CVE-2025-9379

This CVE concerns Belkin AX1800 router (firmware 1.1.00.016) with a vulnerability in the Firmware Update Handler. The issue is insufficient verification of data authenticity, enabling remote exploitation. Multiple connected sources corroborate that the vulnerability can be triggered remotely and ...

CVE-2025-8980

A vulnerability has been found in Tenda G1 16.01.7.83660. Affected by this issue is the function checkuploadfile of the component Firmware Update Handler. The manipulation leads to insufficient verification of data authenticity. The attack may be launched remotely. The complexity of an attack is...

CVE-2025-8980

A vulnerability has been found in Tenda G1 16.01.7.83660. Affected by this issue is the function checkuploadfile of the component Firmware Update Handler. The manipulation leads to insufficient verification of data authenticity. The attack may be launched remotely. The complexity of an attack is...

CVE-2025-8979

A vulnerability was identified in Tenda AC15 15.13.07.13. Affected by this vulnerability is the function checkfwtype/splitfireware/checkfw of the component Firmware Update Handler. The manipulation leads to insufficient verification of data authenticity. The attack can be launched remotely. The...

CVE-2025-8980

CVE-2025-8980 affects Tenda G1 device firmware version 16.01.7.8(3660). The vulnerability targets the Firmware Update Handler, specifically the function check_upload_file , due to insufficient verification of data authenticity. This may allow a remote attacker to exploit the issue with a high att...

CVE-2025-8980 Tenda G1 Firmware Update check_upload_file data authenticity

A vulnerability has been found in Tenda G1 16.01.7.83660. Affected by this issue is the function checkuploadfile of the component Firmware Update Handler. The manipulation leads to insufficient verification of data authenticity. The attack may be launched remotely. The complexity of an attack is...

CVE-2025-8979 Tenda AC15 Firmware Update check_fw data authenticity

A vulnerability was identified in Tenda AC15 15.13.07.13. Affected by this vulnerability is the function checkfwtype/splitfireware/checkfw of the component Firmware Update Handler. The manipulation leads to insufficient verification of data authenticity. The attack can be launched remotely. The...

PT-2025-33408 · Tenda · Tenda G1

Name of the Vulnerable Software and Affected Versions: Tenda G1 version 16.01.7.83660 Description: A vulnerability exists in the Tenda G1 device due to insufficient verification of data authenticity within the Firmware Update Handler component. The check upload file function is affected, allowing...

PT-2025-33407 · Tenda · Tenda Ac15

Name of the Vulnerable Software and Affected Versions: Tenda AC15 version 15.13.07.13 Description: A vulnerability exists due to insufficient verification of data authenticity within the Firmware Update Handler component. The affected function is check fw type/split fireware/check fw. This issue...

CVE-2025-7095

A vulnerability classified as critical has been found in Comodo Internet Security Premium 12.3.4.8162. This affects an unknown part of the component Update Handler. The manipulation leads to improper certificate validation. It is possible to initiate the attack remotely. The complexity of an atta...

CVE-2025-7095

A vulnerability classified as critical has been found in Comodo Internet Security Premium 12.3.4.8162. This affects an unknown part of the component Update Handler. The manipulation leads to improper certificate validation. It is possible to initiate the attack remotely. The complexity of an atta...

PT-2025-28089 · Comodo · Comodo Internet Security Premium

Name of the Vulnerable Software and Affected Versions: Comodo Internet Security Premium version 12.3.4.8162 Description: A critical vulnerability has been found in the Update Handler component of Comodo Internet Security Premium, leading to improper certificate validation. The attack can be...

CVE-2024-1707

A vulnerability, which was classified as problematic, was found in GARO WALLBOX GLB+ T2EV7 0.5. This affects an unknown part of the file /index.jspsettings of the component Software Update Handler. The manipulation of the argument Reference leads to cross site scripting. It is possible to initiat...

CVE-2023-1442

A vulnerability was found in Meizhou Qingyunke QYKCMS 4.3.0. It has been classified as problematic. This affects an unknown part of the file /adminsystem/api.php of the component Update Handler. The manipulation of the argument downurl leads to unrestricted upload. It is possible to initiate the...

CVE-2003-5002

A vulnerability was found in ISS BlackICE PC Protection. It has been declared as problematic. Affected by this vulnerability is the component Update Handler which allows cleartext transmission of data. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

CVE-2025-1228

CVE-2025-1228 affects olajowon Loggrove (Logfile Update Handler) with a path traversal vulnerability in the /read/?page=1&logfile=LOG_Monitor parameter. Affected is an unknown function within the Logfile Update Handler; manipulation of the path argument allows remote exploitation. The exploit has...

CVE-2025-1228 olajowon Loggrove Logfile Update page path traversal

A vulnerability classified as problematic has been found in olajowon Loggrove up to e428fac38cc480f011afcb1d8ce6c2bad378ddd6. Affected is an unknown function of the file /read/?page=1&logfile=LOGMonitor of the component Logfile Update Handler. The manipulation of the argument path leads to path...

CVE-2025-1228 olajowon Loggrove Logfile Update page path traversal

A vulnerability classified as problematic has been found in olajowon Loggrove up to e428fac38cc480f011afcb1d8ce6c2bad378ddd6. Affected is an unknown function of the file /read/?page=1&logfile=LOGMonitor of the component Logfile Update Handler. The manipulation of the argument path leads to path...

Loggrove 路径遍历漏洞

Loggrove is a web platform service by olajowon individual developer. Loggrove has a path traversal vulnerability that originates in the path parameter of /read/?page=1&logfile=LOGMonitor of the Logfile Update Handler component that contains a path traversal vulnerability...

WordPress plugin WP Extended 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...