CVE-2019-25728

Care2x 2.7 Hospital Information System is affected by SQL injection via the ck_config cookie parameter. The vulnerability allows unauthenticated attackers to inject arbitrary SQL through endpoints such as login.php, indexframe.php, and various module files, enabling extraction of sensitive databa...

CVE-2025-29217

Tenda W18E v2.0 v16.01.0.11 was discovered to contain a stack overflow in the wifiSSID parameter at /goform/setModules. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

Tenda W18E 安全漏洞

The Tenda W18E is a wireless router from the Chinese company Tenda. A stack overflow vulnerability exists in the Tenda W18E /goform/setModules handling of the wifiSSID parameter, which can be exploited by an attacker to submit a special request that can crash the application and cause a denial of...

Tenda AX9 安全漏洞

Tenda AX9 is a Wi-Fi 6 router from Tenda China. A command execution vulnerability exists in Tenda AX9 version V22.03.01.46, which is caused by the "mac" parameter in /goform/setModules not properly filtering constructed command special characters, commands, etc. This vulnerability can be exploite...