57 matches found
EUVD-2020-31033
Nsauditor Product Key Explorer 4.2.2.0 contains a denial of service vulnerability that allows local attackers to crash the application by inputting a specially crafted registration key. Attackers can generate a payload of 1000 bytes of repeated characters and paste it into the 'Key' input field t...
CVE-2020-37043 10-Strike Bandwidth Monitor 3.9 - Buffer Overflow
10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application's registration key input, enabling...
CVE-2021-47815 Nsauditor 3.2.3 - Denial of Service (PoC)
Nsauditor 3.2.3 contains a denial of service vulnerability in the registration code input field that allows attackers to crash the application. Attackers can paste a large buffer of 256 repeated characters into the 'Key' field to trigger an application crash...
CVE-2022-50922
Audio Conversion Wizard v2.01 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting memory with a specially crafted registration code. Attackers can generate a payload that overwrites the application's memory stack, potentially enabling remote cod...
GHSA-M4J5-5X4R-2XP9 Keycloak SMTP Inject Vulnerability
Special characters used during e-mail registration may perform SMTP Injection and unexpectedly send short unwanted e-mails. The email is limited to 64 characters limited local part of the email, so the attack is limited to very shorts emails subject and little data, the example is 60 chars. This...
Code-Projects Food Ordering Review System 安全漏洞
Code-Projects Food Ordering Review System is an open source food ordering review system from Code-Projects. A security vulnerability exists in Code-Projects Food Ordering Review System version 1.0, which stems from a failure to validate user name input in the registration function, which could le...
CVE-2025-57147
A SQL Injection vulnerability was found in phpgurukul Complaint Management System 2.0. The vulnerability is due to lack of input validation of multiple parameters including fullname, email, and contactno in user/registration.php...
CRLF Injection
Keycloak-services is vulnerable to CRLF Injection. The vulnerability is due to improper input validation due to special characters in email registration being improperly handled, allowing attackers to inject SMTP commands and send unsolicited emails...
XWiki User Registration Remote Code Execution
XWiki Platform versions from 2.2 before 14.10.17, from 15.0-rc-1 before 15.5.3, and from 15.6-rc-1 before 15.8-rc-1 suffer from a Server-Side Template Injection SSTI due to the lack of sanitization of the user registration form's inputs. By leveraging this vulnerability, a remote and...
PT-2024-33252 · Sharp +1 · Sharp Mfps +1
Name of the Vulnerable Software and Affected Versions: Sharp and Toshiba Tec MFPs affected versions not specified Description: The issue is related to improper validation of input data in URI data registration, resulting in a stored cross-site scripting vulnerability. If crafted input is stored b...
Press 安全漏洞
Press is a Frappe open source Frappe custom application running Frappe Cloud. Press has a security vulnerability that stems from the ability to inject HTML via SaaS registration input...
CVE-2024-43317
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Metagauss User Registration Team RegistrationMagic allows Cross-Site Scripting XSS.This issue affects RegistrationMagic: from n/a through 6.0.1.0...
CVE-2021-46084
uscat, as of 2021-12-28, is vulnerable to Cross Site Scripting XSS via "close registration information" input box...
Uscat 跨站脚本漏洞
Uscat is a forum system based on Javaex + Ssm development. A cross-site scripting vulnerability exists in uscat, which stems from a cross-site scripting XSS vulnerability in the close registration information input box of uscat...
SEH Buffer Overflow Vulnerability in DVD Photo Slideshow Professional
DVD Photo Slideshow Pro is a simple, practical and powerful program for creating electronic photo albums. DVD Photo Slideshow Professional suffers from a SEH buffer overflow vulnerability. The vulnerability can be exploited to execute arbitrary code within the context of the application by failin...
Barracuda Networks SN #52 - Persistent Web Vulnerability
Document Title: =============== Barracuda Networks SN 52 - Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1297 BNSEC ID: 0004001004 Tracking ID: CAS-03491-K1X2V0 Release Date: ============= 2016-02-03 Vulnerability Laborator...
CVE-2001-0527
DCScripts DCForum versions 2000 and earlier allow a remote attacker to gain additional privileges by inserting pipe symbols | and newlines into the last name in the registration form, which will create an extra entry in the registration database...