Lucene search
K

482 matches found

OSV
OSV
added 2026/03/25 6:31 p.m.3 views

GHSA-MVHF-547C-H55R thumbler allows OS Command Injection

thumbler through 1.1.2 allows OS command injection via the input, output, time, or size parameter in the thumbnail function because user input is concatenated into a shell command string passed to childprocess.exec without proper sanitization or escaping...

9.8CVSS5.9AI score0.02308EPSS
Exploits4References5
EUVD
EUVD
added 2026/03/08 6:31 a.m.8 views

EUVD-2026-10217

A security vulnerability has been detected in code-projects Simple Flight Ticket Booking System 1.0. This impacts an unknown function of the file /Adminadd.php. The manipulation of the argument flightno/airplaneid/departure/dtime/arrival/atime/ec/ep/bc/bp leads to sql injection. Remote exploitati...

5.8CVSS5.7AI score0.00271EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/03/08 12:0 a.m.10 views

Code-Projects Simple Flight Ticket Booking System SQL注入漏洞

Code-Projects Simple Flight Ticket Booking System is a simple airline ticket booking system developed by Code-Projects. Version 1.0 of the Code-Projects Simple Flight Ticket Booking System has a SQL injection vulnerability. This vulnerability arises from incorrect operations with parameters such ...

7.2CVSS5.9AI score0.00271EPSS
Exploits1References7
NVD
NVD
added 2026/03/05 7:16 p.m.11 views

CVE-2025-70229

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSchedule...

9.8CVSS0.00633EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/03/04 7:45 p.m.4 views

CVE-2026-3465

A vulnerability was determined in Tuya App and SDK 24.07.11 on Android. Affected by this vulnerability is an unknown functionality of the component JSON Data Point Handler. This manipulation of the argument cruisetime causes denial of service. Remote exploitation of the attack is possible. The...

3.1CVSS5.1AI score0.00288EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.5 views

PT-2026-22800

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetPortTr...

6.1AI score0.00714EPSS
Exploits1References4
CVE
CVE
added 2026/03/03 12:0 a.m.13 views

CVE-2025-70237

CVE-2025-70237 affects D-Link DIR-513 (v1.10). The issue is a stack buffer overflow in the handling of the curTime parameter passed to goform/formSetPortTr, allowing potential control-flow disruption. Multiple sources describe this vulnerability as enabling arbitrary code execution or a denial of...

9.8CVSS6.1AI score0.00714EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/24 1:44 a.m.6 views

CVE-2025-70328

TOTOLINK X6000R v9.4.0cu.1498B20250826 contains an OS command injection vulnerability in the NTPSyncWithHost handler of the /usr/sbin/shttpd executable. The hosttime parameter is retrieved via sub40C404 and passed to a date -s shell command through CsteSystem. While the first two tokens of the...

8.8CVSS6AI score0.01755EPSS
Exploits1References1
NVD
NVD
added 2026/02/23 9:19 p.m.12 views

CVE-2025-70328

TOTOLINK X6000R v9.4.0cu.1498B20250826 contains an OS command injection vulnerability in the NTPSyncWithHost handler of the /usr/sbin/shttpd executable. The hosttime parameter is retrieved via sub40C404 and passed to a date -s shell command through CsteSystem. While the first two tokens of the...

8.8CVSS0.01755EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/02/23 12:0 a.m.23 views

CVE-2025-70328

TOTOLINK X6000R v9.4.0cu.1498B20250826 contains an OS command injection vulnerability in the NTPSyncWithHost handler of the /usr/sbin/shttpd executable. The hosttime parameter is retrieved via sub40C404 and passed to a date -s shell command through CsteSystem. While the first two tokens of the...

0.01755EPSS
Exploits1References2
CVE
CVE
added 2026/02/23 12:0 a.m.21 views

CVE-2025-70328

Summary (CVE-2025-70328) TOTOLINK X6000R is affected by an OS command injection in the NTPSyncWithHost handler of /usr/sbin/shttpd balloted at v9.4.0cu.1498_B20250826. The vulnerability arises from how the host_time parameter is obtained via sub_40C404 and handed to a shell command (date -s) thro...

8.8CVSS6AI score0.01755EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2026/02/23 12:0 a.m.9 views

TOTOLINK X6000R 安全漏洞

The TOTOLINK X6000R is a wireless router produced by TOTOLINK, a Chinese company. The TOTOLINK X6000R v9.4.0cu.1498B20250826 version contains a security vulnerability. This vulnerability stems from improper cleanup of the hosttime parameter in the NTPSyncWithHost handler, which may allow...

8.8CVSS6.1AI score0.01755EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2026/02/19 12:0 a.m.125 views

📄 Shenzhen Aitemi M300 Wi-Fi Repeater Remote Code Execution

Shenzhen Aitemi M300 Wi-Fi Repeater unauthenticated proof of concept remote code execution exploit that leverages the time parameter in protocol.csp. ============================================================================================================================================= | Tit...

9.4CVSS6.4AI score0.61676EPSS
Exploits5
Packet Storm
Packet Storm
added 2026/02/05 12:0 a.m.123 views

📄 D-Link DIR-825 Rev.B 2.10 Buffer Overflow

D-Link DIR-825 Rev.B versions 2.10 and below proof of concept stack buffer overflow denial of service exploit. Exploit Title: D-Link DIR-825 Rev.B 2.10 - Stack Buffer Overflow DoS Google Dork: N/A Date: 2025-09-25 Exploit Author: Beatriz Fresno Naumova Vendor Homepage: https://www.dlink.com/...

9.8CVSS8.2AI score0.03039EPSS
Exploits3
Nuclei
Nuclei
added 2026/02/04 7:0 a.m.7 views

Shenzhen Aitemi M300 Wi-Fi Repeater – Unauthenticated Remote Command Execution via `time` Parameter

An unauthenticated OS command injection vulnerability exists in the Shenzhen Aitemi M300 Wi-Fi Repeater hardware model MT02 via the 'time' parameter of the '/protocol.csp?' endpoint. The input is processed by the internal date '-s' command without rebooting or disrupting HTTP service. Unlike othe...

9.4CVSS7.5AI score0.61676EPSS
Exploits5References3
Exploit DB
Exploit DB
added 2026/02/02 12:0 a.m.171 views

D-Link DIR-825 Rev.B 2.10 - Stack Buffer Overflow (DoS)

Exploit Title: D-Link DIR-825 Rev.B 2.10 - Stack Buffer Overflow DoS Google Dork: N/A Date: 2025-09-25 Exploit Author: Beatriz Fresno Naumova Vendor Homepage: https://www.dlink.com/ Software Link: https://tsd.dlink.com.tw/downloads2008detail.asp Version: DIR-825 Rev.B = 2.10 Tested on: DIR-825...

9.8CVSS7.9AI score0.03039EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2026/01/22 12:20 a.m.13 views

CVE-2025-70644

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the time parameter of the sub60CFC function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS5.6AI score0.00311EPSS
Exploits1References1
NVD
NVD
added 2026/01/21 5:16 p.m.5 views

CVE-2025-70644

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the time parameter of the sub60CFC function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS0.00311EPSS
Exploits1References1
OSV
OSV
added 2026/01/21 5:16 p.m.7 views

CVE-2025-70644

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the time parameter of the sub60CFC function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7.5CVSS5.9AI score0.00311EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/01/21 12:0 a.m.14 views

CVE-2025-70644

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the time parameter of the sub60CFC function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

0.00311EPSS
Exploits1References1
Rows per page
Query Builder