EUVD-2026-27418

A weakness has been identified in D-Link DI-8100 16.07.26A1. Affected is the function sprintf of the file /autoreboot.asp of the component HTTP Handler. This manipulation of the argument enable/time causes buffer overflow. It is possible to initiate the attack remotely. The exploit has been made...

CVE-2026-5544

A security flaw has been discovered in UTT HiPER 1250GW up to 3.2.7-210907-180535. The impacted element is an unknown function of the file /goform/formRemoteControl. The manipulation of the argument Profile results in stack-based buffer overflow. The attack can be executed remotely. The exploit h...

CVE-2026-2882

A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub46385C of the file /boafrm/formDosCfg. Performing a manipulation of the argument submit-url results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been made...

CVE-2025-12274

A security vulnerability has been detected in Tenda CH22 1.0.0.1. Affected by this vulnerability is the function fromP2pListFilter of the file /goform/P2pListFilter. The manipulation of the argument page leads to buffer overflow. Remote exploitation of the attack is possible. The exploit has been...

EUVD-2025-28404

Malicious code in bioql PyPI...

CVE-2025-54409

A flaw was found in AIDE. This vulnerability allows an attacker to crash the program during report printing or database listing after setting extended file attributes with an empty attribute value or with a key containing a comma. A local user can exploit this issue to cause a local denial of...

CVE-2025-54409

AIDE is an advanced intrusion detection environment. From versions 0.13 to 0.19.1, there is a null pointer dereference vulnerability in AIDE. An attacker can crash the program during report printing or database listing after setting extended file attributes with an empty attribute value or with a...

Linux Distros Unpatched Vulnerability : CVE-2022-29156

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drivers/infiniband/ulp/rtrs/rtrs-clt.c in the Linux kernel before 5.16.12 has a double free related to rtrscltdevrelease. CVE-2022-29156 Note that Nessus relies...

PT-2025-29471 · Code Projects · Wedding Reservation

Name of the Vulnerable Software and Affected Versions: code-projects Wedding Reservation version 1.0 Description: A critical issue exists in code-projects Wedding Reservation 1.0, affecting an unknown part of the file /global.php. The manipulation of the argument lu leads to SQL injection, allowi...

PT-2025-27408 · Unknown · Code-Projects Movie Ticketing System

Name of the Vulnerable Software and Affected Versions: code-projects Movie Ticketing System version 1.0 Description: A critical issue has been discovered, affecting the /logIn.php file. The manipulation of the postName argument leads to SQL injection. This issue can be exploited remotely...

PT-2025-27349 · Code Projects · Code-Projects Simple Forum

Name of the Vulnerable Software and Affected Versions: code-projects Simple Forum version 1.0 Description: A critical issue was found in the code, affecting the /forum edit.php file. The manipulation of the iii argument leads to SQL injection. This issue can be exploited remotely. Recommendations...

PT-2025-24928 · Unknown · Phpgurukul Restaurant Table Booking System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Restaurant Table Booking System version 1.0 Description: A problematic issue has been found in the system, affecting some unknown functionality of the file /check-status.php. The manipulation of the searchdata argument leads to...

PT-2025-24000 · Code Projects · Code-Projects Real Estate Property Management System

Name of the Vulnerable Software and Affected Versions: code-projects Real Estate Property Management System version 1.0 Description: A critical issue has been found in the processing of the file /Admin/InsertState.php. The manipulation of the txtStateName argument leads to SQL injection. This iss...

PT-2025-24280 · Code Projects · Code-Projects Patient Record Management System

Name of the Vulnerable Software and Affected Versions: code-projects Patient Record Management System version 1.0 Description: A critical issue was found in the system, affecting some unknown functionality of the file /view dental.php. The manipulation of the itr no argument leads to SQL injectio...

PT-2025-23934 · Unknown · Phpgurukul Auto Taxi Stand Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Auto Taxi Stand Management System version 1.0 Description: A critical issue has been identified, affecting the file /admin/search-autoortaxi.php. The manipulation of the searchdata argument leads to SQL injection. This issue can be...

PT-2025-23885 · Unknown · Code-Projects/Anirbandutta9 Content Management System +1

Name of the Vulnerable Software and Affected Versions: code-projects/anirbandutta9 Content Management System and News-Buzz version 1.0 Description: A critical issue was found in the Content Management System and News-Buzz. The problem affects an unknown function of the file /publicposts.php...

PT-2025-23758 · Unknown · Phpgurukul Curfew E-Pass Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Curfew e-Pass Management System version 1.0 Description: A critical issue affects some unknown functionality of the file /admin/edit-category-detail.php, where the manipulation of the editid argument leads to SQL injection. This...

PT-2025-23471 · Unknown · Assamlook Cms

Name of the Vulnerable Software and Affected Versions: AssamLook CMS version 1.0 Description: A critical issue has been found in the software, affecting an unknown functionality of the file /view tender.php. The manipulation of the ID argument leads to SQL injection. This issue can be exploited...

PT-2025-22938 · Sourcecodester · Sourcecodester Hospital Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Hospital Management System version 1.0 Description: A critical issue was found in the system, affecting the file /admin/check availability.php. The manipulation of the emailid argument leads to SQL injection. This issue...

CVE-2024-10407

A vulnerability, which was classified as critical, was found in SourceCodester Petrol Pump Management Software 1.0. This affects an unknown part of the file /admin/editcustomer.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...