CVE-2026-30278

An arbitrary file overwrite vulnerability in FLY is FUN Aviation Navigation v35.33 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...

CVE-2025-20747

In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10010443; Issue ID: MSV-3966...

PT-2025-44985

Name of the Vulnerable Software and Affected Versions Qualcomm GNSS Service affected versions not specified Description An out-of-bounds write issue exists in the GNSS service due to an incorrect bounds check. Successful exploitation could allow a malicious actor with System privileges to escalat...

A GPS Blackout Would Shut Down the World

GPS jamming and spoofing attacks are on the rise. If the global navigation system the US relies on were to go down entirely, it would send the world into unprecedented chaos...

CVE-2018-18070

An issue was discovered in Daimler Mercedes-Benz COMAND 17/13.0 50.12 on Mercedes-Benz C-Class 2018 vehicles. Defining or receiving a specific navigation route might cause the system to freeze and reboot after a few transmissions. When the system next starts, it tries to re-calculate the route,...

MediaTek 芯片 安全漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. A security vulnerability exists in the MediaTek chips, which stems from a missing boundary check issue in the gnss module that could lead to privilege escalation...

CVE-2023-5827

A vulnerability was found in Shanghai CTI Navigation CTI Monitoring and Early Warning System 2.2. It has been classified as critical. This affects an unknown part of the file /Web/SysManage/UserEdit.aspx. The manipulation of the argument ID leads to sql injection. The exploit has been disclosed t...

CVE-2023-32814

In gnss service, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08031947; Issue ID: ALPS08031947...

CVE-2023-32812

In gnss service, there is a possible out of bounds write due to improper input validation. This could lead to local esclation of privileges with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08017365; Issue ID: ALPS08017365...

GPS Signals Are Being Disrupted in Russian Cities

Navigation system monitors have seen a recent uptick in interruptions since Ukraine began launching long-range drone attacks...

Command Execution Vulnerability in Guojiz International Web Site Navigation System (CNVD-2021-46694)

Guojiz International Website Navigation System is developed with ThinkPHP5.0 PHP7.0 Mysql Apache/Nginx/iis, a CMS program suitable for small and medium-sized webmasters to build websites. Guojiz International Website Navigation System has a command execution vulnerability that can be exploited by...

SQL injection vulnerability in Guojiz international web site navigation system (CNVD-2021-46693)

Guojiz International Website Navigation System is developed with ThinkPHP5.0 PHP7.0 Mysql Apache/Nginx/iis, a CMS program suitable for small and medium-sized webmasters to build websites. Guojiz International Website Navigation System has a SQL injection vulnerability, which can be exploited by...

Command execution vulnerability in the backend of the Guojiz international web site navigation system (CNVD-2021-12808)

Guojiz International Website Navigation System is developed with ThinkPHP5.0 PHP7.0 Mysql Apache/Nginx/iis, a CMS program suitable for small and medium-sized webmasters to build websites. A command execution vulnerability exists in the backend of Guojiz International Website Navigation System. An...

Information leakage vulnerability in the full version of Feifei Movie & TV navigation system

The full version of Fei Fei Movie Navigation System is a free and open source PHP movie program. The full version of Feifei Movie Navigation System suffers from an information disclosure vulnerability. An attacker can exploit the vulnerability to obtain sensitive information...

Uke365 URL navigation open source version of the da***.php file has a logic flaw vulnerability

Youkai 365 Web site navigation open source version is based on PHP + MYSQL development and construction of open source Web site catalog management system. Uke365 Web site navigation open source version of da.php file has a logic flaw vulnerability . Attackers can exploit the vulnerability to dele...

SQL Injection Vulnerability in Guojiz International Website Navigation System

Guojiz International Website Navigation System is developed by ThinkPHP5.0+PHP7.0+Mysql+Apache/Nginx/iis, which is suitable for small and medium-sized webmasters to build a CMS program. Guojiz International Website Navigation System has a SQL injection vulnerability, which can be exploited by...

Stored Cross-Site Scripting Vulnerability in UX365 Web Classifieds Navigation System

Uc365 website classification navigation system is a navigation management system based on PHP + MYSQL development and construction. A stored cross-site scripting vulnerability exists in the Uke365 Website Classifieds Navigation System. An attacker can exploit the vulnerability to obtain an...

SQL Injection Vulnerability in 3D Indoor Tour System of Zhejiang Yongtuo Information Technology Co.

Zhejiang Yongtuo Information Technology Co., Ltd. is a technology provider focusing on 3D as a presentation method to solve the physical spatial relationship, and is committed to becoming the world's leading 3D visualization enterprise, providing customers and partners with comprehensive services...

Command Execution Vulnerability in Guojiz International Website Navigation System

Guojiz International Website Navigation System is a navigation system based on thinkphp. A command execution vulnerability exists in Guojiz International Website Navigation System, which can be exploited by an attacker to gain server control privileges...

File Upload Vulnerability in Guojiz International Website Navigation System

Guojiz International Website Navigation System is a navigation system based on thinkphp. A file upload vulnerability exists in Guojiz International Website Navigation System, which can be exploited by an attacker to gain server control privileges...