Lucene search
K

1630 matches found

Nuclei
Nuclei
added 8 hours ago176 views

EasySpider 0.6.2 - Arbitrary File Read

A vulnerability classified as problematic was found in NaiboWang EasySpider 0.6.2 on Windows. Affected by this vulnerability is an unknown functionality of the file \EasySpider\resources\app\server.js of the component HTTP GET Request Handler. The manipulation with the input...

8.8CVSS5.6AI score0.03333EPSS
Exploits1References6
Nuclei
Nuclei
added 8 hours ago141 views

Likeshop < 2.5.7.20210311 - Arbitrary File Upload

A vulnerability classified as critical was found in Likeshop up to 2.5.7.20210311. This vulnerability affects the function FileServer::userFormImage of the file server/application/api/controller/File.php of the component HTTP POST Request Handler. The manipulation of the argument file with an...

9.8CVSS6.8AI score0.70688EPSS
Exploits1References5
EUVD
EUVD
added 5 days ago9 views

EUVD-2026-42468

A flaw has been found in davenardella snap7 up to 1.4.3. This affects the function TS7Worker::PerformFunctionRead of the file src/core/s7server.cpp of the component ReadVar Request Handler. This manipulation causes deserialization. The attack requires access to the local network. The exploit has...

6.3CVSS5.5AI score0.00285EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.19 views

PT-2026-54935

Name of the Vulnerable Software and Affected Versions MLflow versions prior to 3.14.0 Description When authentication is enabled, the trace API endpoints lack proper authorization validators. This occurs because the before request handler fails to register authorization validators for these...

8.1CVSS7.2AI score0.00348EPSS
Exploits1References9
EUVD
EUVD
added 2026/07/01 3:43 a.m.8 views

EUVD-2026-40898

The Taskbuilder – Project Management & Task Management Tool With Kanban Board plugin for WordPress is vulnerable to generic SQL Injection via the 'wppmprojfilter' parameter in all versions up to, and including, 5.0.8 due to insufficient escaping on the user supplied parameter and lack of sufficie...

6.5CVSS5.9AI score0.00319EPSS
Exploits0References9
NVD
NVD
added 2026/06/29 4:16 p.m.10 views

CVE-2026-13583

A vulnerability has been found in Edimax EW-7478APC 1.04. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. Such manipulation of the argument ShareName/SelectName leads to buffer overflow. The attack may be performed from remote. The...

9CVSS0.00445EPSS
Exploits0References5
NVD
NVD
added 2026/06/29 4:16 p.m.9 views

CVE-2026-13580

A security vulnerability has been detected in Edimax EW-7478APC 1.04. This affects the function formQoS of the file /goform/formQoS of the component POST Request Handler. The manipulation of the argument selSSID leads to buffer overflow. Remote exploitation of the attack is possible. The exploit...

9CVSS0.00445EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/29 3:30 p.m.36 views

CVE-2026-13582 Edimax EW-7478APC POST Request formUSBAccount buffer overflow

A flaw has been found in Edimax EW-7478APC 1.04. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. This manipulation of the argument UserName/Password causes buffer overflow. The attack is possible to be carried out remotely...

9CVSS0.00455EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/29 3:30 p.m.6 views

EUVD-2026-40128

A flaw has been found in Edimax EW-7478APC 1.04. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. This manipulation of the argument UserName/Password causes buffer overflow. The attack is possible to be carried out remotely...

9CVSS7.7AI score0.00455EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/29 3:15 p.m.37 views

CVE-2026-13581 Edimax EW-7478APC POST Request formStaDrvSetup os command injection

A vulnerability was detected in Edimax EW-7478APC 1.04. This vulnerability affects the function formStaDrvSetup of the file /goform/formStaDrvSetup of the component POST Request Handler. The manipulation of the argument rootAPmac results in os command injection. The attack can be executed remotel...

6.5CVSS0.01158EPSS
Exploits0References5
CVE
CVE
added 2026/06/29 3:0 p.m.17 views

CVE-2026-13580

The CVE concerns Edimax EW-7478APC firmware version 1.04. The vulnerability is in the POST Request Handler, specifically the formQoS function at /goform/formQoS, where manipulating the selSSID argument causes a buffer overflow. This enables remote exploitation; the exploit has been publicly discl...

9CVSS7.5AI score0.00445EPSS
Exploits0References5
NVD
NVD
added 2026/06/29 2:16 p.m.11 views

CVE-2026-13567

A security flaw has been discovered in code-projects Online Music Site 1.0. This affects an unknown part of the file /Frontend/Feedback.php of the component POST Request Handler. The manipulation of the argument fname/femail/faddress/fmessage results in cross site scripting. The attack may be...

5.3CVSS0.00273EPSS
Exploits0References6
CVE
CVE
added 2026/06/29 12:30 p.m.15 views

CVE-2026-13567

The CVE-2026-13567 entry affects code-projects Online Music Site 1.0 in the POST Request Handler’s /Frontend/Feedback.php. An attacker can manipulate parameters fname, femail, faddress, or fmessage to trigger cross-site scripting. The issue is remote-present with a publicly released exploit (Proo...

5.3CVSS4.4AI score0.00273EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/29 11:45 a.m.34 views

CVE-2026-13564 Edimax EW-7478APC POST Request formPPPoESetup stack-based overflow

A vulnerability was found in Edimax EW-7478APC 1.04. Affected is the function formPPPoESetup of the file /goform/formPPPoESetup of the component POST Request Handler. Performing a manipulation of the argument pppUserName results in stack-based buffer overflow. The attack can be initiated remotely...

9CVSS0.00751EPSS
Exploits0References5
CVE
CVE
added 2026/06/29 11:45 a.m.16 views

CVE-2026-13564

Summary: CVE-2026-13564 affects Edimax EW-7478APC firmware 1.04, specifically the POST Request Handler’s formPPPoESetup function. Manipulating the pppUserName argument triggers a stack-based buffer overflow, enabling remote attacker access. Public exploit reportedly exists and the vendor did not ...

9CVSS7.9AI score0.00751EPSS
Exploits0References5
CVE
CVE
added 2026/06/29 11:30 a.m.14 views

CVE-2026-13563

Edimax EW-7478APC (firmware 1.04) is affected in the POST Request Handler, specifically the formL2TPSetup function of /goform/formL2TPSetup. Manipulation of the L2TPUserName argument leads to a stack-based buffer overflow, enabling remote exploitation. Public exploit details exist, and the vendor...

9CVSS7.8AI score0.00445EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/29 11:15 a.m.34 views

CVE-2026-13562 Edimax EW-7478APC POST Request formiNICSiteSurvey buffer overflow

A flaw has been found in Edimax EW-7478APC 1.04. This affects the function formiNICSiteSurvey of the file /goform/formiNICSiteSurvey of the component POST Request Handler. This manipulation of the argument selSSID causes buffer overflow. It is possible to initiate the attack remotely. The exploit...

9CVSS0.00445EPSS
Exploits0References5
CVE
CVE
added 2026/06/29 11:15 a.m.14 views

CVE-2026-13562

The CVE concerns Edimax EW-7478APC 1.04, impacting the formiNICSiteSurvey function in /goform/formiNICSiteSurvey of the POST Request Handler. The root cause is a buffer overflow triggered by manipulating the selSSID argument, allowing remote initiation of an attack. This CVE has a published explo...

9CVSS7.5AI score0.00445EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/29 11:0 a.m.35 views

CVE-2026-13561 Edimax EW-7478APC POST Request formiNICbasic os command injection

A vulnerability was detected in Edimax EW-7478APC 1.04. The impacted element is the function formiNICbasic of the file /goform/formiNICbasic of the component POST Request Handler. The manipulation of the argument rootAPmac results in os command injection. The attack may be performed from remote...

6.5CVSS0.01158EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/29 11:0 a.m.8 views

EUVD-2026-40072

A vulnerability was detected in Edimax EW-7478APC 1.04. The impacted element is the function formiNICbasic of the file /goform/formiNICbasic of the component POST Request Handler. The manipulation of the argument rootAPmac results in os command injection. The attack may be performed from remote...

6.5CVSS6.3AI score0.01158EPSS
Exploits0References5
Rows per page
Query Builder