Lucene search
K

41224 matches found

EUVD
EUVD
added 2026/03/27 9:31 p.m.5 views

EUVD-2026-16852

A vulnerability was found in Totolink LR350 9.3.5u.6369B20220309. This vulnerability affects the function setWiFiGuestCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ssid results in buffer overflow. The attack can be launched remotely. The exploit has been made public and...

9CVSS7.5AI score0.00655EPSS
Exploits1References6
EUVD
EUVD
added 2026/03/27 9:31 p.m.2 views

EUVD-2026-16811

A vulnerability has been found in Tenda AC15 15.03.05.19. This affects the function formSetCfm of the file /goform/setcfm of the component POST Request Handler. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has...

9CVSS7.9AI score0.00632EPSS
Exploits1References6
EUVD
EUVD
added 2026/03/27 9:31 p.m.3 views

EUVD-2026-16803

A weakness has been identified in SourceCodester Note Taking App up to 1.0. This impacts an unknown function. This manipulation causes cross-site request forgery. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks. If...

5.3CVSS5.5AI score0.00155EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/27 9:31 p.m.4 views

EUVD-2026-16809

A flaw has been found in Tenda AC7 15.03.06.44. Affected by this issue is the function fromSetSysTime of the file /goform/SetSysTimeCfg of the component POST Request Handler. Executing a manipulation of the argument Time can lead to stack-based buffer overflow. It is possible to launch the attack...

9CVSS7.8AI score0.00632EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/03/27 9:27 p.m.3 views

CVE-2026-4990 chatwoot Signup Endpoint login improper authorization

A security vulnerability has been detected in chatwoot up to 4.11.1. The affected element is an unknown function of the file /app/login of the component Signup Endpoint. Such manipulation of the argument signupEnabled with the input true leads to improper authorization. The attack can be executed...

7.5CVSS6.6AI score0.0035EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/27 9:27 p.m.29 views

CVE-2026-4990 chatwoot Signup Endpoint login improper authorization

A security vulnerability has been detected in chatwoot up to 4.11.1. The affected element is an unknown function of the file /app/login of the component Signup Endpoint. Such manipulation of the argument signupEnabled with the input true leads to improper authorization. The attack can be executed...

7.5CVSS0.0035EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/27 9:27 p.m.3 views

CVE-2026-4988

A security flaw has been discovered in Open5GS 2.7.6. This issue affects the function smfgxccacb/smfgyccacb/smfs6b of the component CCA Message Handler. The manipulation results in denial of service. The attack may be launched remotely. Attacks of this nature are highly complex. The exploitabilit...

6.3CVSS5.5AI score0.00566EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/03/27 9:27 p.m.2 views

CVE-2026-4985

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS5.8AI score0.00492EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/03/27 9:27 p.m.24 views

CVE-2026-4985 dloebl CGIF GIF Image cgif.c cgif_addframe integer overflow

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS0.00492EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/03/27 9:27 p.m.3 views

CVE-2026-4985 dloebl CGIF GIF Image cgif.c cgif_addframe integer overflow

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS5.7AI score0.00492EPSS
Exploits0References7
CVE
CVE
added 2026/03/27 9:27 p.m.19 views

CVE-2026-4985

The CVE-2026-4985 entry concerns dloebl CGIF v0.5.2 and earlier, affecting the GIF Image Handler’s cgif_addframe (src/cgif.c). The vulnerability stems from an integer overflow caused by manipulating width/height, potentially exploitable remotely. A patch is available (patch id: b0ba830093f4317a5d...

5.3CVSS5.8AI score0.00492EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/03/27 9:27 p.m.6 views

CVE-2026-4985

A vulnerability was identified in dloebl CGIF up to 0.5.2. This vulnerability affects the function cgifaddframe of the file src/cgif.c of the component GIF Image Handler. The manipulation of the argument width/height leads to integer overflow. The attack may be initiated remotely. The identifier ...

5.3CVSS4.7AI score0.00492EPSS
Exploits0
CVE
CVE
added 2026/03/27 8:29 p.m.10 views

CVE-2026-4976

The CVE-2026-4976 affects Totolink LR350, version 9.3.5u.6369_B20220309, specifically the setWiFiGuestCfg function in /cgi-bin/cstecgi.cgi. The vulnerability is triggered by manipulating the ssid argument, causing a buffer overflow and enabling remote exploitation. Public exploit details exist, a...

9CVSS7.5AI score0.00655EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/27 8:29 p.m.2 views

CVE-2026-4976

A vulnerability was found in Totolink LR350 9.3.5u.6369B20220309. This vulnerability affects the function setWiFiGuestCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ssid results in buffer overflow. The attack can be launched remotely. The exploit has been made public and...

9CVSS6.2AI score0.00655EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/03/27 8:29 p.m.23 views

CVE-2026-4976 Totolink LR350 cstecgi.cgi setWiFiGuestCfg buffer overflow

A vulnerability was found in Totolink LR350 9.3.5u.6369B20220309. This vulnerability affects the function setWiFiGuestCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ssid results in buffer overflow. The attack can be launched remotely. The exploit has been made public and...

9CVSS0.00655EPSS
Exploits1References5
NVD
NVD
added 2026/03/27 8:16 p.m.3 views

CVE-2026-4972

A security vulnerability has been detected in code-projects Online Reviewer System up to 1.0. Affected is an unknown function of the file /system/system/students/assessments/databank/btnfunctions.php. Such manipulation of the argument Description leads to cross site scripting. The attack may be...

4.8CVSS0.00202EPSS
Exploits0References5
NVD
NVD
added 2026/03/27 8:16 p.m.4 views

CVE-2026-4974

A flaw has been found in Tenda AC7 15.03.06.44. Affected by this issue is the function fromSetSysTime of the file /goform/SetSysTimeCfg of the component POST Request Handler. Executing a manipulation of the argument Time can lead to stack-based buffer overflow. It is possible to launch the attack...

9CVSS0.00632EPSS
Exploits1References5
NVD
NVD
added 2026/03/27 8:16 p.m.4 views

CVE-2026-4975

A vulnerability has been found in Tenda AC15 15.03.05.19. This affects the function formSetCfm of the file /goform/setcfm of the component POST Request Handler. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has...

9CVSS0.00632EPSS
Exploits1References5
NVD
NVD
added 2026/03/27 8:16 p.m.4 views

CVE-2026-4971

A weakness has been identified in SourceCodester Note Taking App up to 1.0. This impacts an unknown function. This manipulation causes cross-site request forgery. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks...

5.3CVSS0.00155EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/03/27 7:52 p.m.2 views

CVE-2026-4975 Tenda AC15 POST Request setcfm formSetCfm memory corruption

A vulnerability has been found in Tenda AC15 15.03.05.19. This affects the function formSetCfm of the file /goform/setcfm of the component POST Request Handler. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has...

9CVSS7.9AI score0.00632EPSS
Exploits1References5
Rows per page
Query Builder