41209 matches found
CVE-2026-7108 code-projects Invoice System in Laravel cross-site request forgery
A security vulnerability has been detected in code-projects Invoice System in Laravel 1.0. This affects an unknown function. Such manipulation leads to cross-site request forgery. The attack may be performed from remote. The exploit has been disclosed publicly and may be used...
CVE-2026-7108
Technical details about CVE-2026-7108 are not publicly available in the provided documents. No confirmed affected products, versions, or exploitable vectors are disclosed. Monitor for updates.
CVE-2026-7108 code-projects Invoice System in Laravel cross-site request forgery
A security vulnerability has been detected in code-projects Invoice System in Laravel 1.0. This affects an unknown function. Such manipulation leads to cross-site request forgery. The attack may be performed from remote. The exploit has been disclosed publicly and may be used...
CVE-2026-7108
A security vulnerability has been detected in code-projects Invoice System in Laravel 1.0. This affects an unknown function. Such manipulation leads to cross-site request forgery. The attack may be performed from remote. The exploit has been disclosed publicly and may be used...
CVE-2026-7107
Technical details about CVE-2026-7107 are not publicly available in the provided documents. Monitor for updates from official advisories.
CVE-2026-7107 code-projects Invoice System in Laravel company unrestricted upload
A weakness has been identified in code-projects Invoice System in Laravel 1.0. The impacted element is an unknown function of the file /company. This manipulation of the argument logo causes unrestricted upload. The attack is possible to be carried out remotely. The exploit has been made availabl...
CVE-2026-7107 code-projects Invoice System in Laravel company unrestricted upload
A weakness has been identified in code-projects Invoice System in Laravel 1.0. The impacted element is an unknown function of the file /company. This manipulation of the argument logo causes unrestricted upload. The attack is possible to be carried out remotely. The exploit has been made availabl...
CVE-2026-7103
Code-projects Chat System 1.0 is affected by CVE-2026-7103. The flaw is in the MD5 Hash Handler, specifically the update_user.php file, where manipulating the Password argument can cause the system to use a weak hash. It is described as remotely exploitable with high attack complexity and difficu...
CVE-2026-7103
A vulnerability was determined in code-projects Chat System 1.0. Affected is an unknown function of the file updateuser.php of the component MD5 Hash Handler. This manipulation of the argument Password causes use of weak hash. The attack is possible to be carried out remotely. The attack's...
EUVD-2026-25803
A vulnerability was determined in code-projects Chat System 1.0. Affected is an unknown function of the file updateuser.php of the component MD5 Hash Handler. This manipulation of the argument Password causes use of weak hash. The attack is possible to be carried out remotely. The attack's...
CVE-2026-7102 Tenda F456 httpd WriteFacMac FromWriteFacMac command injection
A vulnerability was found in Tenda F456 1.0.0.5. This impacts the function FromWriteFacMac of the file /goform/WriteFacMac of the component httpd. The manipulation of the argument mac results in command injection. The attack can be executed remotely. The exploit has been made public and could be...
CVE-2026-7102
A vulnerability was found in Tenda F456 1.0.0.5. This impacts the function FromWriteFacMac of the file /goform/WriteFacMac of the component httpd. The manipulation of the argument mac results in command injection. The attack can be executed remotely. The exploit has been made public and could be...
CVE-2026-7102
CVE-2026-7102 affects Tenda F456 firmware 1.0.0.5, specifically the httpd component’s FromWriteFacMac function in /goform/WriteFacMac. The vulnerability arises from manipulating the mac argument, leading to command injection. The issue can be exploited remotely, and public exploits exist. Details...
CVE-2026-7100
CVE-2026-7100 affects Tenda F456 1.0.0.5. The vulnerable element is the function fromNatlimitof in the file /goform/Natlimit of the httpd component. Exploitation via remote manipulation can cause a buffer overflow with high impact on confidentiality, integrity, and availability. The vulnerability...
EUVD-2026-25800
A flaw has been found in Tenda F456 1.0.0.5. The impacted element is the function fromNatlimitof of the file /goform/Natlimit of the component httpd. Executing a manipulation can lead to buffer overflow. The attack may be launched remotely. The exploit has been published and may be used...
CVE-2026-7100 Tenda F456 httpd Natlimit fromNatlimitof buffer overflow
A flaw has been found in Tenda F456 1.0.0.5. The impacted element is the function fromNatlimitof of the file /goform/Natlimit of the component httpd. Executing a manipulation can lead to buffer overflow. The attack may be launched remotely. The exploit has been published and may be used...
CVE-2026-7099 Tenda F456 httpd QuickIndex formQuickIndex buffer overflow
A vulnerability was detected in Tenda F456 1.0.0.5. The affected element is the function formQuickIndex of the file /goform/QuickIndex of the component httpd. Performing a manipulation of the argument mitlinktype results in buffer overflow. The attack may be initiated remotely. The exploit is now...
CVE-2026-7099 Tenda F456 httpd QuickIndex formQuickIndex buffer overflow
A vulnerability was detected in Tenda F456 1.0.0.5. The affected element is the function formQuickIndex of the file /goform/QuickIndex of the component httpd. Performing a manipulation of the argument mitlinktype results in buffer overflow. The attack may be initiated remotely. The exploit is now...
CVE-2026-7099
A vulnerability was detected in Tenda F456 1.0.0.5. The affected element is the function formQuickIndex of the file /goform/QuickIndex of the component httpd. Performing a manipulation of the argument mitlinktype results in buffer overflow. The attack may be initiated remotely. The exploit is now...
CVE-2026-7093
A vulnerability was found in code-projects Invoice System in Laravel 1.0. Affected by this vulnerability is an unknown functionality of the file /invoice/ of the component Invoice Endpoint. Performing a manipulation of the argument ID results in improper authorization. The attack is possible to b...