EUVD-2025-28866

Malicious code in bioql PyPI...

PT-2022-23826 · D Link · D-Link Dir-816

Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 A2 version 1.10CNB04 Description: The issue is related to Command Injection via the "/goform/SystemCommand" API endpoint. When a user passes in the command parameter, it is spliced into byte 4836B0 by snprintf, and then...

PT-2020-10247 · Totolink · Totolink N302R +7

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002RU versions 2.0.0 and earlier TOTOLINK A702R versions 2.1.3 and earlier TOTOLINK N301RT versions 2.1.6 and earlier TOTOLINK N302R versions 3.4.0 and earlier TOTOLINK N300RT versions 3.4.0 and earlier TOTOLINK N200RE versions 4.0...

PT-2018-10049 · Z Blogphp · Z-Blogphp

Name of the Vulnerable Software and Affected Versions: Z-BlogPHP version 1.5.2 Description: The issue allows an administrator to inject a Cross Site Scripting XSS payload via the ZC BLOG NAME parameter in the "Web site settings -- Basic setting -- Website title" section, accessible through the zb...