CVE-2025-70236

CVE-2025-70236 affects D-Link DIR-513 v1.10. A stack buffer overflow exists in goform/formSetDomainFilter, triggered by the curTime parameter when input length validation fails. Multiple connected sources (CNVD, Red Hat, OSV, CVE lists) describe potential arbitrary code execution or denial of ser...

PT-2026-22821

Name of the Vulnerable Software and Affected Versions D-Link DIR-513 version 1.10 Description A stack buffer overflow condition exists in D-Link DIR-513 version 1.10. The issue is related to the handling of the curTime parameter within the ''goform/formSetWAN Wizard55'' component. Providing a...

CVE-2025-70234

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetQoS...

CVE-2026-28422

Vim is an open source, command line text editor. Prior to version 9.2.0078, a stack-buffer-overflow occurs in buildstlstrhl when rendering a statusline with a multi-byte fill character on a very wide terminal. Version 9.2.0078 patches the issue...

EUVD-2026-8784

GPAC is an open-source multimedia framework. In versions up to and including 26.02.0, a stack buffer overflow occurs during NHML file parsing in src/filters/dmxnhml.c. The value of the xmlHeaderEnd XML attribute is copied from att-value into szXmlHeaderEnd1000 using strcpy without any length...

CodeAstro Food Ordering System 安全漏洞

The CodeAstro Food Ordering System is a food ordering system developed by CodeAstro Corporation. Version 1.0 of the CodeAstro Food Ordering System has a security vulnerability. This vulnerability stems from a stack buffer overflow in the foodordering.exe file, which may allow for the execution of...

ImageMagick: Stack buffer overflow in FTXT reader via oversized integer field

Summary A stack-based buffer overflow exists in the ImageMagick FTXT image reader. A crafted FTXT file can cause out-of-bounds writes on the stack, leading to a crash. ================================================================= ==3537074==ERROR: AddressSanitizer: stack-buffer-overflow on...

ROS-20260224-73-0007

Vulnerability in gimp related to stack buffer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

CVE-2026-2962

A vulnerability was found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub460F30 of the file /boafrm/formDateReboot of the component Scheduled Reboot Configuration Endpoint. The manipulation of the argument submit-url results in stack-based buffer overflow. The attack may b...

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. Version 1.01.07 of the D-Link DWR-M960 contains a security vulnerability. This vulnerability stems from incorrect handling of a parameter called submit-url in the function sub460F30 of the Scheduled Reboot Configuration Endpoint, whi...

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. The D-Link DWR-M960 version 1.01.07 has a security vulnerability. This vulnerability stems from incorrect handling of parameters submitted in the function sub42B5A0 within the component Bridge VLAN Configuration Endpoint’s...

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. The D-Link DWR-M960 version 1.01.07 has a security vulnerability. This vulnerability stems from an stack buffer overflow issue in the operation of the submit-url parameter in the sub469104 function found in the /boafrm/formIpv6Setup...

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. The D-Link DWR-M960 version 1.01.07 has a security vulnerability. This vulnerability stems from the sub425FF8 function in the /boafrm/formFirewallAdv file, where there is a stack buffer overflow issue related to the handling of the...

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. The D-Link DWR-M960 version 1.01.07 has a security vulnerability. This vulnerability stems from the sub41914C function in the /boafrm/formWanConfigSetup file, where there is a stack buffer overflow due to improper handling of the...

Tenda A21 安全漏洞

The Tenda A21 is a wireless signal extender produced by the Chinese company Tenda. Version 1.0.0.0 of the Tenda A21 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters in the file/goform/SetOnlineDevName, specifically the devName parameter, which may...

CVE-2026-2853

A vulnerability was detected in D-Link DWR-M960 1.01.07. This affects the function sub462E14 of the file /boafrm/formSysLog of the component System Log Configuration Endpoint. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. The attack can be initiated...

CVE-2026-2853 D-Link DWR-M960 System Log Configuration Endpoint formSysLog sub_462E14 stack-based overflow

A vulnerability was detected in D-Link DWR-M960 1.01.07. This affects the function sub462E14 of the file /boafrm/formSysLog of the component System Log Configuration Endpoint. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. The attack can be initiated...

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. Version 1.01.07 of the D-Link DWR-M960 contains a security vulnerability. This vulnerability stems from an error in the operation of the submit-url parameter in the sub462E14 function of the System Log Configuration Endpoint componen...

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. The D-Link DWR-M960 version 1.01.07 has a security vulnerability. This vulnerability stems from an incorrect operation of the submit-url parameter in the sub423E00 function within the Port Forwarding Configuration Endpoint component...

Sricam DeviceViewer 安全漏洞

Sricam DeviceViewer is a monitoring video management software developed by Sricam Corporation. Version 3.12.0.1 of Sricam DeviceViewer contains a security vulnerability. This vulnerability stems from a stack buffer overflow issue in the user management feature, which may allow authenticated...