LimeSurvey 安全漏洞

LimeSurvey PHPSurveyor is a set of open-source online survey programs developed by the LimeSurvey team. It supports functions such as survey program development, survey questionnaire publishing, and data collection. Version 6.15.20+251021 of Limesurvey contains a security vulnerability, which ste...

CVE-2026-30478

A Dynamic-link Library Injection vulnerability in GatewayGeo MapServer for Windows version 5 allows attackers to escalate privileges via a crafted executable...

GatewayGeo MapServer 安全漏洞

GatewayGeo MapServer is an open-source geographic information system map service and spatial data publishing platform developed by GatewayGeo. There is a security vulnerability present in GatewayGeo MapServer for Windows, which stems from dynamic link library injection. This vulnerability could...

CVE-2026-30479

A Dynamic-link Library Injection vulnerability in OSGeo Project MapServer before v8.0 allows attackers to execute arbitrary code via a crafted executable...

PT-2026-31585

Name of the Vulnerable Software and Affected Versions D-Link DIR-882 version 1.01B02 Description A flaw exists in the sprintf function within the prog.cgi file of the HNAP1 SetNetworkSettings Handler component. Manipulation of the IPAddress argument can lead to operating system command injection...

PT-2026-31745

A UNIX Symbolic Link Symlink Following vulnerability in the CLI of Juniper Networks Junos OS allows a local, authenticated attacker with low privileges to escalate their privileges to root which will lead to a complete compromise of the system. When after a user has performed a specific 'file lin...

D-Link DIR-605L 安全漏洞

The D-Link DIR-605L is a wireless router produced by D-Link Corporation. The D-Link DIR-605L version 2.13B01 has a security vulnerability. This vulnerability stems from the operation of the curTime parameter in the formSetMACFilter function of the POST Request Handler component, which may lead to...

D-Link DIR-645 安全漏洞

The D-Link DIR-645 is a wireless router produced by D-Link Corporation. Versions 1.01, 1.02, and 1.03 of the D-Link DIR-645 contain security vulnerabilities. These vulnerabilities stem from a stack-based buffer overflow vulnerability in the function hedwigcgimain located in the /cgi-bin/hedwig.cg...

PT-2026-31741

Name of the Vulnerable Software and Affected Versions D-Link DIR-605L version 2.13B01 Description A flaw exists in the formSetMACFilter function of the /goform/formSetMACFilter file within the POST Request Handler component. Manipulation of the curTime argument can cause a buffer overflow,...

PT-2026-31695

Name of the Vulnerable Software and Affected Versions V2Board versions 1.6.1 through 1.7.4 and Xboard versions through 0.1.9 Description V2Board and Xboard are affected by an issue where authentication tokens are exposed in the HTTP response bodies of the loginWithMailLink endpoint when the login...

D-Link DIR-605L 安全漏洞

The D-Link DIR-605L is a wireless router produced by D-Link Corporation. The D-Link DIR-605L version 2.13B01 has a security vulnerability. This vulnerability stems from the operation of the curTime parameter in the formAdvNetwork function of the POST Request Handler component, which may lead to a...

D-Link DIR-605L 安全漏洞

The D-Link DIR-605L is a wireless router produced by D-Link Corporation. The D-Link DIR-605L version 2.13B01 has a security vulnerability. This vulnerability stems from the operation of the curTime parameter in the formAdvFirewall function of the POST Request Handler component, which may lead to ...

PT-2026-31794

Name of the Vulnerable Software and Affected Versions D-Link DIR-605L version 2.13B01 Description A buffer overflow issue exists in the POST Request Handler component, specifically within the formAdvFirewall function of the /goform/formAdvFirewall file. Manipulation of the curTime argument can...

D-Link DIR-882 操作系统命令注入漏洞

The D-Link DIR-882 is a dual-band wireless router produced by D-Link Corporation. The D-Link DIR-882 version 1.01B02 has a vulnerability related to operating system command injection. This vulnerability stems from an error in the sprintf function in the prog.cgi file within the HNAP1...

CVE-2026-30478

CVE-2026-30478 describes a DLL injection vulnerability in GatewayGeo MapServer for Windows version 5 that allows privilege escalation via a crafted executable. According to the CVE entry, the attack is local with low attack complexity and no user interaction, and it yields high impact on confiden...

D-Link DIR-605L 安全漏洞

The D-Link DIR-605L is a wireless router produced by D-Link Corporation. The D-Link DIR-605L version 2.13B01 has a security vulnerability. This vulnerability stems from the operation of the curTime parameter in the formVirtualServ function within the POST Request Handler component, which may lead...

PT-2026-31740

Name of the Vulnerable Software and Affected Versions D-Link DIR-605L version 2.13B01 Description A buffer overflow issue exists in the formVirtualServ function within the POST Request Handler component, specifically in the file /goform/formVirtualServ. The vulnerability is triggered by...

D-Link DIR-605L 安全漏洞

The D-Link DIR-605L is a wireless router produced by D-Link Corporation. The D-Link DIR-605L version 2.13B01 has a security vulnerability. This vulnerability stems from the operation of the curTime parameter in the formSetLog function of the POST Request Handler component, which may lead to a...

CVE-2026-30479

CVE-2026-30479 affects OSGeo MapServer, prior to version 8.0. The issue is a Dynamic-link Library (DLL) Injection vulnerability that allows an attacker to execute arbitrary code through a crafted executable. The cited documents consistently describe the vulnerability as enabling arbitrary code ex...

PT-2026-31656

A Dynamic-link Library Injection vulnerability in GatewayGeo MapServer for Windows version 5 allows attackers to escalate privileges via a crafted executable...