CVE-2025-29231

The CVE-2025-29231 entry describes a stored XSS vulnerability in the Linksys E5600, specifically in the page_save component of firmware version V1.1.0.26. The issue allows an attacker to execute arbitrary scripts via crafted input in the hostname and domainName parameters. According to the publis...

Linksys E5600 安全漏洞

Linksys E5600 is a powerful, compact and reliable WiFi 5 router from Linksys, Inc. A security vulnerability exists in Linksys E5600 version V1.1.0.26, which originates from stored cross-site scripting in the pagesave component and could lead to arbitrary web script execution...

CVE-2025-25765

MRCMS v3.1.2 was discovered to contain an arbitrary file write vulnerability via the component /file/save.do...

GHSA-R2WJ-MXVH-WQFH Cross-Site Request Forgery in JFinalCMS via the component /admin/friend_link/save

JFinalCMS v5.0.0 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via the component /admin/friendlink/save...

PT-2022-25830 · Unknown · Online Leave Management System

Name of the Vulnerable Software and Affected Versions: Online Leave Management System version 1.0 Description: The issue concerns an arbitrary file upload vulnerability in the component /leave system/classes/Users.php?f=save. This vulnerability allows attackers to execute arbitrary code via a...