23 matches found
CVE-2022-26258
D-Link DIR-820L 1.05B03 was discovered to contain remote command execution RCE vulnerability via HTTP POST to get set ccp...
CVE-2023-49584
SAP Fiori launchpad - versions SAPUI 750, SAPUI 754, SAPUI 755, SAPUI 756, SAPUI 757, SAPUI 758, UI700 200, SAPBASIS 793, allows an attacker to use HTTP verb POST on read-only service causing low impact on Confidentiality of the application...
EUVD-2017-5937
Malware in sbrugna...
EUVD-2020-18410
Malware in sbrugna...
EUVD-2023-53536
Malicious code in bioql PyPI...
CVE-2025-8246
The CVE-2025-8246 entry applies to TOTOLINK X15 firmware version 1.0.0-B20230714.1105. The issue exists in the HTTP POST Request Handler, specifically the /boafrm/formRoute file, where improper handling of the submit-url parameter leads to a buffer overflow. This can be triggered remotely and has...
CVE-2025-6940
A vulnerability classified as critical was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected by this vulnerability is an unknown functionality of the file /boafrm/formParentControl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflo...
CVE-2025-6627
A vulnerability has been found in TOTOLINK A702R 4.0.0-B20230721.1521 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack...
D-Link DIR-632 Stack Buffer Overflow Vulnerability
D-Link DIR-632 is a wireless router for small business and SOHO users, supporting IEEE 802.11n and IEEE 802.11g wireless standards, with a maximum theoretical transfer rate of 300Mbps and equipped with eight 10/100Mbps LAN ports. A stack buffer overflow vulnerability exists in the D-Link DIR-632...
PT-2025-25570 · Totolink · Totolink Ex1200T
Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5232 B20210713 Description: A critical vulnerability was found in the HTTP POST Request Handler component, affecting the file /boafrm/formSaveConfig. The manipulation of the submit-url argument leads to a buff...
CVE-2025-4824
A vulnerability classified as critical has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formWsc of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possib...
CVE-2025-22137 Arbitrary File Overwrite via HTTP POST in Pingvin Share
Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated if anonymous shares are allowed user to overwrite arbitrary files on the server, including sensitive system files, via HTTP POST requests. The issu...
PT-2023-28196 · Sielco · Analog Fm Transmitter +12
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The application suffers from a privilege escalation issue. A user with read permissions can elevate privileges by sending a HTTP POST to set a parameter...
CVE-2022-26258
D-Link DIR-820L 1.05B03 was discovered to contain remote command execution RCE vulnerability via HTTP POST to get set ccp...
CVE-2020-21266
Broadleaf Commerce 5.1.14-GA is affected by cross-site scripting XSS due to a slow HTTP post vulnerability...
CVE-2020-21266
CVE-2020-21266 affects Broadleaf Commerce 5.1.14-GA and is caused by a slow HTTP POST that enables cross-site scripting (XSS) on the client. The impact is client-side script execution. A fix is referenced in Broadleaf release notes for 5.1.15-GA; upgrading to that version is the supported remedia...
CVE-2011-3596
Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT request...
CVE-2018-14839
LG N1A1 NAS 3718.510 is affected by: Remote Command Execution. The impact is: execute arbitrary code remote. The attack vector is: HTTP POST with parameters...
Thomson TCW690 Cable Modem ST42.03.0a - GET Denial of Service
source: https://www.securityfocus.com/bid/12595/info Thomson TCW690 cable modem is reported prone to multiple remote vulnerabilities. These issues may allow an attacker to cause a denial of service condition and/or gain unauthorized access to the device. The following specific issues were...
CVE-2004-2517
myServer 0.7.1 allows remote attackers to cause a denial of service crash via a long HTTP POST request in a View=Logon operation to index.html...