Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3630 matches found

NVD
NVDadded 2025/07/25 8:15 a.m.7 views

CVE-2025-8137

A vulnerability has been found in TOTOLINK A702R 4.0.0-B20230721.1521 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formIpQoS of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow. The...

9CVSS0.00955EPSS
Exploits1References5
NVD
NVDadded 2025/07/25 8:15 a.m.4 views

CVE-2025-8138

A vulnerability was found in TOTOLINK A702R 4.0.0-B20230721.1521 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formOneKeyAccessButton of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...

9CVSS0.01422EPSS
Exploits1References5
CVE
CVEadded 2025/07/25 8:2 a.m.21 views

CVE-2025-8138

TOTOLINK A702R 4.0.0-B20230721.1521 is affected by a buffer overflow in the HTTP POST Request Handler’s /boafrm/formOneKeyAccessButton when manipulating the submit-url argument. The issue can be triggered remotely (network), with potential for arbitrary code execution and denial of service as des...

9CVSS8.8AI score0.01422EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentadded 2025/07/25 8:2 a.m.3 views

CVE-2025-8138 TOTOLINK A702R HTTP POST Request formOneKeyAccessButton buffer overflow

A vulnerability was found in TOTOLINK A702R 4.0.0-B20230721.1521 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formOneKeyAccessButton of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...

9CVSS8.9AI score0.01422EPSS
Exploits1References5
Cvelist
Cvelistadded 2025/07/25 8:2 a.m.8 views

CVE-2025-8138 TOTOLINK A702R HTTP POST Request formOneKeyAccessButton buffer overflow

A vulnerability was found in TOTOLINK A702R 4.0.0-B20230721.1521 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formOneKeyAccessButton of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer...

9CVSS0.01422EPSS
Exploits1References5
Cvelist
Cvelistadded 2025/07/25 7:32 a.m.11 views

CVE-2025-8137 TOTOLINK A702R HTTP POST Request formIpQoS buffer overflow

A vulnerability has been found in TOTOLINK A702R 4.0.0-B20230721.1521 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formIpQoS of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow. The...

9CVSS0.00955EPSS
Exploits1References5
CVE
CVEadded 2025/07/25 7:32 a.m.19 views

CVE-2025-8137

Summary: CVE-2025-8137 affects TOTOLINK A702R (v4.0.0-B20230721.1521). The HTTP POST handler under /boafrm/formIpQoS is vulnerable due to improper handling of the mac parameter, causing a buffer overflow. This enables remote exploitation and has been publicly disclosed. The vulnerability’s impact...

9CVSS8.9AI score0.00955EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2025/07/25 7:15 a.m.2 views

CVE-2025-8136

A vulnerability, which was classified as critical, was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected is an unknown function of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument ip6addr leads to buffer overflow. It is possible to laun...

7.5CVSS6.3AI score0.01427EPSS
Exploits1References5
NVD
NVDadded 2025/07/25 7:15 a.m.3 views

CVE-2025-8136

A vulnerability, which was classified as critical, was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected is an unknown function of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument ip6addr leads to buffer overflow. It is possible to laun...

9CVSS0.01427EPSS
Exploits1References5
Cvelist
Cvelistadded 2025/07/25 7:2 a.m.12 views

CVE-2025-8136 TOTOLINK A702R HTTP POST Request formFilter buffer overflow

A vulnerability, which was classified as critical, was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected is an unknown function of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument ip6addr leads to buffer overflow. It is possible to laun...

9CVSS0.01427EPSS
Exploits1References5
CVE
CVEadded 2025/07/25 7:2 a.m.18 views

CVE-2025-8136

TOTOLINK A702R 4.0.0-B20230721.1521 contains a buffer overflow in the HTTP POST Request Handler, triggered by the ip6addr parameter in the /boafrm/formFilter endpoint. This allows remote exploitation and has publicly disclosed exploits. Connected documents consistently describe the affected compo...

9CVSS9AI score0.01427EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentadded 2025/07/25 7:2 a.m.2 views

CVE-2025-8136 TOTOLINK A702R HTTP POST Request formFilter buffer overflow

A vulnerability, which was classified as critical, was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected is an unknown function of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument ip6addr leads to buffer overflow. It is possible to laun...

9CVSS7.4AI score0.01427EPSS
Exploits1References5
CNNVD
CNNVDadded 2025/07/25 12:0 a.m.4 views

Code-Projects Church Donation System 安全漏洞

Code-Projects Church Donation System is an open source church donation system from Code-Projects. A security vulnerability exists in Code-Projects Church Donation System version 1.0, which stems from an incorrect manipulation of the parameter Username in the file /admin/index.php in the HTTP POST...

9.8CVSS7.8AI score0.00204EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2025/07/25 12:0 a.m.2 views

PT-2025-31027 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability exists in the TOTOLINK X15 device. The issue is a buffer overflow within an unknown function of the HTTP POST Request Handler component, specifically in the file...

9.8CVSS9.1AI score0.02252EPSS
Exploits1References12
Positive Technologies
Positive Technologiesadded 2025/07/25 12:0 a.m.3 views

PT-2025-31029 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical buffer overflow vulnerability exists in the HTTP POST Request Handler component of TOTOLINK X15. The vulnerability is located in the /boafrm/formRoute file and occurs due to...

9CVSS8.9AI score0.01427EPSS
Exploits1References12
Tenable Nessus
Tenable Nessusadded 2025/07/25 12:0 a.m.1 views

NewStart CGSL MAIN 7.02 : libmicrohttpd Vulnerability (NS-SA-2025-0190)

The remote NewStart CGSL host, running version MAIN 7.02, has libmicrohttpd packages installed that are affected by a vulnerability: - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the postprocessor.c...

5.9CVSS6.7AI score0.00074EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2025/07/25 12:0 a.m.3 views

PT-2025-30934 · D Link · Dir-513

Name of the Vulnerable Software and Affected Versions: D-Link DIR-513 version 1.10 Description: A critical vulnerability exists due to a buffer overflow in the formSetWanPPTPcallback function within the /goform/formSetWanPPTPpath file of the HTTP POST Request Handler component. The vulnerability ...

9.8CVSS8.9AI score0.01184EPSS
Exploits1References10
Positive Technologies
Positive Technologiesadded 2025/07/25 12:0 a.m.3 views

PT-2025-31208 · Undefined · Undefined

A stack-based buffer overflow vulnerability in the my cgi.cgi component of certain D-Link devices, including the DSP-W215 version 1.02, can be exploited via a specially crafted HTTP POST request to the /common/info.cgi endpoint. This flaw enables an unauthenticated attacker to achieve remote code...

9.3CVSS8.6AI score0.62546EPSS
Exploits1References6
CNNVD
CNNVDadded 2025/07/25 12:0 a.m.2 views

TOTOLINK A702R 安全漏洞

The TOTOLINK A702R is a wireless router from TOTOLINK. A buffer overflow vulnerability exists in TOTOLINK A702R version 4.0.0B20230721.1521, which stems from improper handling of the submit-url parameter in the /boafrm/formWlanMultipleAP file in the HTTP POST request handling component. An attack...

9CVSS7.8AI score0.01422EPSS
Exploits1References6
Positive Technologies
Positive Technologiesadded 2025/07/25 12:0 a.m.4 views

PT-2025-30929 · Unknown · Church Donation System

Name of the Vulnerable Software and Affected Versions: code-projects Church Donation System version 1.0 Description: A critical vulnerability exists in code-projects Church Donation System 1.0. The issue is a SQL injection affecting an unknown function within the /admin/index.php file of the HTTP...

9.8CVSS7.5AI score0.00204EPSS
Exploits1References10
Rows per page
Query Builder