CVE-2026-10828

The CVE-2026-10828 affects the NPort W2150A-W4/W2250A-W4 Serial Param config page, where the alias parameter is vulnerable to format-string handling due to insufficient input validation in version 1.5 and earlier. This can lead to memory disclosure and potential ASLR bypass. No exploitation detai...

PT-2026-42461

Name of the Vulnerable Software and Affected Versions Request Tracker versions 5.0.4 through 5.0.9 Request Tracker versions 6.0.0 through 6.0.2 Description Reflected cross-site scripting XSS occurs via the Page parameter in GET requests. This allows an attacker to craft a URL that executes...

EUVD-2026-19543

A security flaw has been discovered in Tenda CX12L 16.03.53.12. This vulnerability affects the function fromRouteStatic of the file /goform/RouteStatic. The manipulation of the argument page results in stack-based buffer overflow. The attack can be launched remotely. The exploit has been released...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter page of the file /goform/SetIpBind in the component HTTP Request Handler, which could result in a stack buffer...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter page in the file /goform/webExcptypemanFilte in the component HTTP Request Handler, which could result in a...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter page in the file/goform/Natlimit of the component HTTP Request Handler, which could result in a stack buffer...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from a misbehavior of the parameter page in the file /goform/L7Port, which could result in a stack buffer overflow...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter page in the file /goform/DhcpListClient, which could result in a stack buffer overflow...

Tenda CH22 安全漏洞

The Tenda CH22 is an enterprise-grade wireless router for small to medium-sized businesses or home office environments. It supports single-band 2.4GHz wireless networks with a maximum transmission rate of up to 450Mbps. A buffer overflow vulnerability exists in the Tenda CH22 in version 1.0.0.1...

Tenda CH22 formaddressNat function buffer overflow vulnerability

Tenda CH22 is a network device from Tenda, China. The Tenda CH22 suffers from a buffer overflow vulnerability that originates from the parameter page in the file /goform/addressNat that fails to properly validate the length of the input data, which can be exploited by an attacker to execute...

EUVD-2023-46056

Malicious code in bioql PyPI...

appRain CMF 跨站脚本漏洞

appRain CMF is a content management framework. A cross-site scripting vulnerability exists in appRain CMF, which stems from the lack of effective filtering and escaping of user-supplied data in the /apprain/developer/addons parameter page, which can be exploited by an attacker to steal a victim's...

Tenda FH1201 安全漏洞

The Tenda FH1201 is a wireless router from Tenda, China. The product is mainly aimed at home and small office network environments. The Tenda FH1201 suffers from a buffer overflow vulnerability, which originates from the parameter page in the file /goform/fromSafeUrlFilter that fails to correctly...

Vysual RH 安全漏洞

Vysual RH is an HR and time management solution from Vysual. A security vulnerability exists in Vysual RH version 2024.12.1, which stems from the parameter page in the file /index.php can lead to cross-site scripting...

Campcodes School Faculty Scheduling System 安全漏洞

Campcodes School Faculty Scheduling System is a school faculty scheduling system from Campcodes, Inc. A security vulnerability exists in Campcodes School Faculty Scheduling System version 1.0, which stems from the parameter page in the file /admin/index.php that causes the file to include...

Tenda 4G300 安全漏洞

Tenda 4G300 is a wireless router from Tenda China. A security vulnerability exists in Tenda 4G300 version 1.01.42, which stems from an incorrect manipulation of the parameter page can lead to a stack-based buffer overflow. No details of the vulnerability are available at this time...

Insurance Management System security breach

Insurance Management System is an insurance management system from the individual developer Angel Jude Reyes Suarez. A security vulnerability exists in SourceCodester Insurance Management System version 1.0, which stems from a parameter page that causes file inclusion...

Medicine Tracking System Security Vulnerability

Medicine Tracking System is a medicine tracking system. A security vulnerability exists in SourceCodester Medicine Tracking System version 1.0 due to a path traversal vulnerability in the parameter page...

Medicine Tracker System Cross-Site Scripting Vulnerability

Medicine Tracker System is a medication tracking system by Carlo Montero personal developer. Medicine Tracker System v1.0 suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter page of the file index.ph...

Stack overflow

Tenda AC7 V1.0 V15.03.06.44, Tenda AC9 V3.0 V15.03.06.42multi, and Tenda AC5 V1.0RTLV15.03.06.28 were discovered to contain a stack overflow via parameter page at url /goform/NatStaticSetting...