PT-2025-5902

Name of the Vulnerable Software and Affected Versions Legull WordPress plugin versions 1.2.2 and earlier Description The issue is related to a Reflected Cross-Site Scripting problem, where a parameter is not properly sanitised and escaped before being outputted back in the page. This could be use...

PT-2025-2112

Name of the Vulnerable Software and Affected Versions iBuildApp WordPress plugin versions 0.2.0 and earlier Description The issue is related to a Reflected Cross-Site Scripting problem, where a parameter is not properly sanitized and escaped before being outputted back in the page. This could be...

PT-2025-3110 · Asus · Asus System Analysis Io

Name of the Vulnerable Software and Affected Versions: ASUS System Analysis IO version 1.0.0 Description: The issue is related to improper access control in the AsusSAIO.sys driver, which may allow the misuse of software functionality when crafted IOCTL requests are supplied. This can lead to...

PT-2024-26278 · Unknown · Rsi Pdf/Html Catalog Evolution

Name of the Vulnerable Software and Affected Versions: RSI PDF/HTML catalog evolution prestapdf versions = 7.0.0 Description: A SQL injection issue exists, allowing a guest to perform SQL injection via the PrestaPDFProductListModuleFrontController::queryDb function. Recommendations: For versions ...

PT-2024-27686 · Totolink · Totolink A3700R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3700R version 9.1.2u.6165 20211012 Description: The issue is related to a stack overflow that occurs via the File parameter in the UploadCustomModule function. This allows for potential exploitation. Recommendations: For TOTOLINK...

PT-2024-20942 · Public Knowledge · Pkp Ojs

Name of the Vulnerable Software and Affected Versions: Pkp Ojs version 3.3 Description: A cross-site scripting XSS issue in the Production module allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Input subject field under the Add Discussion function...

PT-2024-20420 · Unknown · Daily Habit Tracker

Name of the Vulnerable Software and Affected Versions: Daily Habit Tracker version 1.0 Description: The issue allows a remote attacker to execute arbitrary code via a crafted GET request. This is due to a SQL Injection vulnerability in the delete-tracker.php file. Recommendations: For Daily Habit...

PT-2023-18984 · Unknown · Sourcecodester Service Provider Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Service Provider Management System version 1.0 Description: A vulnerability has been found in the SourceCodester Service Provider Management System. The issue is related to an unknown function of the file /admin/index.php, wher...

PT-2009-6381 · Haihaisoft · Haihaisoft Universal Player

Name of the Vulnerable Software and Affected Versions: Haihaisoft Universal Player MyActiveX.ocx version 1.4.8.0 Description: The issue is related to a stack-based buffer overflow in the MYACTIVEX.MyActiveXCtrl.1 ActiveX control. This can be exploited by remote attackers to execute arbitrary code...