OpenEMR 7.0.2 - Arbitrary File Read

Exploit Title: OpenEMR 7.0.2 - Arbitrary File Read Google Dork: intitle:"OpenEMR" inurl:"interface/login/login.php" Date: 2026-06-06 Exploit Author: doany1 Vendor Homepage: https://www.open-emr.org/ Software Link:...

CVE-2025-67448

The SMS module in Neterbit NW-431F Router 20241014-IR03 and before is vulnerable to stored XSS. The application does not properly sanitize user input in SMS messages before storing and displaying them. An attacker can send an SMS containing a malicious XSS payload, which will be executed in the...

CVE-2025-67448

The vulnerability CVE-2025-67448 affects the SMS module of the Neterbit NW-431F Router (versions 20241014-IR03 and earlier). The issue is a stored XSS flaw where user input in SMS messages is not properly sanitized before storing and displaying. As a result, an attacker can send an SMS containing...

CVE-2025-67448

The SMS module in Neterbit NW-431F Router 20241014-IR03 and before is vulnerable to stored XSS. The application does not properly sanitize user input in SMS messages before storing and displaying them. An attacker can send an SMS containing a malicious XSS payload, which will be executed in the...

EUVD-2020-6195

Malware in sbrugna...

EUVD-2020-6187

Malware in sbrugna...

EUVD-2023-45821

Malicious code in bioql PyPI...

CVE-2023-21906

Vulnerability in the Oracle Banking Virtual Account Management product of Oracle Financial Services Applications component: SMS Module. Supported versions that are affected are 14.5, 14.6 and 14.7. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

CVE-2020-14029

An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The RSS To SMS module processes XML files in an unsafe manner. This opens the application to an XML External Entity attack that can be used to perform SSRF or read arbitrary local files...

CVE-2020-14021

An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The ASP.net SMS module can be used to read and validate the source code of ASP files. By altering the path, it can be made to read any file on the Operating System, usually with NT AUTHORITY\SYSTEM privileges...

CVE-2023-41305

Vulnerability of 5G messages being sent without being encrypted in a VPN environment in the SMS message module. Successful exploitation of this vulnerability may affect confidentiality...

Code injection

Vulnerability of 5G messages being sent without being encrypted in a VPN environment in the SMS message module. Successful exploitation of this vulnerability may affect confidentiality...

PT-2023-5689 · Huawei · Harmonyos

Name of the Vulnerable Software and Affected Versions: HarmonyOS affected versions not specified Description: The issue is related to the use of a weak encryption mechanism when sending 5G messages in the SMS message module. This may allow a remote attacker to impact the confidentiality of...

The vulnerability of the SMS Module component of the Oracle Banking Virtual Account Management component of the banking analytics system’s simulation model, Oracle Financial Services Applications, allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the SMS Module component of the Oracle Banking Virtual Account Management component of the banking analytics system’s simulation model, Oracle Financial Services Applications, is related to insufficient validation of entered data. Exploiting this vulnerability could allow an...

CVE-2023-21906

Vulnerability in the Oracle Banking Virtual Account Management product of Oracle Financial Services Applications component: SMS Module. Supported versions that are affected are 14.5, 14.6 and 14.7. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

Buffer overflow

Vulnerability in the Oracle Banking Virtual Account Management product of Oracle Financial Services Applications component: SMS Module. Supported versions that are affected are 14.5, 14.6 and 14.7. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

CVE-2023-21906

CVE-2023-21906 affects Oracle Banking Virtual Account Management (SMS Module) in Oracle Financial Services Applications. Affected versions: 14.5, 14.6, 14.7. An attacker with network access via HTTP and high privileges can exploit this vulnerability, with user interaction required, to perform una...

Huawei Mate 9 Pro Cell Phone Short Message Module Denial of Service Vulnerability

The Huawei Mate 9 Pro is a smartphone product of the Chinese company Huawei Huawei. A denial of service vulnerability exists in the SMS module of the Huawei Mate 9 Pro. An unauthenticated attacker could set up a pseudo-base station and send certain malicious short messages to a cell phone that...

Denial of service

Short Message Service SMS module of Mate 9 Pro Huawei smart phones with the versions before LON-AL00B 8.0.0.354C00 has a Denial of Service DoS vulnerability. An unauthenticated attacker may set up a pseudo base station, and send special malware text message to the phone, causing the mobile phone ...

CVE-2017-17175

Short Message Service SMS module of Mate 9 Pro Huawei smart phones with the versions before LON-AL00B 8.0.0.354C00 has a Denial of Service DoS vulnerability. An unauthenticated attacker may set up a pseudo base station, and send special malware text message to the phone, causing the mobile phone ...