CVE-2025-8136 TOTOLINK A702R HTTP POST Request formFilter buffer overflow

A vulnerability, which was classified as critical, was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected is an unknown function of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument ip6addr leads to buffer overflow. It is possible to laun...

CVE-2025-8136 TOTOLINK A702R HTTP POST Request formFilter buffer overflow

A vulnerability, which was classified as critical, was found in TOTOLINK A702R 4.0.0-B20230721.1521. Affected is an unknown function of the file /boafrm/formFilter of the component HTTP POST Request Handler. The manipulation of the argument ip6addr leads to buffer overflow. It is possible to laun...

Code-Projects Church Donation System 安全漏洞

Code-Projects Church Donation System is an open source church donation system from Code-Projects. A security vulnerability exists in Code-Projects Church Donation System version 1.0, which stems from an incorrect manipulation of the parameter Username in the file /admin/index.php in the HTTP POST...

PT-2025-31029 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical buffer overflow vulnerability exists in the HTTP POST Request Handler component of TOTOLINK X15. The vulnerability is located in the /boafrm/formRoute file and occurs due to...

NewStart CGSL MAIN 7.02 : libmicrohttpd Vulnerability (NS-SA-2025-0190)

The remote NewStart CGSL host, running version MAIN 7.02, has libmicrohttpd packages installed that are affected by a vulnerability: - GNU libmicrohttpd before 0.9.76 allows remote DoS Denial of Service due to improper parsing of a multipart/form-data boundary in the postprocessor.c...

PT-2025-31027 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability exists in the TOTOLINK X15 device. The issue is a buffer overflow within an unknown function of the HTTP POST Request Handler component, specifically in the file...

PT-2025-30934 · D Link · Dir-513

Name of the Vulnerable Software and Affected Versions: D-Link DIR-513 version 1.10 Description: A critical vulnerability exists due to a buffer overflow in the formSetWanPPTPcallback function within the /goform/formSetWanPPTPpath file of the HTTP POST Request Handler component. The vulnerability ...

PT-2025-31208 · Undefined · Undefined

A stack-based buffer overflow vulnerability in the my cgi.cgi component of certain D-Link devices, including the DSP-W215 version 1.02, can be exploited via a specially crafted HTTP POST request to the /common/info.cgi endpoint. This flaw enables an unauthenticated attacker to achieve remote code...

PT-2025-30929 · Unknown · Church Donation System

Name of the Vulnerable Software and Affected Versions: code-projects Church Donation System version 1.0 Description: A critical vulnerability exists in code-projects Church Donation System 1.0. The issue is a SQL injection affecting an unknown function within the /admin/index.php file of the HTTP...

TOTOLINK A702R 安全漏洞

The TOTOLINK A702R is a wireless router from TOTOLINK. A buffer overflow vulnerability exists in TOTOLINK A702R version 4.0.0B20230721.1521, which stems from improper handling of the submit-url parameter in the /boafrm/formWlanMultipleAP file in the HTTP POST request handling component. An attack...

PT-2025-31023 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability exists in the HTTP POST Request Handler component of TOTOLINK X15. The vulnerability is located in the unknown code of the /boafrm/formFilter file and results in ...

PT-2025-31026 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability exists in the TOTOLINK X15 router's built-in boa server. The issue is a buffer overflow within the memory during the processing of the devicemac1 parameter via an...

PT-2025-31028 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability exists in the TOTOLINK X15 router's built-in boa server. The issue is a buffer overflow within the memory during the processing of the submit-url parameter. This...

CVE-2025-7946

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /search-visitor.php of the component HTTP POST Request Handler. The manipulation of the argument searchdata leads to cross sit...

CVE-2025-7946 PHPGurukul Apartment Visitors Management System HTTP POST Request search-visitor.php cross site scripting

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /search-visitor.php of the component HTTP POST Request Handler. The manipulation of the argument searchdata leads to cross sit...

CVE-2025-7946 PHPGurukul Apartment Visitors Management System HTTP POST Request search-visitor.php cross site scripting

A vulnerability was found in PHPGurukul Apartment Visitors Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /search-visitor.php of the component HTTP POST Request Handler. The manipulation of the argument searchdata leads to cross sit...

CVE-2025-7946

CVE-2025-7946 affects PHPGurukul Apartment Visitors Management System 1.0. The vulnerability is a cross-site scripting flaw in the HTTP POST Request Handler, triggered by manipulating the searchdata argument processed in /search-visitor.php. Remote exploitation is possible, and public exploit inf...

CVE-2025-7858

A vulnerability classified as problematic has been found in PHPGurukul Apartment Visitors Management System 1.0. This affects an unknown part of the file /admin-profile.php of the component HTTP POST Request Handler. The manipulation of the argument adminname leads to cross site scripting. It is...

PT-2025-30741 · Totolink · Totolink A702R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A702R version 4.0.0-B20230721.1521 Description: A critical vulnerability exists in the TOTOLINK A702R device. The issue is related to a buffer overflow within the HTTP POST Request Handler component, specifically in the file...

PT-2025-30363 · Phpgurukul · Phpgurukul Apartment Visitors Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Apartment Visitors Management System version 1.0 Description: A problematic issue exists due to the manipulation of the searchdata argument within the HTTP POST Request Handler component, specifically when processing the...