Lucene search
K

80 matches found

CNNVD
CNNVD
added 2024/05/06 12:0 a.m.5 views

Campcodes Complete Web-Based School Management System 跨站脚本漏洞

Campcodes Complete Web-Based School Management System is a Web-based school management system from Campcodes, Inc. A cross-site scripting vulnerability exists in version 1.0 of the Campcodes Complete Web-Based School Management System, which stems from a cross-site scripting vulnerability in the...

6.1CVSS4.5AI score0.0059EPSS
Exploits1References5
Prion
Prion
added 2024/01/30 3:15 p.m.16 views

Command injection

TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the desc parameter in the setWiFiAclRules function...

7.5CVSS8.2AI score0.01702EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/30 12:0 a.m.5 views

PT-2024-20366 · Totolink · Totolink A3300R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3300R version 17.0.0cu.557 B20221024 Description: A command injection issue was discovered via the desc parameter in the setWiFiAclRules function. This allows for potential command injection attacks. Recommendations: For TOTOLINK...

9.8CVSS9.6AI score0.01702EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/01/30 12:0 a.m.5 views

TOTOLINK A3300R 安全漏洞

TOTOLINK A3300R is a wireless router from China's Gion Electronics TOTOLINK. A command injection vulnerability exists in the TOTOLINK A3300R version V17.0.0cu.557B20221024, which stems from the desc parameter of the setWiFiAclRules method failing to correctly filter the construct command special...

9.8CVSS7.8AI score0.01702EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/12/21 4:23 p.m.16 views

CVE-2023-45121 Online Examination System v1.0 - Multiple Authenticated SQL Injections (SQLi)

Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'desc' parameter of the /update.php?q=addquiz resource does not validate the characters received and they are sent unfiltered to the database...

8.8CVSS10AI score0.00673EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/10/23 12:0 a.m.10 views

PT-2023-29815 · Unknown · Geeklog-Core

Name of the Vulnerable Software and Affected Versions: Geeklog-Core geeklog version 2.2.2 Description: A Cross Site Scripting XSS issue allows a remote attacker to execute arbitrary code via a crafted payload to the grp desc parameter of the "admin/group.php" component. This enables the attacker ...

4.8CVSS5.3AI score0.00596EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2023/05/29 12:0 a.m.6 views

PT-2023-12763 · Audiocodes · Audiocodes Device Manager Express

Name of the Vulnerable Software and Affected Versions: AudioCodes Device Manager Express versions through 7.8.20002.47752 Description: The issue is related to stored XSS via the desc parameter in the "ajaxTenants.php" endpoint. Recommendations: For AudioCodes Device Manager Express versions throu...

5.4CVSS5AI score0.43187EPSS
Exploits4References3
OSV
OSV
added 2022/07/01 6:15 p.m.1 views

CVE-2022-32045

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN00413be4...

7.5CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2022/07/01 6:15 p.m.21 views

CVE-2022-32052

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN004137a4...

7.5CVSS0.01055EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/07/01 6:15 p.m.4 views

CVE-2022-32045

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN00413be4...

7.5CVSS5.8AI score0.01055EPSS
Exploits1References2
OSV
OSV
added 2022/07/01 6:15 p.m.4 views

CVE-2022-32046

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN0041880c...

7.5CVSS5.8AI score0.01055EPSS
Exploits1References1
NVD
NVD
added 2022/07/01 6:15 p.m.23 views

CVE-2022-32046

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN0041880c...

7.5CVSS0.01055EPSS
Exploits1References1
NVD
NVD
added 2022/07/01 6:15 p.m.26 views

CVE-2022-32047

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN00412ef4...

7.5CVSS0.01055EPSS
Exploits1References1
Prion
Prion
added 2022/07/01 6:15 p.m.17 views

Stack overflow

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN004137a4...

5CVSS7.7AI score0.01055EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/07/01 6:15 p.m.15 views

Stack overflow

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN00413be4...

5CVSS7.7AI score0.01055EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/07/01 6:15 p.m.23 views

Stack overflow

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN00412ef4...

5CVSS7.7AI score0.01055EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/07/01 6:15 p.m.19 views

Stack overflow

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN0041880c...

5CVSS7.7AI score0.01055EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/07/01 5:27 p.m.19 views

CVE-2022-32045

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN00413be4...

7.9AI score0.01055EPSS
Exploits1References1
CVE
CVE
added 2022/07/01 5:27 p.m.61 views

CVE-2022-32047

CVE-2022-32047 concerns a stack overflow in TOTOLINK T6 V4.1.9cu.5179_B20201015, triggered by the desc parameter in the function FUN_00412ef4 . The evidence consistently states that the vulnerability arises from not checking input length in this function, enabling a stack overflow that can lead t...

7.5CVSS7.7AI score0.01055EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/07/01 5:27 p.m.28 views

CVE-2022-32046

TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN0041880c...

7.9AI score0.01055EPSS
Exploits1References1
Rows per page
Query Builder