PT-2026-1982

Name of the Vulnerable Software and Affected Versions D-Link DI-8200G version 17.12.20A1 Description A flaw exists in D-Link DI-8200G version 17.12.20A1 that allows for command injection. The issue is related to the manipulation of the path argument within an unknown function of the /upgrade...

CVE-2013-6867

Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise ASE 15.7 before 15.7 SP50 or 15.7 SP100 allows remote attackers to cause a denial of service via unspecified vectors...

CVE-1999-0449

The ExAir sample site in IIS 4 allows remote attackers to cause a denial of service CPU consumption via a direct request to the 1 advsearch.asp, 2 query.asp, or 3 search.asp scripts...

CVE-1999-0805

Novell NetWare Transaction Tracking System TTS in Novell 4.11 and earlier allows remote attackers to cause a denial of service via a large number of requests...

CVE-1999-0437

Remote attackers can perform a denial of service in WebRamp systems by sending a malicious string to the HTTP port...

CVE-2025-1856

A vulnerability was found in Codezips Gym Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /dashboard/admin/geninvoice.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

CVE-2025-1591

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /department.php of the component Department Page. The manipulation of the argument Department Name leads to cross...

CVE-2024-2151

A vulnerability classified as problematic was found in SourceCodester Online Mobile Management Store 1.0. Affected by this vulnerability is an unknown functionality of the component Product Price Handler. The manipulation of the argument quantity with the input -1 leads to business logic errors...

CVE-2024-2927

A vulnerability was found in code-projects Mobile Shop 1.0. It has been classified as critical. Affected is an unknown function of the file Details.php of the component Login Page. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploi...

PT-2026-1276

Name of the Vulnerable Software and Affected Versions code-projects Online Product Reservation System version 1.0 Description An issue exists in the Administration Backend component that allows for improper authentication. The issue is triggered by a manipulation of an unknown function. The explo...

PT-2026-1206

Name of the Vulnerable Software and Affected Versions UTT 进取 520W version 1.7.7-180627 Description A flaw exists in UTT 进取 520W 1.7.7-180627 related to the strcpy function within the /goform/ConfigAdvideo file. Manipulation of the timestart argument can lead to a buffer overflow, potentially...

OpenCart 竞争条件问题漏洞

OpenCart is an open source e-commerce system by the OpenCart team in China. The system provides modules for product reviews, product ratings, and product additions. A competitive conditions issue vulnerability exists in OpenCart 4.1.0.3 and prior versions, which stems from competitive conditions...

PT-2025-52861

Name of the Vulnerable Software and Affected Versions Online Farm System version 1.0 Description A flaw exists in Online Farm System 1.0 that allows for SQL injection. The issue is located in the /addProduct.php file, specifically through manipulation of the Username argument. This allows for...

Tiny RDM 代码问题漏洞

Tiny RDM is a desktop manager by Lykin Personal Developers. A code issue vulnerability exists in Tiny RDM 1.2.5 and earlier versions, which stems from a deserialization issue in the pickle.loads function of the pickleconvert.go file in the Pickle Decoding component, which could lead to remote...

Tenda AX9 安全漏洞

Tenda AX9 is a Wi-Fi 6 router from Tenda China. A security vulnerability exists in Tenda AX9 version 22.03.01.46, which originates from the use of a weak hash in the imagecheck function in the httpd component, which could lead to remote attacks...

Security Bulletin: Vulnerabilities in brace-expansion, tmp, urllib3, pycryptodomex and cross-site request forgery might affect IBM Storage Defender Sentinel Anomaly Scan Engine.

Summary IBM Storage Defender Sentinel Anomaly Scan Engine can be affected by vulnerabilities in brace-expansion, tmp, urllib3, pycryptodomex, and cross-site request forgery. Vulnerabilities include launching remote attacks, arbitrary file and directory writes, obtain sensitive information, disabl...

COMMAX CVD-Axx DVR 安全漏洞

COMMAX CVD-Axx DVR is a series of digital video recorders from the Korean company COMMAX. A security vulnerability exists in COMMAX CVD-Axx DVR version 5.1.4, which stems from a weak default credentials issue that could lead to remote password attacks and RTSP stream leaks...

Siemens Advanced Licensing (SALT) Toolkit

SUMMARY Multiple Siemens products are affected by improper certificate validation in Siemens Advanced Licensing SALT Toolkit. This could allow an unauthenticated remote attacker to perform man in the middle attacks. Siemens has released new versions for several affected products and recommends...

youlai-mall 访问控制错误漏洞

youlai-mall is a full-stack mall system by youlaitech open source. An access control error vulnerability exists in youlai-mall version 1.0.0 and 2.0.0, which stems from improper access control and could lead to remote attacks...

JEPaaS 授权问题漏洞

JEPaaS is a rapid development platform from China's Kate Weiye JEPaaS. An authorization issue vulnerability exists in JEPaaS 7.2.8 and prior versions, which stems from improper authorization and could lead to remote attacks...