CVE-2025-3846

A vulnerability was found in markparticle WebServer up to 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file code/http/httprequest.cpp of the component Registration. The manipulation of the argument username/password leads to sql injection. The...

CVE-2025-3847

CVE-2025-3847 affects markparticle WebServer up to 1.0. The vulnerability is in the Login component, specifically in code/http/httprequest.cpp, where manipulation of the username/password arguments leads to an SQL injection. It can be exploited remotely, and the exploit has been disclosed publicl...

CVE-2025-3847 markparticle WebServer Login httprequest.cpp sql injection

A vulnerability classified as critical has been found in markparticle WebServer up to 1.0. This affects an unknown part of the file code/http/httprequest.cpp of the component Login. The manipulation of the argument username/password leads to sql injection. It is possible to initiate the attack...

CVE-2025-3847 markparticle WebServer Login httprequest.cpp sql injection

A vulnerability classified as critical has been found in markparticle WebServer up to 1.0. This affects an unknown part of the file code/http/httprequest.cpp of the component Login. The manipulation of the argument username/password leads to sql injection. It is possible to initiate the attack...

CVE-2025-3846

The CVE-2025-3846 entry concerns markparticle WebServer (up to v1.0) with a vulnerability in the Registration component’s file code/http/httprequest.cpp. The issue arises from manipulation of the username/password arguments, leading to a SQL injection that can be exploited remotely. Multiple conn...

CVE-2025-3846 markparticle WebServer Registration httprequest.cpp sql injection

A vulnerability was found in markparticle WebServer up to 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file code/http/httprequest.cpp of the component Registration. The manipulation of the argument username/password leads to sql injection. The...

CVE-2025-3846 markparticle WebServer Registration httprequest.cpp sql injection

A vulnerability was found in markparticle WebServer up to 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file code/http/httprequest.cpp of the component Registration. The manipulation of the argument username/password leads to sql injection. The...

CVE-2025-3845

A vulnerability was found in markparticle WebServer up to 1.0. It has been declared as critical. Affected by this vulnerability is the function Buffer::HasWritten of the file code/buffer/buffer.cpp. The manipulation of the argument writePos leads to buffer overflow. The attack can be launched...

CVE-2025-3845 markparticle WebServer buffer.cpp HasWritten buffer overflow

A vulnerability was found in markparticle WebServer up to 1.0. It has been declared as critical. Affected by this vulnerability is the function Buffer::HasWritten of the file code/buffer/buffer.cpp. The manipulation of the argument writePos leads to buffer overflow. The attack can be launched...

CVE-2025-3845

The CVE-2025-3845 issue affects markparticle WebServer up to 1.0, with the vulnerability in Buffer::HasWritten in code/buffer/buffer.cpp. Manipulating writePos_ causes a buffer overflow that can be exploited remotely; exploitation has been disclosed publicly. Public sources consistently identify ...

CVE-2025-3845 markparticle WebServer buffer.cpp HasWritten buffer overflow

A vulnerability was found in markparticle WebServer up to 1.0. It has been declared as critical. Affected by this vulnerability is the function Buffer::HasWritten of the file code/buffer/buffer.cpp. The manipulation of the argument writePos leads to buffer overflow. The attack can be launched...

PT-2025-17467 · Unknown · Markparticle Webserver

Name of the Vulnerable Software and Affected Versions: markparticle WebServer version 1.0 Description: A critical vulnerability was found in the markparticle WebServer, affecting the function Buffer::HasWritten of the file code/buffer/buffer.cpp. The manipulation of the argument writePos leads to...

WebServer 注入漏洞

WebServer is a C++ Linux WebServer server by MARK Individual Developers. An injection vulnerability exists in WebServer version 1.0, which originates from SQL injection due to manipulation of the username/password parameters by the Registration component in file code/http/httprequest.cpp...

PT-2025-17468

Name of the Vulnerable Software and Affected Versions markparticle WebServer version 1.0 Description A critical issue was found in the Registration component of markparticle WebServer, affecting an unknown functionality of the file code/http/httprequest.cpp. The manipulation of the...

PT-2025-17469 · Unknown · Markparticle Webserver

Name of the Vulnerable Software and Affected Versions: markparticle WebServer versions up to 1.0 Description: A critical vulnerability has been found in the markparticle WebServer, affecting an unknown part of the file code/http/httprequest.cpp of the component Login. The manipulation of the...

Ksenia Security Lares WebServer Home Automation URL Redirection

Summary Lares is a burglar alarm & home automation system that can be controlled by means of an ergo LCD keyboard, as well as remotely by telephone, and even via the Internet through a built-in WEB server. Description Input passed via the 'redirectPage' GET parameter in 'cmdOk.xml' script is not...

Commvault Critical Webserver Vulnerability (CV_2025_03_1)

A critical webserver vulnerability exists in Commvault. A remote attacker can exploit this to execute arbitrary commands. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc...

Security Bulletin: This Power System update is being released to address CVE-2023-52881

Summary This affects the BMC's network transmission control protocol TCP interface which affects aspects of interfaces that use TCP including the BMC's secure shell SSH, HTTPS interfaces including the BMC's webserver, REST APIs, and ASMi web application, and event and subscriptions services. An...

CVE-2025-1059

CWE-770: Allocation of Resources Without Limits or Throttling vulnerability exists that could cause communications to stop when malicious packets are sent to the webserver of the device...

CVE-2025-1059

CWE-770: Allocation of Resources Without Limits or Throttling vulnerability exists that could cause communications to stop when malicious packets are sent to the webserver of the device...