Lucene search
K

88859 matches found

EUVD
EUVD
added 2025/12/22 12:32 a.m.7 views

EUVD-2025-204679

A security flaw has been discovered in CouchCMS up to 2.4. Affected is an unknown function of the file couch/config.example.php of the component reCAPTCHA Handler. The manipulation of the argument KRECAPTCHASITEKEY/KRECAPTCHASECRETKEY results in use of hard-coded cryptographic key . It is possibl...

6.3CVSS6.1AI score0.00397EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/12/22 12:16 a.m.10 views

CVE-2025-14989

A vulnerability was identified in Campcodes Complete Online Beauty Parlor Management System 1.0. This issue affects some unknown processing of the file /admin/search-invoices.php. Such manipulation leads to sql injection. The attack can be launched remotely. The exploit is publicly available and...

9.8CVSS7.1AI score0.00326EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/12/22 12:0 a.m.7 views

PT-2025-52618

Name of the Vulnerable Software and Affected Versions CouchCMS versions up to 2.4 Description A security issue exists in CouchCMS related to the reCAPTCHA Handler component. The issue resides in an unknown function within the couch/config.example.php file. Manipulation of the arguments K RECAPTCH...

6.3CVSS6AI score0.00397EPSS
Exploits1References12
RedhatCVE
RedhatCVE
added 2025/12/20 4:4 p.m.6 views

CVE-2025-14954

A vulnerability has been found in Open5GS up to 2.7.6. Affected is the function ogspfcppdrfindoradd/ogspfcpfarfindoradd/ogspfcpurrfindoradd/ogspfcpqerfindoradd in the library lib/pfcp/context.c of the component QER/FAR/URR/PDR. The manipulation leads to reachable assertion. It is possible to...

6.3CVSS4.5AI score0.00501EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/20 4:17 a.m.9 views

CVE-2025-14940

A vulnerability was determined in code-projects Scholars Tracking System 1.0. The affected element is an unknown function of the file /admin/deleteuser.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly...

9.8CVSS7.1AI score0.00333EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/19 10:13 p.m.5 views

CVE-2025-68381

Improper Bounds Check CWE-787 in Packetbeat can allow a remote unauthenticated attacker to exploit a Buffer Overflow CAPEC-100 and reliably crash the application or cause significant resource exhaustion via a single crafted UDP packet with an invalid fragment sequence number...

6.5CVSS7.1AI score0.00387EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/19 9:30 p.m.4 views

EUVD-2025-204590

A vulnerability was detected in code-projects Simple Blood Donor Management System 1.0. The affected element is an unknown function of the file /editedcampaign.php. The manipulation of the argument campaignname results in sql injection. The attack can be executed remotely. The exploit is now publ...

7.5CVSS6.6AI score0.00323EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/12/19 7:32 p.m.4 views

CVE-2025-14966 FastAdmin Backend Controller Backend.php selectpage sql injection

A vulnerability was determined in FastAdmin up to 1.7.0.20250506. Affected is the function selectpage of the file application/common/controller/Backend.php of the component Backend Controller. Executing a manipulation of the argument custom/searchField can lead to sql injection. It is possible to...

5.8CVSS4.9AI score0.00314EPSS
Exploits1References6
NVD
NVD
added 2025/12/19 7:15 p.m.9 views

CVE-2025-14964

A vulnerability has been found in TOTOLINK T10 4.1.8cu.5083B20200521. This affects the function sprintf of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument loginAuthUrl leads to stack-based buffer overflow. The attack may be performed from remote...

10CVSS0.00871EPSS
Exploits1References5
OSV
OSV
added 2025/12/19 7:15 p.m.4 views

CVE-2025-14964

A vulnerability has been found in TOTOLINK T10 4.1.8cu.5083B20200521. This affects the function sprintf of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument loginAuthUrl leads to stack-based buffer overflow. The attack may be performed from remote...

9.3CVSS6.4AI score0.00871EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/19 7:2 p.m.2 views

CVE-2025-14964 TOTOLINK T10 cstecgi.cgi sprintf stack-based overflow

A vulnerability has been found in TOTOLINK T10 4.1.8cu.5083B20200521. This affects the function sprintf of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument loginAuthUrl leads to stack-based buffer overflow. The attack may be performed from remote...

10CVSS9.4AI score0.00871EPSS
Exploits1References5
OSV
OSV
added 2025/12/19 6:15 p.m.4 views

CVE-2025-14959

A weakness has been identified in code-projects Simple Stock System 1.0. This issue affects some unknown processing of the file /market/signup.php. Executing a manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been made available...

9.8CVSS5.8AI score0.00323EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/19 6:2 p.m.2 views

CVE-2025-14959 code-projects Simple Stock System signup.php sql injection

A weakness has been identified in code-projects Simple Stock System 1.0. This issue affects some unknown processing of the file /market/signup.php. Executing a manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been made available...

7.5CVSS7.2AI score0.00323EPSS
Exploits1References5
OSV
OSV
added 2025/12/19 5:15 p.m.4 views

CVE-2025-14955

A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ogspfcphandlecreatepdr in the library lib/pfcp/handler.c of the component PFCP. The manipulation results in improper initialization. It is possible to launch the attack remotely. This attack is...

6.3CVSS6.6AI score
Exploits0References8
Vulnrichment
Vulnrichment
added 2025/12/19 4:32 p.m.4 views

CVE-2025-14955 Open5GS PFCP handler.c ogs_pfcp_handle_create_pdr initialization

A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ogspfcphandlecreatepdr in the library lib/pfcp/handler.c of the component PFCP. The manipulation results in improper initialization. It is possible to launch the attack remotely. This attack is...

6.3CVSS6.4AI score0.00468EPSS
Exploits1References8
NVD
NVD
added 2025/12/19 4:15 p.m.2 views

CVE-2025-14954

A vulnerability has been found in Open5GS up to 2.7.6. Affected is the function ogspfcppdrfindoradd/ogspfcpfarfindoradd/ogspfcpurrfindoradd/ogspfcpqerfindoradd in the library lib/pfcp/context.c of the component QER/FAR/URR/PDR. The manipulation leads to reachable assertion. It is possible to...

6.3CVSS0.00501EPSS
Exploits1References8
OSV
OSV
added 2025/12/19 4:15 p.m.3 views

CVE-2025-14954

A vulnerability has been found in Open5GS up to 2.7.6. Affected is the function ogspfcppdrfindoradd/ogspfcpfarfindoradd/ogspfcpurrfindoradd/ogspfcpqerfindoradd in the library lib/pfcp/context.c of the component QER/FAR/URR/PDR. The manipulation leads to reachable assertion. It is possible to...

5.9CVSS4.5AI score
Exploits0References8
NVD
NVD
added 2025/12/19 4:15 p.m.5 views

CVE-2025-14953

A flaw has been found in Open5GS up to 2.7.5. This impacts the function ogspfcphandlecreatepdr in the library lib/pfcp/handler.c of the component FAR-ID Handler. Executing a manipulation can lead to null pointer dereference. The attack may be performed from remote. The attack requires a high leve...

5.3CVSS0.00387EPSS
Exploits1References8
EUVD
EUVD
added 2025/12/19 4:2 p.m.5 views

EUVD-2025-204569

A vulnerability has been found in Open5GS up to 2.7.5. Affected is the function ogspfcppdrfindoradd/ogspfcpfarfindoradd/ogspfcpurrfindoradd/ogspfcpqerfindoradd in the library lib/pfcp/context.c of the component QER/FAR/URR/PDR. The manipulation leads to reachable assertion. It is possible to...

6.3CVSS6.2AI score0.00501EPSS
Exploits1References8
Cvelist
Cvelist
added 2025/12/19 4:2 p.m.29 views

CVE-2025-14954 Open5GS QER/FAR/URR/PDR context.c ogs_pfcp_qer_find_or_add assertion

A vulnerability has been found in Open5GS up to 2.7.6. Affected is the function ogspfcppdrfindoradd/ogspfcpfarfindoradd/ogspfcpurrfindoradd/ogspfcpqerfindoradd in the library lib/pfcp/context.c of the component QER/FAR/URR/PDR. The manipulation leads to reachable assertion. It is possible to...

6.3CVSS0.00501EPSS
Exploits1References8
Rows per page
Query Builder