14 matches found
CVE-2026-44905
Vanetza is an open-source implementation of the ETSI C-ITS protocol suite. In 26.02 and earlier, a denial-of-service vulnerability was identified in the cryptographic verification pipeline of Vanetza. When processing incoming V2X messages, the ASN.1 decoder accepts the structure as syntactically...
CVE-2026-44905
Vanetza is an open-source implementation of the ETSI C-ITS protocol suite. In 26.02 and earlier, a denial-of-service vulnerability was identified in the cryptographic verification pipeline of Vanetza. When processing incoming V2X messages, the ASN.1 decoder accepts the structure as syntactically...
EUVD-2026-32006
Vanetza is an open-source implementation of the ETSI C-ITS protocol suite. In 26.02 and earlier, a denial-of-service vulnerability was identified in the cryptographic verification pipeline of Vanetza. When processing incoming V2X messages, the ASN.1 decoder accepts the structure as syntactically...
CVE-2026-42944 Heap overflow with multiple NSID, COOKIE, PADDING EDNS options
NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a vulnerability that results in heap overflow when encoding multiple NSID and/or DNS Cookie EDNS and/or EDNS Padding options in the reply packet. The relevant options 'nsid', 'answer-cookie', 'pad-responses' default need to be enabl...
EUVD-2026-31085
NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a vulnerability that results in heap overflow when encoding multiple NSID and/or DNS Cookie EDNS and/or EDNS Padding options in the reply packet. The relevant options 'nsid', 'answer-cookie', 'pad-responses' default need to be enabl...
CVE-2026-6150
The CVE-2026-6150 entry concerns code-projects Simple Laundry System 1.0. Affected component/file: /checkupdatestatus.php, where manipulation of the serviceId argument enables cross-site scripting. Exploitation is described as remote and publicly disclosed; no concrete remediation details (patch ...
PT-2026-31890
Name of the Vulnerable Software and Affected Versions Simple Laundry System version 1.0 Description A flaw exists in Simple Laundry System 1.0, specifically within the /checkcheckout.php file. Manipulation of the serviceId argument can lead to cross site scripting, potentially allowing for remote...
CVE-2026-4580
A security flaw has been discovered in code-projects Simple Laundry System 1.0. This impacts an unknown function of the file /checkupdatestatus.php of the component Parameters Handler. The manipulation of the argument serviceId results in sql injection. The attack can be executed remotely. The...
CVE-2026-4580
A security flaw has been discovered in code-projects Simple Laundry System 1.0. This impacts an unknown function of the file /checkupdatestatus.php of the component Parameters Handler. The manipulation of the argument serviceId results in sql injection. The attack can be executed remotely. The...
EUVD-2025-31642
Malicious code in bioql PyPI...
kernel: RDMA/srpt: Support specifying the srpt_service_guid parameter
A flaw was foundin the Linux Kernel when specifying the srptserviceguid parameter, which may lead to kernel crash...
WordPress plugin KiviCare SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...
PT-2024-21762 · Cigesv2 · Cigesv2
Name of the Vulnerable Software and Affected Versions: CIGESv2 affected versions not specified Description: The issue is related to a SQL injection vulnerability in the CIGESv2 system. This vulnerability can be exploited through the /ajaxSubServicios.php endpoint, specifically in the idServicio...
CVE-2022-41870
AP Manager in Innovaphone before 13r2 Service Release 17 allows command injection via a modified service ID during app upload...