Lucene search
K

6 matches found

EUVD
EUVD
added 2026/06/12 12:31 a.m.7 views

EUVD-2026-36326

An authenticated format string vulnerability exists in the ONVIF service of Tapo C110 v2 due to improper handling of user-controlled input. Externally controlled data is interpreted as a format string, which can be used to manipulate stack memory, including control flow data such as return...

7CVSS5.7AI score0.00463EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/06/11 8:46 p.m.6 views

CVE-2026-6250 Authenticated Format String Injection on TP-Link Tapo C110

An authenticated format string vulnerability exists in the ONVIF service of Tapo C110 v2 due to improper handling of user-controlled input. Externally controlled data is interpreted as a format string, which can be used to manipulate stack memory, including control flow data such as return...

7CVSS5.5AI score0.00463EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-31132

Malicious code in bioql PyPI...

4.4CVSS6.6AI score0.00162EPSS
Exploits0References2
NVD
NVD
added 2025/08/15 8:15 p.m.11 views

CVE-2025-36088

IBM TS4500 1.11.0.0-D00, 1.11.0.1-C00, 1.11.0.2-C00, and 1.10.00-F00 web GUI is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosu...

5.4CVSS0.00166EPSS
Exploits0References1
CNVD
CNVD
added 2021/01/12 12:0 a.m.2 views

Wdja Cross-Site Scripting Vulnerability

Wdja is a Php-based content management system from the Wdja team. A cross-site scripting vulnerability exists in WDJA CMS version 1.5, where the vulnerability tongji parameter does not do XSS filtering on user input, which can be exploited by an attacker to steal user credentials...

6.1CVSS5.8AI score0.00471EPSS
Exploits1References1
OSV
OSV
added 2020/06/19 4:15 p.m.3 views

CVE-2020-4297

IBM DOORS Next Generation DNG/RRC 6.0.2, 6.0.6, 6.0.6.1, and 7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

5.4CVSS5.9AI score0.00561EPSS
Exploits0References2
Rows per page
Query Builder