Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

ATTACKERKB
ATTACKERKBadded 2025/12/30 3:2 a.m.5 views

CVE-2025-15217

A security flaw has been discovered in Tenda AC23 16.03.07.52. Affected is the function formSetPPTPUserList of the component HTTP POST Request Handler. Performing a manipulation of the argument list results in buffer overflow. The attack can be initiated remotely...

9CVSS6AI score0.00635EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTECadded 2024/11/19 12:0 a.m.3 views

The vulnerability in the bridge_wireless_main.cgi script of the Netgear XR300 router’s software allows a hacker to induce a service failure.

The vulnerability in the bridgewirelessmain.cgi script of the Netgear XR300 router software lies in the copying of buffers without checking the size of the input data during the processing of the ssid parameter. Exploiting this vulnerability allows a malicious actor to cause service failure by...

5.7CVSS5.5AI score0.00292EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2024/09/26 12:0 a.m.4 views

PT-2024-7244 · D Link · D-Link Dir-605L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-605L version 2.13B01 BETA Description: The issue is related to a buffer overflow vulnerability in the formSetWanPPPoE function of the /goform/formSetWanPPPoE file. This vulnerability can be exploited by sending a specially crafted...

9CVSS9.1AI score0.01423EPSS
Exploits1References13
OSV
OSVadded 2023/10/10 5:15 p.m.4 views

CVE-2023-5495

A vulnerability was found in QDocs Smart School 6.4.1. It has been classified as critical. This affects an unknown part of the file /course/filterRecords/ of the component HTTP POST Request Handler. The manipulation of the argument searchdata0title/searchdata0searchfield/searchdata0searchvalue...

9.8CVSS5.8AI score0.0106EPSS
Exploits4References3
Packet Storm
Packet Stormadded 2023/05/25 12:0 a.m.405 views

2023 Online Course Registration 1.0 SQL Injection

Title: 2023-Online-Course-Registration-1.0-Bypass-login-SQLi-RCE-password-changing Author: nu11secur1ty Date: 05.25.2023 Vendor: https://github.com/nikhilkeshava Software: https://github.com/nikhilkeshava/online-course-registration- Reference: https://portswigger.net/web-security/sql-injection,...

7.1AI score
Exploits0
CNVD
CNVDadded 2018/12/27 12:0 a.m.3 views

Engelsystem Cross-Site Request Forgery Vulnerability

Engelsystem is a shift planning system. The system includes features such as team management, event management, attendance management and mail system. A cross-site request forgery vulnerability exists in versions prior to Engelsystem commit hash 2e28336. A remote attacker can exploit this...

8.8CVSS6.9AI score0.00644EPSS
Exploits0References1
CNVD
CNVDadded 2017/12/19 12:0 a.m.2 views

D-Link DIR-130 and DIR-330 Authentication Vulnerability

The D-Link DIR-130 and DIR-330 are both wireless router products from AUO D-Link. An authentication vulnerability exists in the D-Link DIR-130 with firmware version 1.23a and the DIR-330 with firmware version 1.12. A remote attacker can exploit this vulnerability by manipulating a POST request to...

9.8CVSS7.3AI score0.62527EPSS
Exploits0References1
Rows per page
Query Builder