CVE-2025-47229

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a denial of service varsetleavequiet assertion failure and application exit via crafted input data, such as data that triggers a call from src/data/dictionary.c code into src/data/variable.c code...

TOTOLINK N150RT /boafrm/formWlwds File Buffer Overflow Vulnerability

The TOTOLINK N150RT is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK N150RT suffers from a buffer overflow vulnerability that originates from the failure of the parameter submit-url in the file /boafrm/formWlwds to correctly validate the length and size of the input data,...

Tenda AC15 Buffer Overflow Vulnerability

The Tenda AC15 is a wireless router from the Chinese company Tenda. Tenda AC15 15.03.05.19 and earlier versions suffer from a buffer overflow vulnerability, which originates from the mac parameter of the function fromSetWirelessRepeat in the file /goform/WifiExtraSet failing to correctly validate...

Tenda AC10 wanSpeed2 Parameter Buffer Overflow Vulnerability

The Tenda AC10 is a wireless router from the Chinese company Tenda. The Tenda AC10 suffers from a buffer overflow vulnerability that stems from the wanSpeed2 parameter in AdvSetMacMtuWan failing to correctly validate the length and size of the input data, which can be exploited by an attacker to...

PCMan FTP Server Buffer Overflow Vulnerability (CNVD-2025-10696)

PCMan FTP Server is an FTP server software for file transfer. A buffer overflow vulnerability exists in PCMan FTP Server that stems from the MDTM Command Handler failing to properly handle input data when processing a specific request. No detailed vulnerability details are available at this time...

PT-2025-16970 · Unknown · Cwd – Stealth Links

Name of the Vulnerable Software and Affected Versions: CWD – Stealth Links versions n/a through 1.3 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in SQL commands. This allows for SQL Injection attacks. Recommendations:...

The vulnerability of the Rails Html Sanitizer configuration tool for cleaning HTML applications allows attackers to perform cross-site scripting attacks.

The vulnerability of the Rails Html Sanitizer configuration tool for cleaning HTML applications is related to improper elimination of input data during web page generation. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

The vulnerability of the Rails Html Sanitizer configuration tool for cleaning HTML applications allows attackers to perform cross-site scripting attacks.

The vulnerability of the Rails Html Sanitizer configuration tool for cleaning HTML applications is related to improper elimination of input data during web page generation. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

The vulnerability of the NFSD component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the NFSD component in the Linux operating system’s kernel is related to improper validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the data.c component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the data.c component in the Linux operating system’s kernel is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

HDF5 H5F__accum_free function buffer overflow vulnerability

HDF5 is a library of HDF open source . HDF5 has a buffer overflow vulnerability , the vulnerability stems from the H5Faccumfree function fails to correctly validate the length of the input data size , an attacker can use this vulnerability to cause a denial of service...

Tenda AX12 Buffer Overflow Vulnerability (CNVD-2025-07608)

Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from Tenda China. The Tenda AX12 suffers from a buffer overflow vulnerability that originates from the sub43fdcc function in /goform/SetNetControlList that fails to correctly validate the length of the input data, which can be exploited by ...

Tenda AC7 Buffer Overflow Vulnerability (CNVD-2025-07593)

Tenda AC7 is a wireless router from Tenda, a Chinese company. The Tenda AC7 suffers from a buffer overflow vulnerability that originates from the timeZone parameter of the formfastsettingwifiset function failing to properly validate the length of the input data, which can be exploited by an...

AC8 Buffer Overflow Vulnerability (CNVD-2025-07594) in Shenzhen Jixiang Tengda Technology Co.

Shenzhen Jixiang Tengda Technology Co., Ltd AC8 is a wireless router. Shenzhen Jixiang Tengda Technology Co., Ltd AC8 has a buffer overflow vulnerability, the vulnerability stems from the sub47D878 function's src parameter fails to correctly validate the length of the input data size, an attacker...

The vulnerability of the Golang programming language, related to improper validation of input data, allows attackers to circumvent established security restrictions.

The vulnerability of the Golang programming language is related to improper validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to circumvent established security measures...

Liferay Portal和Liferay DXP 安全漏洞

Liferay Portal and Liferay DXP are both products of Liferay, Inc.Liferay Portal is a J2EE based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP...

The vulnerability of the gitRepo function in the Kubernetes cluster management software allows a attacker to influence the confidentiality and integrity of the protected information.

The vulnerability of the gitRepo function in the Kubernetes cluster management software is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to influence the confidentiality and integrity of the protected information...

The vulnerability of microprogrammed software in Intel NUC laptops arises from insufficient testing of input data, allowing attackers to exploit this weakness to gain increased privileges.

The vulnerability of Intel NUC laptop microprogramming software exists due to insufficient testing of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

CVE-2025-26702

Improper Input Validation vulnerability in ZTE GoldenDB allows Input Data Manipulation.This issue affects GoldenDB: from 6.1.03 through 6.1.03.04...

The vulnerability of Microsoft Surface sensor display microprogramming software, related to insufficient validation of input data, allows a hacker to bypass security functions.

The vulnerability of Microsoft Surface sensor display software is related to insufficient testing of input data. Exploiting this vulnerability could allow a remote attacker to bypass security measures...