Lucene search
K

74 matches found

Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.4 views

PT-2026-28128

I just got mass-mentioned in a GitHub Discussion claiming a "Severe Exploit" in Visual Studio Code. This is almost certainly a scam / malware attempt. Here’s why: Suspicious link: https://share.google/not showing you the actual link is not an official Microsoft or VS Code domain. Fake CVE format:...

5.8AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:34 a.m.5 views

CVE-2017-18411

The "addon domain conversion" feature in cPanel before 67.9999.103 can copy all MySQL databases to the new account SEC-285...

6.8CVSS6.8AI score0.00884EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2003-0595

Malware in sbrugna...

7.5CVSS6.4AI score0.01502EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-35480

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00486EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/08/30 6:18 p.m.5 views

CVE-2025-9443

A flaw has been found in Tenda CH22 1.0.0.1. This vulnerability affects the function formeditUserName of the file /goform/editUserName. Executing manipulation of the argument newaccount can lead to buffer overflow. It is possible to launch the attack remotely. The exploit has been published and m...

9CVSS8.8AI score0.00684EPSS
Exploits1References1
CNVD
CNVD
added 2025/08/28 12:0 a.m.3 views

Tenda CH22 /goform/editUserName Buffer Overflow Vulnerability

Tenda CH22 is an enterprise-grade wireless router from Tenda brand. The Tenda CH22 suffers from a buffer overflow vulnerability, which originates from the parameter newaccount in file /goform/editUserName failing to correctly validate the length and size of the input data, which can be exploited ...

9CVSS9.2AI score0.00684EPSS
Exploits1References1
OSV
OSV
added 2025/08/26 3:15 a.m.3 views

CVE-2025-9443

A flaw has been found in Tenda CH22 1.0.0.1. This vulnerability affects the function formeditUserName of the file /goform/editUserName. Executing manipulation of the argument newaccount can lead to buffer overflow. It is possible to launch the attack remotely. The exploit has been published and m...

8.7CVSS6.3AI score0.00684EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/08/26 2:32 a.m.5 views

CVE-2025-9443 Tenda CH22 editUserName formeditUserName buffer overflow

A flaw has been found in Tenda CH22 1.0.0.1. This vulnerability affects the function formeditUserName of the file /goform/editUserName. Executing manipulation of the argument newaccount can lead to buffer overflow. It is possible to launch the attack remotely. The exploit has been published and m...

9CVSS0.00684EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/08/26 2:32 a.m.2 views

CVE-2025-9443 Tenda CH22 editUserName formeditUserName buffer overflow

A flaw has been found in Tenda CH22 1.0.0.1. This vulnerability affects the function formeditUserName of the file /goform/editUserName. Executing manipulation of the argument newaccount can lead to buffer overflow. It is possible to launch the attack remotely. The exploit has been published and m...

9CVSS7.2AI score0.00684EPSS
Exploits1References5
CVE
CVE
added 2025/08/26 2:32 a.m.24 views

CVE-2025-9443

CVE-2025-9443 affects the Tenda CH22 router (version 1.0.0.1). The vulnerability exists in the function formeditUserName in the file /goform/editUserName , where manipulating the argument new_account can trigger a buffer overflow . Remote exploitation is possible, and the exploit has been publish...

9CVSS8.8AI score0.00684EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/26 12:0 a.m.6 views

PT-2025-34731

Name of the Vulnerable Software and Affected Versions: Tenda CH22 version 1.0.0.1 Description: A buffer overflow issue exists in the formeditUserName function within the /goform/editUserName file. Manipulation of the new account argument can trigger the flaw, allowing for remote exploitation...

9CVSS9AI score0.00684EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/08/26 12:0 a.m.4 views

Tenda CH22 安全漏洞

Tenda CH22 is an enterprise-grade wireless router from Tenda brand. The Tenda CH22 suffers from a buffer overflow vulnerability, which originates from the parameter newaccount in file /goform/editUserName failing to correctly validate the length and size of the input data, which can be exploited ...

9CVSS8.3AI score0.00684EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/23 9:41 a.m.8 views

CVE-2024-1024

A vulnerability has been found in SourceCodester Facebook News Feed Like 1.0 and classified as problematic. This vulnerability affects unknown code of the component New Account Handler. The manipulation of the argument First Name/Last Name with the input leads to cross site scripting. The attack...

6.1CVSS6.1AI score0.00312EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:36 a.m.10 views

CVE-2018-20874

cPanel before 74.0.8 allows self XSS in the WHM "Create a New Account" interface SEC-428...

5.4CVSS6.1AI score0.00531EPSS
Exploits0References1
NVD
NVD
added 2024/07/02 11:15 a.m.50 views

CVE-2024-6088

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to unauthorized user registration due to a missing capability check on the 'register' function in all versions up to, and including, 4.2.6.8.1. This makes it possible for unauthenticated attackers to bypass disabled user...

5.3CVSS0.0062EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2024/03/26 12:0 a.m.258 views

Insurance Management System PHP And MySQL 1.0 Cross Site Scripting

Exploit Title:Insurance Management System PHP and MySQL 1.0 - Multiple Stored XSS Date: 2024-02-08 Exploit Author: Hakkı TOKLU Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/16995/insurance-management-system-php-mysql.html Version: 1.0 Tested on:...

7.4AI score
Exploits0
OSV
OSV
added 2024/01/30 1:15 a.m.3 views

CVE-2024-1024

A vulnerability has been found in SourceCodester Facebook News Feed Like 1.0 and classified as problematic. This vulnerability affects unknown code of the component New Account Handler. The manipulation of the argument First Name/Last Name with the input alert1 leads to cross site scripting. The...

6.1CVSS3.8AI score0.00312EPSS
Exploits0References2
Prion
Prion
added 2024/01/30 1:15 a.m.16 views

Cross site scripting

A vulnerability has been found in SourceCodester Facebook News Feed Like 1.0 and classified as problematic. This vulnerability affects unknown code of the component New Account Handler. The manipulation of the argument First Name/Last Name with the input alert1 leads to cross site scripting. The...

4CVSS6.6AI score0.00312EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/30 12:31 a.m.13 views

CVE-2024-1024 SourceCodester Facebook News Feed Like New Account cross site scripting

A vulnerability has been found in SourceCodester Facebook News Feed Like 1.0 and classified as problematic. This vulnerability affects unknown code of the component New Account Handler. The manipulation of the argument First Name/Last Name with the input alert1 leads to cross site scripting. The...

4CVSS6.6AI score0.00312EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/01/30 12:31 a.m.20 views

CVE-2024-1024 SourceCodester Facebook News Feed Like New Account cross site scripting

A vulnerability has been found in SourceCodester Facebook News Feed Like 1.0 and classified as problematic. This vulnerability affects unknown code of the component New Account Handler. The manipulation of the argument First Name/Last Name with the input alert1 leads to cross site scripting. The...

4CVSS6.3AI score0.00312EPSS
Exploits0References2
Rows per page
Query Builder