CVE-2026-3957

A flaw has been found in xierongwkhd weimai-wetapp up to 5fe9e8225be4f73f2c5087f134aff657bdf1c6f2. This vulnerability affects the function getLikeMovieList of the file source-code/src/main/java/com/moke/wp/wxweimai/controller/HomeController.java of the component Endpoint. Executing a manipulation...

CVE-2026-3957

CVE-2026-3957 affects xierongwkhd weimai-wetapp (Endpoint, getLikeMovieList in HomeController.java). The flaw allows SQL injection via manipulation of the argument cat, with remote execution and a published exploit. Product uses rolling releases, so affected version details are unavailable. No re...

CVE-2026-3957 xierongwkhd weimai-wetapp Endpoint HomeController.java getLikeMovieList sql injection

A flaw has been found in xierongwkhd weimai-wetapp up to 5fe9e8225be4f73f2c5087f134aff657bdf1c6f2. This vulnerability affects the function getLikeMovieList of the file source-code/src/main/java/com/moke/wp/wxweimai/controller/HomeController.java of the component Endpoint. Executing a manipulation...

CVE-2026-3957 xierongwkhd weimai-wetapp Endpoint HomeController.java getLikeMovieList sql injection

A flaw has been found in xierongwkhd weimai-wetapp up to 5fe9e8225be4f73f2c5087f134aff657bdf1c6f2. This vulnerability affects the function getLikeMovieList of the file source-code/src/main/java/com/moke/wp/wxweimai/controller/HomeController.java of the component Endpoint. Executing a manipulation...

weimai-wetapp SQL注入漏洞

Weimai-Wetapp is a movie ticket purchasing mini-program and backend management system developed by MO-KE individuals. Weimai-Wetapp has a SQL injection vulnerability, which stems from incorrect operations with the cat parameter in the getLikeMovieList function of the controller/HomeController.jav...

PT-2026-24849

Name of the Vulnerable Software and Affected Versions xierongwkhd weimai-wetapp versions up to 5fe9e8225be4f73f2c5087f134aff657bdf1c6f2 Description A flaw exists in xierongwkhd weimai-wetapp. The issue affects the getLikeMovieList function within the file source-code/src/main/java/com/moke/wp/wx...

EUVD-2025-205482

A vulnerability has been found in jackq XCMS up to 3fab5342cc509945a7ce1b8ec39d19f701b89261. Affected is the function Upload of the file Admin/Home/Controller/ProductImageController.class.php of the component Backend. Such manipulation of the argument File leads to unrestricted upload. It is...

XCMS 代码问题漏洞

XCMS is a CMS website builder system by JackQ Individual Developer. A code issue vulnerability exists in jackq XCMS, which stems from an incorrect manipulation of the parameter File in the file Admin/Home/Controller/ProductImageController.class.php, which could lead to unlimited uploads...

EUVD-2019-3550

Malware in sbrugna...

EUVD-2019-3551

Malware in sbrugna...

EUVD-2019-3549

Malware in sbrugna...

EUVD-2019-3554

Malware in sbrugna...

EUVD-2019-3553

Malware in sbrugna...

CVE-2019-13598

LuaUPnP in Vera Edge Home Controller 1.7.4452 allows remote unauthenticated users to execute arbitrary OS commands via the code parameter to /port3480/datarequest because the "No unsafe lua allowed" code block is skipped...

CVE-2024-7495

A vulnerability, which was classified as critical, was found in itsourcecode Laravel Accounting System 1.0. This affects an unknown part of the file app/Http/Controllers/HomeController.php. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack...

PT-2024-38385 · Unknown · Laravel Accounting System

Name of the Vulnerable Software and Affected Versions: Laravel Accounting System version 1.0 Description: A critical issue was found in the Laravel Accounting System, affecting an unknown part of the file app/Http/Controllers/HomeController.php. The manipulation of the image argument leads to...

Schneider Electric Wiser Home Controller WHC-5918A Information Disclosure Vulnerability

The Schneider Electric Wiser Home Controller WHC-5918A is a home controller from Schneider Electric France. The Schneider Electric Wiser Home Controller WHC-5918A is vulnerable to an information disclosure vulnerability that stems from the presence of an information disclosure vulnerability that...

PT-2024-37601 · Schneider Electric · Wiser Home Controller Whc-5918A +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: An Information Exposure issue exists, potentially leading to the disclosure of credentials when a specially crafted message is sent to the device. This...

VulnCheck KEV: CVE-2022-34753

A CWE-78: Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability exists that could cause remote root exploit when the command is compromised. Affected Products: SpaceLogic C-Bus Home Controller 5200WHC2, formerly known as C-Bus Wiser Homer...

Schneider Electric SpaceLogic C-Bus Home Controller Security Vulnerability

The Schneider Electric SpaceLogic C-Bus Home Controller is a powerful, fully integrated system from Schneider Electric, France. It can control and automate lighting and many other electrical systems and products. A security vulnerability exists in the Schneider Electric SpaceLogic C-Bus Home...