PT-2025-31026 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability exists in the TOTOLINK X15 router's built-in boa server. The issue is a buffer overflow within the memory during the processing of the devicemac1 parameter via an...

PT-2025-31023 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability exists in the HTTP POST Request Handler component of TOTOLINK X15. The vulnerability is located in the unknown code of the /boafrm/formFilter file and results in ...

PT-2025-31028 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability exists in the TOTOLINK X15 router's built-in boa server. The issue is a buffer overflow within the memory during the processing of the submit-url parameter. This...

CVE-2025-7946

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /search-visitor.php of the component HTTP POST Request Handler. The manipulation of the argument searchdata leads to cross sit...

CVE-2025-7946 PHPGurukul Apartment Visitors Management System HTTP POST Request search-visitor.php cross site scripting

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /search-visitor.php of the component HTTP POST Request Handler. The manipulation of the argument searchdata leads to cross sit...

CVE-2025-7946 PHPGurukul Apartment Visitors Management System HTTP POST Request search-visitor.php cross site scripting

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /search-visitor.php of the component HTTP POST Request Handler. The manipulation of the argument searchdata leads to cross sit...

CVE-2025-7946

CVE-2025-7946 affects PHPGurukul Apartment Visitors Management System 1.0. The vulnerability is a cross-site scripting flaw in the HTTP POST Request Handler, triggered by manipulating the searchdata argument processed in /search-visitor.php. Remote exploitation is possible, and public exploit inf...

CVE-2025-7858

A vulnerability classified as problematic has been found in PHPGurukul Apartment Visitors Management System 1.0. This affects an unknown part of the file /admin-profile.php of the component HTTP POST Request Handler. The manipulation of the argument adminname leads to cross site scripting. It is...

PT-2025-30741 · Totolink · Totolink A702R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A702R version 4.0.0-B20230721.1521 Description: A critical vulnerability exists in the TOTOLINK A702R device. The issue is related to a buffer overflow within the HTTP POST Request Handler component, specifically in the file...

PT-2025-30363 · Phpgurukul · Phpgurukul Apartment Visitors Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Apartment Visitors Management System version 1.0 Description: A problematic issue exists due to the manipulation of the searchdata argument within the HTTP POST Request Handler component, specifically when processing the...

PT-2025-30739 · Totolink · Totolink A702R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A702R version 4.0.0-B20230721.1521 Description: A critical vulnerability exists in TOTOLINK A702R. The issue is related to a buffer overflow within the HTTP POST Request Handler component, specifically in the file...

PT-2025-30736 · Totolink · Totolink A702R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A702R version 4.0.0-B20230721.1521 Description: A critical vulnerability exists in the HTTP POST Request Handler component of TOTOLINK A702R. The vulnerability is due to a buffer overflow triggered by manipulating the ip6addr argumen...

PT-2025-30740 · Totolink · Totolink A702R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A702R version 4.0.0-B20230721.1521 Description: A critical vulnerability exists in the HTTP POST Request Handler component of the affected software. The issue is a buffer overflow triggered by manipulating the service type argument...

PT-2025-30737 · Totolink · Totolink A702R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A702R version 4.0.0-B20230721.1521 Description: A critical vulnerability exists in the built-in web server boa, specifically within the /boafrm/formIpQoS file of the TOTOLINK A702R. The issue is a buffer overflow triggered by...

CVE-2025-7819

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /create-pass.php of the component HTTP POST Request Handler. The manipulation of the argument visname leads to cross site scripting. It...

CVE-2025-7817

A vulnerability has been found in PHPGurukul Apartment Visitors Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /bwdates-reports.php of the component HTTP POST Request Handler. The manipulation of the argument visname lea...

CVE-2025-7816

A vulnerability, which was classified as problematic, was found in PHPGurukul Apartment Visitors Management System 1.0. Affected is an unknown function of the file /visitor-detail.php of the component HTTP POST Request Handler. The manipulation of the argument visname leads to cross site scriptin...

CVE-2025-7815

A vulnerability, which was classified as problematic, has been found in PHPGurukul Apartment Visitors Management System 1.0. This issue affects some unknown processing of the file /manage-newvisitors.php of the component HTTP POST Request Handler. The manipulation of the argument visname leads to...

PT-2025-30621 · Gnu · Caldera Graphics

Уязвимость автоматизированной системы эмуляции действий нарушителей Caldera связана с неверным ограничением имени пути к каталогу с ограниченным доступом. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, выполнить произвольный код путём отправки специально сформированног...

CVE-2025-7858

A vulnerability classified as problematic has been found in PHPGurukul Apartment Visitors Management System 1.0. This affects an unknown part of the file /admin-profile.php of the component HTTP POST Request Handler. The manipulation of the argument adminname leads to cross site scripting. It is...