61706 matches found
CVE-2025-70233
D-Link DIR-513 v1.10 is affected by a stack buffer overflow in the curTime parameter of the /goform/formSetEnableWizard endpoint. The CVE-2025-70233 entry identifies the root cause as a stack-based overflow in this API, with a high/severity impact (CVSS v3.1: Critical, Confidentiality/Integrity/A...
CVE-2025-70232
CVE-2025-70232 describes a stack buffer overflow in the D-Link DIR-513 hardware, version 1.10, triggered by the curTime parameter in the endpoint goform/formSetMACFilter . Affected component is a web endpoint handling MAC filtering; root cause is a stack buffer overflow. The public documents cons...
CVE-2025-70231
Summary: CVE-2025-70231 affects D-Link DIR-513 v1.10, where processing POST requests to /goform/formLogin enters /goform/getAuthCode and fails to filter the FILECODE parameter, causing a path-traversal vulnerability with high impact. The CVSSv3.1 base score is 9.8 (CRITICAL), with network access,...
CVE-2025-70229
Summary: CVE-2025-70229 is a stack buffer overflow in D-Link DIR-513 v1.10, triggered by the curTime parameter of the /goform/formSchedule endpoint. The vulnerability affects the device’s ability to process crafted input, potentially impacting availability, integrity, and confidentiality as indic...
CVE-2025-70229
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSchedule...
PT-2026-23487
Name of the Vulnerable Software and Affected Versions Gogs versions prior to 0.14.2 Description The Gogs API accepts tokens in URL parameters, specifically token and access token. This can lead to information disclosure as these tokens may be logged, stored in browser history, or sent in referrer...
CVE-2025-70225
creationtimestamp| type| source ---|---|--- 2026-03-04 23:49:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgbhvmizt22x 2026-03-05 18:02:05+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgdexy6frl2s...
CVE-2026-30224
creationtimestamp| type| source ---|---|--- 2026-03-04 23:37:39+00:00| published-proof-of-concept| https://github.com/OliveTin/OliveTin/security/advisories/GHSA-gq2m-77hf-vwgh 2026-03-06 23:20:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgghap6dvj2e...
CVE-2026-30223
creationtimestamp| type| source ---|---|--- 2026-03-04 23:05:53+00:00| published-proof-of-concept| https://github.com/OliveTin/OliveTin/security/advisories/GHSA-g962-2j28-3cg9 2026-03-06 23:53:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mggj3u4co52o 2026-03-07 09:06:05+00:00|...
CVE-2026-27802
creationtimestamp| type| source ---|---|--- 2026-03-04 22:17:27+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgbcrplsou26 2026-03-05 00:19:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgbjlnnl5n2u 2026-03-06 21:40:09+00:00| seen|...
CVE-2025-70222
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin,goform/getAuthCode...
CVE-2025-70222
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin,goform/getAuthCode...
GHSA-5HWF-RC88-82XM
creationtimestamp| type| source ---|---|--- 2026-03-04 22:10:05+00:00| seen| https://gist.github.com/alon710/740d2628b364f80d93a95763c507d3f8 2026-03-13 21:10:06+00:00| seen| https://gist.github.com/alon710/25afc6b7c80d9d4a2082df7705bf284f...
CVE-2026-25750 LangSmith Studio has URL Parameter Injection Vulnerability that Enables Token Theft via Malicious baseUrl
Langchain Helm Charts are Helm charts for deploying Langchain applications on Kubernetes. Prior to langchain-ai/helm version 0.12.71, a URL parameter injection vulnerability existed in LangSmith Studio that could allow unauthorized access to user accounts through stolen authentication tokens. The...
EUVD-2025-208288
D-link Dir-513 A1FW110 is vulnerable to Buffer Overflow in the function formTcpipSetup...
EUVD-2025-208290
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin...
EUVD-2025-208286
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAdvNetwork...
EUVD-2025-208289
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the goform/formDeviceReboot...
EUVD-2026-9482
A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an authenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. To exploit this vulnerability, the attacker must have the OSPF...
EUVD-2025-208287
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formEasySetupWizard...