D-Link多款产品 命令注入漏洞

D-Link DNS-120, etc., are products of D-Link Corporation from China. The D-Link DNS-120 is a network storage adapter. The D-Link DNR-202L is a network video camera. The D-Link DNS-315L is a network attached storage device. Several D-Link products have command injection vulnerabilities, which stem...

D-Link多款产品 命令注入漏洞

D-Link DNS-320, etc., are products of D-Link Corporation, a Chinese company. The D-Link DNS-320 is a NAS Network Attached Storage device. The D-Link DNS-325 is also a NAS device. The D-Link DNS-120 is a network storage adapter. Several D-Link products have command injection vulnerabilities, which...

CVE-2025-4394

Medtronic MyCareLink Patient Monitor uses an unencrypted filesystem on internal storage, which allows an attacker with physical access to read and modify files. This issue affects MyCareLink Patient Monitor models 24950 and 24952: before June 25, 2025...

Etherscan ERC20 Token Security Vulnerability

Etherscan ERC20 Token is a validation service organized by Etherscan for use in EtherCurrency services. A security vulnerability exists in the Etherscan ERC20 Token version 2019-06-05 and prior versions, which stems from a typo in the constructor that implements the smart contract. An attacker...

CVE-2020-6938

A sensitive information disclosure vulnerability in Tableau Server 10.5, 2018.x, 2019.x, 2020.x released before June 26, 2020, could allow access to sensitive information in log files...

CVE-2019-15561

FlashLingo before 2019-06-12 allows SQL injection, related to flashlingo.js and db.js...

Tapplock Bluetooth Low Energy Subsystem Access Control Error Vulnerability

Tapplock is a smart lock.Bluetooth Low Energy BLE subsystem is one of the low power Bluetooth subsystems. An access control error vulnerability exists in the BLE subsystem in versions of Tapplock prior to 2018-06-12, which can be exploited by an attacker to perform a replay attack...

CVE-2019-10028

Denial of Service DOS in Dial Reference Source Code Used before June 18th, 2019...

CVE-2018-13133

Golden Frog VyprVPN before 2018-06-21 has a vulnerability associated with the installation process on Windows...

SAP Business Objects Financial Consolidation Cross-Site Scripting Vulnerability

SAP Business Objects is a suite of business intelligence software and enterprise performance solutions from SAP, Germany. The solution provides reporting, performance management, and data base functionality, and Financial Consolidation is one of the tools used to connect financial systems. A...

CVE-2017-2253

Untrusted search path vulnerability in Installer of Yahoo! Toolbar for Internet explorer v8.0.0.6 and earlier, with its timestamp prior to June 13, 2017, 18:18:55 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

CVE-2016-2362

Fonality previously trixbox Pro 12.6 through 14.1i before 2016-06-01 has a hardcoded password for the FTP account, which allows remote attackers to obtain access via a 1 FTP or 2 SSH connection...

CVE-2016-2468

The Qualcomm GPU driver in Android before 2016-06-01 on Nexus 5, 5X, 6, 6P, and 7 devices allows attackers to gain privileges via a crafted application, aka internal bug 27475454...

CVE-2016-2466

The Qualcomm sound driver in Android before 2016-06-01 on Nexus 6 devices allows attackers to gain privileges via a crafted application, aka internal bug 27947307...