CVE-2025-63153

TOTOLink A7000R V9.1.0u.6115B20201022 was discovered to contain a stack overflow in the ssid parameter of the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

EUVD-2005-0454

Malware in sbrugna...

BIT-LIBPHP-2020-7067 OOB Read in urldecode()

In PHP versions 7.2.x below 7.2.30, 7.3.x below 7.3.17 and 7.4.x below 7.4.5, if PHP is compiled with EBCDIC support uncommon, urldecode function can be made to access locations past the allocated memory, due to erroneously using signed numbers as array indexes...

TOTOLINK LR350 urldecode function buffer overflow vulnerability

TOTOLINK LR350 is a 4G LTE router from China's TOTOLINK , which supports converting 4G signals to wired signals for home and office scenarios. The TOTOLINK LR350 suffers from a buffer overflow vulnerability, which arises when the password parameter in the urldecode function fails to correctly...

The vulnerability of the urldecode() function in the PHP programming language, related to reading beyond the allowable buffer data limits, allows attackers to gain access to protected information.

The vulnerability of the urldecode function in the PHP programming language is related to reading data beyond the allowable buffer size. Exploiting this vulnerability can allow an attacker to gain access to protected information...