CVE-2026-8260

A vulnerability was found in D-Link DCS-935L up to 1.10.01. The impacted element is the function SetDeviceSettings of the file /web/cgi-bin/hnap/hnapservice of the component HNAP Service. The manipulation of the argument AdminPassword results in buffer overflow. The attack can be executed remotel...

CVE-2026-8260

A vulnerability was found in D-Link DCS-935L up to 1.10.01. The impacted element is the function SetDeviceSettings of the file /web/cgi-bin/hnap/hnapservice of the component HNAP Service. The manipulation of the argument AdminPassword results in buffer overflow. The attack can be executed remotel...

D-Link DCS-935L 缓冲区错误漏洞

The D-Link DCS-935L is a router produced by D-Link Corporation. Versions of the D-Link DCS-935L prior to 1.10.01 contain a buffer error vulnerability. This vulnerability stems from the operation of the AdminPassword parameter in the SetDeviceSettings function within the HNAP Service component,...

EUVD-2002-0262

Malware in sbrugna...

EUVD-2015-5951

Malware in sbrugna...

EUVD-2023-49152

Malicious code in bioql PyPI...

Malicious code in sap-adminpassword (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9c43667a9522ba3b3de49573c1502b4dd542f26776a78833fd403c7cab6688c1 The OpenSSF Package Analysis project identified 'sap-adminpassword' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

MAL-2024-7513 Malicious code in sap-adminpassword (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9c43667a9522ba3b3de49573c1502b4dd542f26776a78833fd403c7cab6688c1 The OpenSSF Package Analysis project identified 'sap-adminpassword' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

CVE-2023-44829

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the AdminPassword parameter in the SetDeviceSettings function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

CVE-2023-44829

D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the AdminPassword parameter in the SetDeviceSettings function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

Buffalo TS5600D1206 Command Injection Vulnerability

The Buffalo TS5600D1206 is a network storage device from the Buffalo Group of Japan. A command injection vulnerability exists in the network.setauthsettings method in the Buffalo TS5600D1206 version 3.70-0.10, which can be exploited to execute system commands with the 'adminUsername' parameter an...

CVE-2018-13320

System Command Injection in network.setauthsettings in Buffalo TS5600D1206 version 3.70-0.10 allows attackers to execute system commands via the adminUsername and adminPassword parameters...

Viral Pictures And Video Script 2.0.0 SQL Injection

Exploit Title: Flippy HotViral a Viral Pictures and Video Script v2.0.0 - SQL Injection Google Dork: N/A Date: 06.02.2017 Vendor Homepage: https://www.flippyscripts.com/ Software Buy: https://www.flippyscripts.com/flippy-hotviral-viral-funny-pictures-and-video-script/ Demo:...

Ultimate Viral Media Script 1.0 - id SQL Injection

Ultimate Viral Media Script 1.0 - id SQL Injection Exploit Title: Flippy eXtremeViral – Ultimate Viral Media Script v1.0 - SQL Injection Google Dork: N/A Date: 06.02.2017 Vendor Homepage: https://www.flippyscripts.com/ Software Buy:...

CVE-2015-6008

install.php in Web Reference Database aka refbase through 0.9.6 allows remote attackers to execute arbitrary commands via the adminPassword parameter, a different issue than CVE-2015-7381...

Design/Logic Flaw

install.php in Web Reference Database aka refbase through 0.9.6 allows remote attackers to execute arbitrary commands via the adminPassword parameter, a different issue than CVE-2015-7381...

CVE-2015-6008

CVE-2015-6008 affects Web Reference Database (refbase) install.php up to version 0.9.6. A remote attacker can execute arbitrary PHP code by manipulating the adminPassword parameter, enabling remote code execution. This is a confirmed vulnerability entry with corroborating references indicating a ...

CVE-2015-6008

install.php in Web Reference Database aka refbase through 0.9.6 allows remote attackers to execute arbitrary commands via the adminPassword parameter, a different issue than CVE-2015-7381...

Sawmill 6.2.x AdminPassword Insecure Default Permissions Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4077/info Sawmill is commercial log analysis software. It runs on most Unix and Linux variants, Microsoft Windows NT/2000 operating systems and MacOS. Sawmill creates the file AdminPassword with insecure default permissio...

@lex Guestbook <= 4.0.2 - Remote Command Execution Exploit

No description provided by source. !/usr/bin/php ?php // | | header @lex Guestbook = 4.0.2 Remote Command Execution Exploit | header ======================================================== | status Retrieving the administrator password | sploit AdminUsername::root | sploit AdminPassword::toor |...