

6.1CVSS6.2AI score0.01176EPSS
Exploits0References1
OSV
OSV
added 2018/08/25 7:29 p.m.3 views

CVE-2018-15874

Cross-site scripting XSS vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status - Active Client Table" page via the hostname field in a DHCP request...

6.1CVSS5.8AI score0.01176EPSS
Exploits0References1
Prion
Prion
added 2018/08/25 7:29 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status - Active Client Table" page via the hostname field in a DHCP request...

4.3CVSS6AI score0.01176EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2018/08/25 7:0 p.m.50 views

CVE-2018-15874

The connected CNVD entry describes a Cross-Site Scripting (XSS) vulnerability in D-Link DIR-615 routers using version 20.07, exploitable by injecting JavaScript into the Status → Active Client Table via the hostname field in DHCP requests. Affected component: the DHCP hostname handling on DIR-615...

6.1CVSS6AI score0.01176EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/08/25 7:0 p.m.18 views

CVE-2018-15874

Cross-site scripting XSS vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status - Active Client Table" page via the hostname field in a DHCP request...

6AI score0.01176EPSS
Exploits0References1
Prion
Prion
added 2016/08/06 10:59 a.m.16 views

Code injection

The diag driver in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not ensure unique identifiers in a DCI client table, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28750155 and Qualcomm internal bug CR590721...

6.8CVSS7.2AI score0.00454EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder