CVE-2025-3763 SourceCodester Phone Management System Password main buffer overflow

A vulnerability classified as critical has been found in SourceCodester Phone Management System 1.0. This affects the function main of the component Password Handler. The manipulation of the argument s leads to buffer overflow. Local access is required to approach this attack. The exploit has bee...

SourceCodester Phone Management System 安全漏洞

SourceCodester Phone Management System is an open source phone management system from SourceCodester. A security vulnerability exists in SourceCodester Phone Management System version 1.0, which is caused by a buffer overflow in the Password Handler component's main function due to mishandling of...

PT-2025-17225 · Sourcecodester · Sourcecodester Loan Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Phone Management System version 1.0 Description: A critical vulnerability has been found in the SourceCodester Phone Management System. This issue affects the main function of the Password Handler component. The manipulation of...

CVE-2025-3663

A vulnerability, which was classified as critical, has been found in TOTOLINK A3700R 9.1.2u.5822B20200513. This issue affects the function setWiFiEasyCfg/setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi of the component Password Handler. The manipulation leads to improper access controls. The...

CVE-2025-3663

The CVE-2025-3663 entry affects TOTOLINK A3700R (version 9.1.2u.5822_B20200513). The vulnerability resides in the Password Handler component, specifically the functions setWiFiEasyCfg and setWiFiEasyGuestCfg within /cgi-bin/cstecgi.cgi, which leads to improper access controls. This can be exploit...

CVE-2025-3663 TOTOLINK A3700R Password cstecgi.cgi setWiFiEasyGuestCfg access control

A vulnerability, which was classified as critical, has been found in TOTOLINK A3700R 9.1.2u.5822B20200513. This issue affects the function setWiFiEasyCfg/setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi of the component Password Handler. The manipulation leads to improper access controls. The...

PT-2025-16550 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.5822 B20200513 Description: A critical vulnerability has been found in the TOTOLINK A3700R, affecting the function setWiFiEasyCfg/setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi in the Password Handler...

CVE-2025-3325

A vulnerability, which was classified as problematic, was found in iteaj iboot 物联网网关 1.1.3. This affects an unknown part of the file /core/admin/pwd of the component Admin Password Handler. The manipulation of the argument ID leads to improper access controls. It is possible to initiate the attac...

CVE-2025-3325

A vulnerability, which was classified as problematic, was found in iteaj iboot 物联网网关 1.1.3. This affects an unknown part of the file /core/admin/pwd of the component Admin Password Handler. The manipulation of the argument ID leads to improper access controls. It is possible to initiate the attac...

CVE-2025-3325

A vulnerability, which was classified as problematic, was found in iteaj iboot 物联网网关 1.1.3. This affects an unknown part of the file /core/admin/pwd of the component Admin Password Handler. The manipulation of the argument ID leads to improper access controls. It is possible to initiate the attac...

CVE-2025-3325 iteaj iboot 物联网网关 Admin Password pwd access control

A vulnerability, which was classified as problematic, was found in iteaj iboot 物联网网关 1.1.3. This affects an unknown part of the file /core/admin/pwd of the component Admin Password Handler. The manipulation of the argument ID leads to improper access controls. It is possible to initiate the attac...

PT-2025-15126 · Iteaj · Iteaj Iboot

Name of the Vulnerable Software and Affected Versions: iteaj iboot 物联网网关 version 1.1.3 Description: A problematic issue was found in the Admin Password Handler component, affecting an unknown part of the file /core/admin/pwd. The manipulation of the ID argument leads to improper access controls,...

CVE-2025-1629

CVE-2025-1629 affects Excitel Broadband Private my Excitel App for Android (version 3.13.0). The issue resides in an unknown function of the One-Time Password Handler, causing improper restriction of excessive authentication attempts. Reported by multiple sources (NVD/Red Hat/CVE listings) with v...

Excitel Broadband Private my Excitel 安全漏洞

Excitel Broadband Private my Excitel is a fast online payment software from Excitel Broadband Private. A security vulnerability exists in Excitel Broadband Private my Excitel version 3.13.0, which stems from improperly restricted authentication attempts in the One-Time Password Handler component...

CVE-2025-1369

A vulnerability classified as critical was found in MicroWord eScan Antivirus 7.0.32 on Linux. Affected by this vulnerability is an unknown functionality of the component USB Password Handler. The manipulation leads to os command injection. The attack needs to be approached locally. The complexit...

CVE-2025-1369

A vulnerability classified as critical was found in MicroWord eScan Antivirus 7.0.32 on Linux. Affected by this vulnerability is an unknown functionality of the component USB Password Handler. The manipulation leads to os command injection. The attack needs to be approached locally. The complexit...

UBUNTU-CVE-2025-1369

A vulnerability classified as critical was found in MicroWord eScan Antivirus 7.0.32 on Linux. Affected by this vulnerability is an unknown functionality of the component USB Password Handler. The manipulation leads to os command injection. The attack needs to be approached locally. The complexit...

CVE-2025-1369 MicroWord eScan Antivirus USB Password os command injection

A vulnerability classified as critical was found in MicroWord eScan Antivirus 7.0.32 on Linux. Affected by this vulnerability is an unknown functionality of the component USB Password Handler. The manipulation leads to os command injection. The attack needs to be approached locally. The complexit...

CVE-2025-1369

The CVE-2025-1369 entry relates to MicroWord eScan Antivirus 7.0.32 on Linux, where an unknown function of the USB Password Handler is vulnerable to local OS command injection. The vulnerability is described as requiring local access with high attack complexity, and exploitation is noted as publi...

CVE-2025-1369 MicroWord eScan Antivirus USB Password os command injection

A vulnerability classified as critical was found in MicroWord eScan Antivirus 7.0.32 on Linux. Affected by this vulnerability is an unknown functionality of the component USB Password Handler. The manipulation leads to os command injection. The attack needs to be approached locally. The complexit...