PHPEMS 竞争条件问题漏洞

PHPEMS is a PHP online practice exam system. A competitive condition issue vulnerability exists in PHPEMS version 11.0 and earlier, which stems from a competitive condition in the component Purchase Request Handler that could lead to a competitive condition attack...

CVE-2025-15180

A vulnerability was identified in Tenda WH450 1.0.0.18. The affected element is an unknown function of the file /goform/webExcptypemanFilte of the component HTTP Request Handler. Such manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched remotely. The...

CVE-2025-15180 Tenda WH450 HTTP Request webExcptypemanFilte stack-based overflow

A vulnerability was identified in Tenda WH450 1.0.0.18. The affected element is an unknown function of the file /goform/webExcptypemanFilte of the component HTTP Request Handler. Such manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched remotely. The...

CVE-2025-15180 Tenda WH450 HTTP Request webExcptypemanFilte stack-based overflow

A vulnerability was identified in Tenda WH450 1.0.0.18. The affected element is an unknown function of the file /goform/webExcptypemanFilte of the component HTTP Request Handler. Such manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched remotely. The...

CVE-2025-15180

CVE-2025-15180 affects Tenda WH450 (firmware 1.0.0.18). The vulnerability is due to manipulation of the page argument in the HTTP Request Handler function exposed by the /goform/webExcptypemanFilte endpoint, causing a stack-based buffer overflow. This can be triggered remotely and an exploit is p...

CVE-2025-15178

A vulnerability was found in Tenda WH450 1.0.0.18. This issue affects some unknown processing of the file /goform/VirtualSer of the component HTTP Request Handler. The manipulation of the argument page results in stack-based buffer overflow. The attack can be launched remotely. The exploit has be...

EUVD-2025-205562

A vulnerability was found in Tenda WH450 1.0.0.18. This issue affects some unknown processing of the file /goform/VirtualSer of the component HTTP Request Handler. The manipulation of the argument page results in stack-based buffer overflow. The attack can be launched remotely. The exploit has be...

CVE-2025-15178 Tenda WH450 HTTP Request VirtualSer stack-based overflow

A vulnerability was found in Tenda WH450 1.0.0.18. This issue affects some unknown processing of the file /goform/VirtualSer of the component HTTP Request Handler. The manipulation of the argument page results in stack-based buffer overflow. The attack can be launched remotely. The exploit has be...

CVE-2025-15178

CVE-2025-15178 affects Tenda WH450 v1.0.0.18, with a stack-based buffer overflow in the HTTP Request Handler triggered by manipulating the page parameter of /goform/VirtualSer. The vulnerability can be exploited remotely and public PoCs exist. Connected sources (Red Hat, NVD, CVE List, CVSS metri...

CVE-2025-15178 Tenda WH450 HTTP Request VirtualSer stack-based overflow

A vulnerability was found in Tenda WH450 1.0.0.18. This issue affects some unknown processing of the file /goform/VirtualSer of the component HTTP Request Handler. The manipulation of the argument page results in stack-based buffer overflow. The attack can be launched remotely. The exploit has be...

CVE-2025-15177

A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerability affects unknown code of the file /goform/SetIpBind of the component HTTP Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has be...

CVE-2025-15177

A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerability affects unknown code of the file /goform/SetIpBind of the component HTTP Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has be...

CVE-2025-15177

CVE-2025-15177 affects Tenda WH450 1.0.0.18. Vulnerable in the HTTP Request Handler, specifically the file "/goform/SetIpBind". Manipulating the page argument leads to a stack-based buffer overflow. The issue can be exploited remotely; exploit code has been disclosed (PoC present) and the provide...

EUVD-2025-205565

A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerability affects unknown code of the file /goform/SetIpBind of the component HTTP Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has be...

CVE-2025-15177 Tenda WH450 HTTP Request SetIpBind stack-based overflow

A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerability affects unknown code of the file /goform/SetIpBind of the component HTTP Request Handler. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has be...

EUVD-2025-205531

A flaw has been found in omec-project UPF up to 2.1.3-dev. This affects the function handleSessionEstablishmentRequest of the file /pfcpiface/pfcpiface/messagessession.go of the component PFCP Session Establishment Request Handler. This manipulation causes null pointer dereference. The attack may...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter page of the file /goform/SetIpBind in the component HTTP Request Handler, which could result in a stack buffer...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter page of the file /goform/VirtualSer in the component HTTP Request Handler, which could result in a stack buffe...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from an incorrect manipulation of the parameter page in the file /goform/webExcptypemanFilte in the component HTTP Request Handler, which could result in a...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the handleSessionEstablishmentRequest function in the PFCP Session Establishment Request Handler component. An attacker can cause a denial of service by sending specially crafted PFCP Session Establishment...