CVE-2025-46002

An issue in Filemanager v2.5.0 and below allows attackers to execute a directory traversal via sending a crafted HTTP request to the filemanager.php endpoint...

CVE-2025-7762

A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07.26A1. This issue affects some unknown processing of the file /menunatmore.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be initiated remotel...

CVE-2025-7790

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been classified as critical. This affects an unknown part of the file /menunat.asp of the component HTTP Request Handler. The manipulation of the argument outaddr/inaddr/outport/proto leads to stack-based buffer overflow. It is possib...

CVE-2025-7790

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been classified as critical. This affects an unknown part of the file /menunat.asp of the component HTTP Request Handler. The manipulation of the argument outaddr/inaddr/outport/proto leads to stack-based buffer overflow. It is possib...

CVE-2025-7790 D-Link DI-8100 HTTP Request menu_nat.asp stack-based overflow

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been classified as critical. This affects an unknown part of the file /menunat.asp of the component HTTP Request Handler. The manipulation of the argument outaddr/inaddr/outport/proto leads to stack-based buffer overflow. It is possib...

CVE-2025-7790

The CVE-2025-7790 entry concerns the D-Link DI-8100 router, firmware 16.07.26A1. A stack-based buffer overflow exists in the HTTP Request Handler, specifically in the /menu_nat.asp/file handling of arguments out_addr/in_addr/out_port/proto, which can be triggered remotely. Public exploits have be...

Filemanager is vulnerable to Relative Path Traversal through filemanager.php

An issue in Filemanager v2.5.0 and below allows attackers to execute a directory traversal via sending a crafted HTTP request to the filemanager.php endpoint...

GHSA-R7Q6-6FMQ-MX4C Filemanager is vulnerable to Relative Path Traversal through filemanager.php

An issue in Filemanager v2.5.0 and below allows attackers to execute a directory traversal via sending a crafted HTTP request to the filemanager.php endpoint...

CVE-2025-46002

An issue in Filemanager v2.5.0 and below allows attackers to execute a directory traversal via sending a crafted HTTP request to the filemanager.php endpoint...

CVE-2025-46002

An issue in Filemanager v2.5.0 and below allows attackers to execute a directory traversal via sending a crafted HTTP request to the filemanager.php endpoint...

CVE-2024-32124

CVE-2024-32124 affects Fortinet FortiIsolator, specifically affected versions 2.3 through 2.4.4. The root cause is an improper access control in the logging component, which may allow a remote authenticated read-only attacker to alter logs by sending a crafted HTTP request. Documented impact is l...

CVE-2025-7673

A buffer overflow vulnerability in the URL parser of the zhttpd web server in Zyxel VMG8825-T50K firmware versions prior to V5.50ABOM.5C0 could allow an unauthenticated attacker to cause denial-of-service DoS conditions and potentially execute arbitrary code by sending a specially crafted HTTP...

PT-2025-30042 · Unknown · File Manager

Name of the Vulnerable Software and Affected Versions: Filemanager versions 2.5.0 and below Description: An issue allows attackers to execute a directory traversal via sending a crafted HTTP request to the filemanager.php endpoint. Recommendations: Filemanager versions prior to 2.5.0: At the...

CVE-2025-46002

An issue in Filemanager v2.5.0 and below allows attackers to execute a directory traversal via sending a crafted HTTP request to the filemanager.php endpoint...

CVE-2025-46002

An issue in Filemanager v2.5.0 and below allows attackers to execute a directory traversal via sending a crafted HTTP request to the filemanager.php endpoint...

CVE-2025-46002

CVE-2025-46002 affects Filemanager before v2.5.0 and below, where a directory traversal can be triggered by crafting requests to the filemanager.php endpoint. The vulnerability is confirmed across multiple sources (Red Hat, GitHub advisories, Snyk) and centers on improper path handling in fileman...

aiohttp < 3.12.14 HTTP Request Smuggling Vulnerability - Linux

aiohttp is prone to an HTTP request smuggling vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Ubuntu: Security Advisory (USN-7643-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-7762

A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07.26A1. This issue affects some unknown processing of the file /menunatmore.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be initiated remotel...

CVE-2025-7762 D-Link DI-8100 HTTP Request menu_nat_more.asp stack-based overflow

A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07.26A1. This issue affects some unknown processing of the file /menunatmore.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be initiated remotel...