PT-2025-30335 · Liner · Liner

Name of the Vulnerable Software and Affected Versions: Liner versions through 2025-06-03 Description: An Insecure Direct Object Reference IDOR vulnerability exists that allows attackers to gain sensitive information. The vulnerability is exploitable through crafted space id, thread id, and messag...

PT-2025-27445 · Tenda · Tenda Ac1206

Name of the Vulnerable Software and Affected Versions: Tenda AC1206 1200M 11ac US AC1206V1.0RTL V15.03.06.23 multi TD01 Description: A buffer overflow in the formSetCfm function allows attackers to cause a Denial of Service DoS via a crafted POST request to the affected API endpoint...

PT-2025-22806 · Unknown · Phpgurukul Restaurant Table Booking System

Name of the Vulnerable Software and Affected Versions: PHPGURUKUL Restaurant Table Booking System using PHP and MySQL version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the searchdata parameter at the "/rtbs/check-status.php" AP...

PT-2025-21245 · Unknown · Ws-Wn572Hp3

Name of the Vulnerable Software and Affected Versions: WS-WN572HP3 version V230525 Description: A buffer overflow was discovered in the component /www/cgi-bin/upload.cgi, allowing attackers to cause a Denial of Service DoS via a crafted HTTP request. Recommendations: For WS-WN572HP3 version...

PT-2024-9906 · Adobe · Experience Manager

Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.21 and earlier Description: The issue is related to insufficient protection of the web page structure in Adobe Experience Manager, which could allow a remote attacker to execute arbitrary code...

PT-2024-9715 · Adobe · Experience Manager

Name of the Vulnerable Software and Affected Versions: Adobe Experience Manager versions 6.5.21 and earlier Description: The issue is related to a stored Cross-Site Scripting XSS vulnerability. This vulnerability could be exploited by an attacker to inject malicious scripts into vulnerable form...

PT-2024-39418 · Unknown · Blood Bank System

Name of the Vulnerable Software and Affected Versions: Blood Bank System version 1.0 Description: A problematic issue was found in the Blood Bank System, affecting unknown parts of the bbms.php file. The manipulation of the fullname, age, bloodgroup, city, phno, and gender arguments as part of a...

PT-2024-37622 · Devika · Devika

Name of the Vulnerable Software and Affected Versions: devika versions prior to the fixed version Description: The issue allows an attacker to read arbitrary files on the system by providing a crafted path. This can be exploited by sending a request to the application with a malicious snapshot pa...

PT-2024-37571 · Labvantage · Labvantage Lims

Name of the Vulnerable Software and Affected Versions: LabVantage LIMS version 2017 Description: A vulnerability was found in the component POST Request Handler, affecting the file /labvantage/rc?command=file&file=WEB-CORE/elements/files/filesembedded.jsp. The manipulation of the argument...

PT-2024-25189 · Unknown · Realisation Mgsd

Name of the Vulnerable Software and Affected Versions: Realisation MGSD version 1.0 Description: The issue allows a remote attacker to obtain sensitive information. This is achieved via the id parameter. Recommendations: For version 1.0, avoid using the id parameter in affected API endpoints unti...

PT-2023-22235 · Zimbra · Zimbra Collaboration

Name of the Vulnerable Software and Affected Versions: Zimbra Collaboration ZCS versions 8.8.15 through 9.0 Description: An issue in Zimbra Collaboration allows a remote attacker to escalate privileges and obtain sensitive information via the password and 2FA parameters. Recommendations: For...

PT-2022-25221 · Unknown · Online Banking System

Name of the Vulnerable Software and Affected Versions: Online Banking System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the cust id parameter at the "/net-banking/send funds action.php" API endpoint. Recommendations: For...

PT-2022-23579 · Unknown · Library Management System

Name of the Vulnerable Software and Affected Versions: Library Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/admin/changestock.php" API endpoint. Recommendations: For Library...

PT-2020-14425 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version cwp-e17.0.9.8.923 Description: This issue allows remote attackers to execute arbitrary code on affected installations. Authentication is not required to exploit this issue. The specific flaw exists within the ajax dis...