PT-2026-2576

CVE-2025-69990 phpgurukul News Portal Project V4.1 has an Arbitrary File Deletion Vulnerability in remove file.php. The parameter file can cause any file to be deleted. https://t.co/0eX7xcTYaJ...

CVE-2025-15404

CVE-2025-15404 affects CampCodes School File Management System 1.0. A vulnerability in an unknown function within /save_file.php allows manipulation of the File argument that leads to unrestricted upload. The issue appears to be exploitable remotely, and multiple sources indicate the exploit has ...

EUVD-2026-0018

A security vulnerability has been detected in campcodes School File Management System 1.0. The affected element is an unknown function of the file /savefile.php. The manipulation of the argument File leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclose...

PT-2026-1004

Name of the Vulnerable Software and Affected Versions campcodes School File Management System version 1.0 Description A security issue exists in campcodes School File Management System 1.0. The issue involves unrestricted file upload due to manipulation of the File argument within an unknown...

CVE-2025-11430 SourceCodester Simple E-Commerce Bookstore cart.php sql injection

A vulnerability was found in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /cart.php. The manipulation of the argument remove results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

EUVD-2015-4353

Malware in sbrugna...

EUVD-2025-28409

Malicious code in bioql PyPI...

CVE-2025-10480

A weakness has been identified in SourceCodester Online Student File Management System 1.0. This affects an unknown function of the file /savefile.php. Executing manipulation can lead to unrestricted upload. The attack may be launched remotely. The exploit has been made available to the public an...

PT-2025-37772

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Student File Management System version 1.0 Description: A security issue has been identified in SourceCodester Online Student File Management System. The vulnerability resides in the /remove file.php file, specifically...

Selea多款产品 安全漏洞

Selea Targa iZero and others are an optical character recognition camera for automatic license plate recognition from Selea, Italy. A security vulnerability exists in several Selea products, which stems from the /common/getfile.php script that does not validate the file parameter, potentially...

VulnCheck KEV: CVE-2025-34022

A path traversal vulnerability exists in multiple models of Selea Targa IP OCR-ANPR cameras, including iZero, Targa 512, Targa 504, Targa Semplice, Targa 704 TKM, Targa 805, Targa 710 INOX, Targa 750, and Targa 704 ILB. The /common/getfile.php script in the “Download Archive in Storage” page...

CVE-2024-7440

UNSUPPORTED WHEN ASSIGNED A vulnerability was found in Vivotek CC8160 VVTK-0100d. It has been classified as critical. This affects the function getenv of the file uploadfile.cgi. The manipulation of the argument QUERYSTRING leads to command injection. It is possible to initiate the attack remotel...

TOTOLINK A800R 安全漏洞

The TOTOLINK A800R is a wireless router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in TOTOLINK A800R version V4.1.2cu.5137B20200730, which stems from the v14 parameter in downloadFile.cgi failing to properly validate the length and size of the input data, and c...

TOTOLINK A810R 安全漏洞

TOTOLINK A810R is a wireless dual-band router from China's Gion Electronics TOTOLINK. The TOTOLINK A810R suffers from a buffer overflow vulnerability, which stems from the v25 parameter in downloadFile.cgi failing to properly validate the length and size of the input data, which can be exploited ...

CVE-2025-28027

TOTOLINK A830R V4.1.2cu.5182B20201102, A950RG V4.1.2cu.5161B20200903, A3000RU V5.9c.5185B20201128, and A3100R V4.1.2cu.5247B20211129 was found to contain a buffer overflow vulnerability in downloadFile.cgi...

CVE-2024-53335

TOTOLINK A810R V4.1.2cu.5182B20201026 is vulnerable to Buffer Overflow in downloadFlile.cgi...

Vivotek CC8160 安全漏洞

The Vivotek CC8160 is a 2MP highly striped network camera from China VIVOTEK Communications Vivotek. A security vulnerability exists in the Vivotek CC8160 VVTK-0100d version, which stems from the parameter QUERYSTRING in the file uploadfile. cgi that can lead to command injection...

Fujian Kelixin Command and Dispatch Platform SQL Injection Vulnerability

Fujian Kelixin Command and Dispatch Platform is a command and dispatch platform of Fujian Kelixin Company. A SQL injection vulnerability exists in Fujian Kelixin Command and Dispatch Platform version 20240318 and earlier versions, which originates from an unknown function in...

VIVOTEK Network Camera Security Vulnerability

VIVOTEK Network Camera is a webcam from VIVOTEK. A security vulnerability exists in VIVOTEK Network Camera version v.FD8166A-VVTK-0204j, which originates from a vulnerability that allows remote attackers to execute arbitrary code via the uploadfile.cgi component...

CVE-2024-1034

A vulnerability, which was classified as critical, was found in openBI up to 1.0.8. This affects the function uploadFile of the file /application/index/controller/File.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclose...