PT-2026-31574

Name of the Vulnerable Software and Affected Versions code-projects Online Shoe Store version 1.0 Description A flaw has been found in code-projects Online Shoe Store 1.0. The vulnerability affects an unknown functionality of the file '/admin/admin football.php'. A manipulation of the product nam...

PT-2026-31584

Name of the Vulnerable Software and Affected Versions decolua 9router versions up to 0.3.47 Description A security issue exists in decolua 9router that allows an attacker to bypass authorization. The vulnerability is located in an unknown function within the /api of the Administrative API Endpoin...

PT-2026-31581

Name of the Vulnerable Software and Affected Versions PHPGurukul News Portal Project version 4.1 Description A SQL injection issue exists in PHPGurukul News Portal Project 4.1 due to improper handling of input in the /admin/add-subcategory.php file. Manipulation of the sucatdescription argument c...

PT-2026-31635

A security flaw has been discovered in GL.iNet GL-RM1, GL-RM10, GL-RM10RC and GL-RM1PE 1.8.1. Affected by this issue is some unknown functionality of the component Factory Reset Handler. Performing a manipulation results in improper authentication. The attack can be initiated remotely. The...

PT-2026-31580

Name of the Vulnerable Software and Affected Versions PHPGurukul News Portal Project version 4.1 Description A flaw exists in PHPGurukul News Portal Project 4.1 related to SQL injection. The issue is located in the file '/admin/add-subadmins.php', where manipulation of the sadminusername argument...

PT-2026-31558

A flaw has been found in code-projects Simple IT Discussion Forum 1.0. This issue affects some unknown processing of the file /edit-category.php. Executing a manipulation of the argument Category can lead to cross site scripting. The attack can be launched remotely. The exploit has been published...

PT-2026-31723

Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A vulnerability exists in the Totolink A7100RU device. The setDmzCfg function within the CGI Handler component, specifically in the /cgi-bin/cstecgi.cgi file, is susceptible to OS comma...

PT-2026-31575

Name of the Vulnerable Software and Affected Versions Online Shoe Store version 1.0 Description A cross site scripting issue exists due to the manipulation of the product name argument in the file '/admin/admin product.php'. The attack can be initiated remotely and the exploit has been publicly...

PT-2026-31564

Name of the Vulnerable Software and Affected Versions Tenda AC15 version 15.03.05.18 Description A stack-based buffer overflow exists in the websGetVar function of the /goform/SysToolChangePwd file. Manipulation of the oldPwd, newPwd, and cfmPwd arguments can trigger this issue. The attack can be...

VulnCheck KEV: CVE-2025-1338

A vulnerability was found in NUUO Camera up to 20250203. It has been declared as critical. This vulnerability affects the function printfile of the file /handleconfig.php. The manipulation of the argument log leads to command injection. The attack can be initiated remotely. The exploit has been...

PT-2026-31560

Name of the Vulnerable Software and Affected Versions Simple IT Discussion Forum version 1.0 Description A SQL injection issue exists due to the manipulation of the postid argument in an unknown function within the /functions/addcomment.php file. The attack can be launched remotely. The exploit h...

PT-2026-31830

A vulnerability has been found in Tenda F451 1.0.0.7. Affected by this vulnerability is the function fromSafeEmailFilter of the file /goform/SafeEmailFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been...

PT-2026-31814

Name of the Vulnerable Software and Affected Versions D-Link DIR-605L version 2.13B01 Description A buffer overflow issue exists in the POST Request Handler component of D-Link DIR-605L version 2.13B01. The issue is located in the formSetDDNS function within the /goform/formSetDDNS file...

PT-2026-31741

Name of the Vulnerable Software and Affected Versions D-Link DIR-605L version 2.13B01 Description A flaw exists in the formSetMACFilter function of the /goform/formSetMACFilter file within the POST Request Handler component. Manipulation of the curTime argument can cause a buffer overflow,...

PT-2026-31559

Name of the Vulnerable Software and Affected Versions Simple IT Discussion Forum version 1.0 Description A SQL injection issue exists in Simple IT Discussion Forum version 1.0. The vulnerability is located in the /question-function.php file, within an unknown function. Manipulation of the content...

PT-2026-31573

Name of the Vulnerable Software and Affected Versions code-projects Online Shoe Store version 1.0 Description A cross-site scripting issue exists due to manipulation of the product name argument in an unknown function within the /admin/admin running.php file. This allows for remote attacks...

PT-2026-31819

A security flaw has been discovered in code-projects Simple IT Discussion Forum 1.0. The affected element is an unknown function of the file /crud.php. The manipulation of the argument user Id results in sql injection. The attack may be performed from remote. The exploit has been released to the...

PT-2026-31738

Name of the Vulnerable Software and Affected Versions Totolink A7100RU version 7.4cu.2313 b20191024 Description A weakness exists in Totolink A7100RU version 7.4cu.2313 b20191024. The setWiFiBasicCfg function within the /cgi-bin/cstecgi.cgi file of the CGI Handler component is affected...

PT-2026-31829

Name of the Vulnerable Software and Affected Versions Tenda F451 version 1.0.0.7 Description A flaw in the fromRouteStatic function within the /goform/RouteStatic file allows for a remote stack-based buffer overflow. This occurs when the page argument is manipulated, enabling a remote attacker to...

decolua 9router vulnerable to authorization bypass

A security vulnerability has been detected in decolua 9router up to 0.3.47. The impacted element is an unknown function of the file /api of the component Administrative API Endpoint. The manipulation leads to authorization bypass. The attack is possible to be carried out remotely. The exploit has...