Lucene search
K

109 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-26332

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00403EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-28488

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00818EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/08/11 1:32 a.m.7 views

CVE-2025-8824 Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 setRIP stack-based overflow

A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function setRIP of the file /goform/setRIP. The manipulation of the argument RIPmode/RIPpasswd leads to stack-based buffer overflow. The attack may be launched...

9CVSS0.00871EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/06/26 6:29 a.m.4 views

perl-file-find-rule: File::Find::Rule Arbitrary Code Execution

A flaw was found in perl-file-find-rule. The grep function within File::Find::Rule versions up to 0.34 is vulnerable to arbitrary code execution if provided with a specially crafted filename. This vulnerability allows an attacker to supply a filename that, when opened, executes arbitrary code via...

8.8CVSS6.5AI score0.00736EPSS
Exploits0References9
OSV
OSV
added 2025/06/21 11:15 a.m.3 views

CVE-2025-5289

The 3D FlipBook – PDF Embedder, PDF Flipbook Viewer, Flipbook Image Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘style’ and 'mode' parameters in all versions up to, and including, 1.16.15 due to insufficient input sanitization and output escaping. This makes ...

5.4CVSS5.9AI score
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 3:0 a.m.4 views

CVE-2023-1635

A vulnerability was found in OTCMS 6.72. It has been declared as problematic. Affected by this vulnerability is the function AutoRun of the file apiRun.php. The manipulation of the argument mode leads to cross site scripting. The attack can be launched remotely. The identifier VDB-224017 was...

6.1CVSS5.9AI score0.00617EPSS
Exploits1References1
OSV
OSV
added 2025/04/07 3:15 a.m.4 views

CVE-2025-3331

A vulnerability, which was classified as critical, has been found in codeprojects Online Restaurant Management System 1.0. This issue affects some unknown processing of the file /paymentsave.php. The manipulation of the argument mode leads to sql injection. The attack may be initiated remotely. T...

9.8CVSS6.9AI score0.00506EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/04/07 12:0 a.m.3 views

Online Restaurant Management System SQL注入漏洞

Online Restaurant Management System is a Code-projects open source online restaurant management system. A SQL injection vulnerability exists in Online Restaurant Management System version 1.0, which originates from improper handling of the parameter mode in the /paymentsave.php file, which may le...

9.8CVSS7.8AI score0.00506EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/02/04 10:17 p.m.7 views

CVE-2024-35519

Netgear EX6120 v1.0.0.68, Netgear EX6100 v1.0.2.28, and Netgear EX3700 v1.0.0.96 are vulnerable to command injection in operatingmode.cgi via the apmode parameter...

8.4CVSS7.5AI score0.01006EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/04 10:14 p.m.9 views

CVE-2024-35522

Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operatingmode.cgi via the apmode parameter with ap24gmanual set to 1 and ap24gmanualsec set to NotNone...

8.4CVSS7.3AI score0.01803EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.4 views

PT-2025-2580 · Wavlink · Wavlink Ac3000

Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: Multiple buffer overflow vulnerabilities exist in the qos.cgi qos settings functionality. A specially crafted HTTP request can lead to stack-based buffer overflow. An attacker can make an...

9.1CVSS7.5AI score0.01212EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.6 views

The vulnerability in the operating_mode.cgi script of NETGEAR’s router microprogramming devices EX6120, EX6100, and EX3700 allows a hacker to execute arbitrary commands.

The vulnerability of the operatingmode.cgi script in NETGEAR’s microprogrammed router devices, such as EX6120, EX6100, and EX3700, is related to the lack of measures taken to protect data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

8.4CVSS5.9AI score0.01006EPSS
Exploits0References5Affected Software3
CNNVD
CNNVD
added 2024/10/14 12:0 a.m.3 views

Wavelog 安全漏洞

Wavelog is a web-based amateur radio logging software from Wavelog Open Source. A security vulnerability exists in Wavelog version 1.8.5, which stems from a Gridmapmodel.php getbandconfirmed SQL injection that allows Gridmapmodel.php getbandconfirmed via band, sat, propagation, or mode...

7.3CVSS7.9AI score0.00416EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/10/14 12:0 a.m.3 views

Wavelog 安全漏洞

Wavelog is a web-based amateur radio logging software from Wavelog Open Source. A security vulnerability exists in Wavelog version 1.8.5, which stems from allowing Activatedgridmapmodel.php getbandconfirmed SQL injection via band, sat, propagation, or mode...

9.8CVSS7.7AI score0.00533EPSS
Exploits1References4
OSV
OSV
added 2024/10/11 10:15 p.m.5 views

CVE-2024-35522

Netgear EX3700 ' AC750 WiFi Range Extender Essentials Edition before 1.0.0.98 contains an authenticated command injection in operatingmode.cgi via the apmode parameter with ap24gmanual set to 1 and ap24gmanualsec set to NotNone...

7.2CVSS5.8AI score0.01803EPSS
Exploits1References1
OSV
OSV
added 2024/09/11 12:15 p.m.5 views

CVE-2024-45789

This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper validation of the ‘mode’ parameter in the API endpoint used during the registration process. An authenticated remote attacker could exploit this vulnerability by manipulating parameter in the API request body on the...

4.3CVSS5.9AI score0.00219EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/11 12:0 a.m.5 views

Reedos aiM-Star 安全漏洞

Reedos aiM-Star is a software product from Reedos for mutual fund distribution. A security vulnerability exists in Reedos aiM-Star version 2.0.1 that stems from improper validation of the mode parameter in the API endpoint used during the enrollment process, which allows an attacker to bypass...

6.9CVSS6.8AI score0.00219EPSS
Exploits0References2
OSV
OSV
added 2024/08/26 4:15 p.m.4 views

CVE-2024-44557

Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function setIptvInfo...

9.8CVSS5.8AI score0.00612EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/08/26 12:0 a.m.4 views

Tenda AX1806 安全漏洞

The Tenda AX1806 is a WiFi6 wireless router from Tenda, a Chinese company. The Tenda AX1806 suffers from a stack overflow vulnerability that originates from the iptv.stb.mode parameter in the function formGetIptv that contains a stack overflow, and no detailed vulnerability details are provided a...

9.8CVSS7.3AI score0.0063EPSS
Exploits1References2
OSV
OSV
added 2024/06/27 12:15 p.m.3 views

CVE-2024-6369

A vulnerability classified as problematic has been found in LabVantage LIMS 2017. Affected is an unknown function of the file /labvantage/rc?command=page&sdcid=LVReagentLot of the component POST Request Handler. The manipulation of the argument mode leads to cross site scripting. It is possible t...

5.4CVSS3.9AI score
Exploits0References4
Rows per page
Query Builder