Lucene search
K

172 matches found

RedhatCVE
RedhatCVE
added 2025/10/28 4:9 a.m.5 views

CVE-2025-12212

A weakness has been identified in Tenda O3 1.0.0.102478. This affects the function SetValue/GetValue of the file /goform/setNetworkService. This manipulation of the argument upnpEn causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made available to the...

9CVSS8.8AI score0.00725EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/10/27 10:32 p.m.3 views

CVE-2025-12334 code-projects E-Commerce Website product_add.php cross site scripting

A vulnerability was found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/productadd.php. The manipulation of the argument prodname/proddesc/prodcost results in cross site scripting. It is possible to launch the attack remotely. The exploit has been mad...

5.3CVSS3.9AI score0.00356EPSS
Exploits1References5
CVE
CVE
added 2025/10/27 7:2 a.m.14 views

CVE-2025-12241

TOTOLINK A3300R (firmware 17.0.0cu.557_B20221024) contains a stack-based buffer overflow in the POST Parameter Handler’s setLanguageCfg (parameter lang) in /cgi-bin/cstecgi.cgi. The issue allows remote code execution and remote impact with high severity (per CVE-2025-12241 descriptions across NVD...

9CVSS8.7AI score0.00927EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2025/10/27 3:2 a.m.13 views

CVE-2025-12208

SourceCodester Best House Rental Management System 1.0 is affected by a SQL injection in the login2 function of /admin_class.php, caused by improper handling of the Username argument. The vulnerability allows remote exploitation, and public proof-of-concept exploits exist. Red Hat/EUVD/NVD refere...

9.8CVSS6.8AI score0.00431EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/11 12:0 a.m.4 views

PT-2025-41699

Name of the Vulnerable Software and Affected Versions Simple Food Ordering System version 1.0 Description A flaw exists in Simple Food Ordering System 1.0, specifically within the /addcategory.php file. Manipulation of the cname argument can lead to SQL injection. This issue is remotely...

6.5CVSS6.5AI score0.00302EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2025/10/10 1:31 a.m.6 views

CVE-2025-11480

A vulnerability was detected in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /register.php. Performing manipulation of the argument registerusername results in sql injection. The attack is possible to be carried out remotely. The exploit ...

9.8CVSS7AI score0.00379EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/10/09 9:2 p.m.8 views

CVE-2025-11558 code-projects E-Commerce Website user_index_search.php sql injection

A vulnerability was found in code-projects E-Commerce Website 1.0. Impacted is an unknown function of the file /pages/userindexsearch.php. Performing manipulation of the argument Search results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public a...

7.5CVSS0.00431EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/10/09 1:27 p.m.14 views

CVE-2025-11443

A weakness has been identified in JhumanJ OpnForm up to 1.9.3. This affects an unknown function of the file /api/password/email of the component Forgotten Password Handler. This manipulation causes information exposure through discrepancy. It is possible to initiate the attack remotely. The attac...

6.3CVSS6.4AI score0.0051EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 7:21 a.m.4 views

CVE-2025-11356

A vulnerability was found in Tenda AC23 up to 16.03.07.52. Affected by this issue is the function sscanf of the file /goform/SetStaticRouteCfg. The manipulation of the argument list results in buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and coul...

9CVSS7.4AI score0.00725EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/10/07 8:2 p.m.7 views

CVE-2025-11407 D-Link DI-7001 MINI upgrade_filter.asp os command injection

A weakness has been identified in D-Link DI-7001 MINI 24.04.18B1. Impacted is an unknown function of the file /upgradefilter.asp. This manipulation of the argument path causes os command injection. The attack may be initiated remotely. The exploit has been made available to the public and could b...

6.5CVSS0.04033EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/10/07 12:0 a.m.6 views

PT-2025-41134

Name of the Vulnerable Software and Affected Versions SourceCodester Hotel and Lodge Management System version 1.0 Description A flaw exists in SourceCodester Hotel and Lodge Management System 1.0, specifically within the file /del room.php. Manipulation of the ID argument can lead to SQL...

9.8CVSS6.5AI score0.00316EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-47765

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00612EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-25408

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00314EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-31423

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00441EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-10401

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.0057EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24951

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00387EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-24096

Malicious code in bioql PyPI...

9CVSS8.8AI score0.00871EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-29092

Malicious code in bioql PyPI...

9.8CVSS7.4AI score0.06072EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-13568

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.0054EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-25769

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00483EPSS
Exploits1References5
Rows per page
Query Builder