5 matches found
CVE-2026-7503
CVE-2026-7503 affects code-projects Plugin 4.1.2cu.5137, specifically the setWiFiMultipleConfig function in /cgi-bin/cstecgi.cgi using /lib/cste_modules/wireless.so. The vulnerability arises from improper handling of the wepkey2 argument, causing a buffer overflow. Impact is high (network access,...
CVE-2026-2214
A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the file /Administrator/PHP/AdminAddAlbum.php. This manipulation of the argument txtalbum causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made availabl...
CVE-2026-2214
CVE-2026-2214 affects code-projects for Plugin 1.0, with the weakness located in an unknown part of /Administrator/PHP/AdminAddAlbum.php. The issue arises from manipulating the txtalbum argument, enabling a cross-site scripting (XSS) flaw that can be triggered remotely. Multiple connected sources...
CVE-2026-2214 code-projects for Plugin AdminAddAlbum.php cross site scripting
A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the file /Administrator/PHP/AdminAddAlbum.php. This manipulation of the argument txtalbum causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made availabl...
PT-2026-7065
A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the file /Administrator/PHP/AdminAddAlbum.php. This manipulation of the argument txtalbum causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made availabl...