PT-2025-35907

Name of the Vulnerable Software and Affected Versions: appRain CMF version 4.0.5 Description: A stored authenticated cross-site scripting XSS issue exists due to insufficient validation of user-supplied data. The vulnerability is triggered through the dataAdmindescription, dataAdminf name, and...

CVE-2024-9866

The Event Tickets with Ticket Scanner plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'data' parameters in all versions up to, and including, 2.4.4 due to insufficient input sanitization and output escaping and missing authorization on the functionality to manage tickets...

CVE-2023-27796

RG-EW1200G PRO Wireless Routers EW3.01B11P204, RG-EW1800GX PRO Wireless Routers EW3.01B11P204, and RG-EW3200GX PRO Wireless Routers EW3.01B11P204 were discovered to contain multiple command injection vulnerabilities via the data.ip, data.protocal, data.iface and data.package parameters in the...

Ticket Reservation System SQL注入漏洞

Ticket Reservation System is itsourcecode open source ticket reservation system. Ticket Reservation System version 1.0 has a SQL injection vulnerability , the vulnerability stems from the checkoutticketsave.php file data parameters contain a SQL injection vulnerability...

Cross site scripting

Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the Page Specific Metadata and Smarty data parameters in the Content Manager Menu component...

function rngComplete is unpprotected

Lines of code Vulnerability details Impact The rngComplete is a function Called by the relayer to complete the Rng relay auction. However it has zero access control. Proof of Concept The function makes calls to the prizepool to close a draw, it also withdraws from a reserve. All these are done wi...

CVE-2023-27796

RG-EW1200G PRO Wireless Routers EW3.01B11P204, RG-EW1800GX PRO Wireless Routers EW3.01B11P204, and RG-EW3200GX PRO Wireless Routers EW3.01B11P204 were discovered to contain multiple command injection vulnerabilities via the data.ip, data.protocal, data.iface and data.package parameters in the...

Command injection

RG-EW1200G PRO Wireless Routers EW3.01B11P204, RG-EW1800GX PRO Wireless Routers EW3.01B11P204, and RG-EW3200GX PRO Wireless Routers EW3.01B11P204 were discovered to contain multiple command injection vulnerabilities via the data.ip, data.protocal, data.iface and data.package parameters in the...

CVE-2023-27796

RG-EW1200G PRO Wireless Routers EW3.01B11P204, RG-EW1800GX PRO Wireless Routers EW3.01B11P204, and RG-EW3200GX PRO Wireless Routers EW3.01B11P204 were discovered to contain multiple command injection vulnerabilities via the data.ip, data.protocal, data.iface and data.package parameters in the...

PT-2023-2337 · Unknown · Rg-Ew1200G Pro Wireless Routers +2

Name of the Vulnerable Software and Affected Versions: RG-EW1200G PRO Wireless Routers version EW 3.01B11P204 RG-EW1800GX PRO Wireless Routers version EW 3.01B11P204 RG-EW3200GX PRO Wireless Routers version EW 3.01B11P204 Description: The issue is related to the lack of input data sanitization in...

Upgraded Q -> M from 143 [1663859521800]

Judge has assessed an item in Issue 143 as Medium risk. The relevant finding follows: 2.ETHRegistrarController.register can pass any "resolver" and "data" parameters , then ETHRegistrarController do "functionCall " It is possible to pass malicious parameters example : resolver =...

CVE-2019-12629 Cisco SD-WAN vManage Command Injection Vulnerability

A vulnerability in the WebUI of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject and execute arbitrary commands with vmanage user privileges on an affected system. The vulnerability is due to insufficient input validation of data parameters for certain fields in t...

Cisco SD-WAN vManage Command Injection Vulnerability

A vulnerability in the WebUI of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject and execute arbitrary commands with vmanage user privileges on an affected system. The vulnerability is due to insufficient input validation of data parameters for certain fields in t...

CVE-2018-0344

A vulnerability in the vManage dashboard for the configuration and management service of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject and execute arbitrary commands with vmanage user privileges on an affected system. The vulnerability is due to insufficient...

Cisco SD-WAN Solution Command Injection Vulnerability

A vulnerability in the vManage dashboard for the configuration and management service of the Cisco SD-WAN Solution could allow an authenticated, remote attacker to inject and execute arbitrary commands with vmanage user privileges on an affected system. The vulnerability is due to insufficient...

qemu: arbitrary code execution

The guest operating system communicates with the FDC by sending commands such as seek, read, write, format, etc. to the FDCs input/output port. QEMUs virtual FDC uses a fixed-size buffer for storing these commands and their associated data parameters. The FDC keeps track of how much data to expec...