D-Link DCS-850L 路径遍历漏洞

The D-Link DCS-850L is a wireless network camera from China's AUO D-Link. A path traversal vulnerability exists in the D-Link DCS-850L version 1.02.09, which stems from incorrect manipulation of the parameter DownloadFile in the component Firmware Update Service, which could lead to path traversa...

CVE-2025-11789

Out-of-bounds read vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. The 'DownloadFile' function converts a parameter to an integer using 'atoi' and then uses it as an index in the 'FilesDownload' array with 'iVar2'. If the parameter is too large, it will access memory beyond the limits...

Yifang CMS 路径遍历漏洞

Yifang CMS is a PHP enterprise website development and construction management system from China Yifang Company. A security vulnerability exists in Yifang CMS 2.0.2 and earlier versions, which stems from path traversal due to incorrect operation of the File parameter File in...

WordPress Plugin almosteffortless secure-files path traversal vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A path traversal vulnerability exists in...