CVE-2025-2418

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in TR7 Cyber ​​Defense Inc. Web Application Firewall allows Phishing. This issue affects Web Application Firewall: from 4.30 before v1.4.0.117...

Splinterware iDailyDiary security vulnerability

Splinterware iDailyDiary is a log management software developed by Splinterware Corporation. Version 4.30 of Splinterware iDailyDiary contains a security vulnerability. This vulnerability stems from a buffer overflow in the name field of the preferences tab, which could lead to a denial-of-servic...

nopCommerce Cross-Site Scripting Vulnerability (CNVD-2021-01555)

nopCommerce is a set of open source general e-commerce platform. A cross-site scripting vulnerability exists in nopCommerce Store version 4.30, which stems from the Schedule tasks name field not being effectively filtered for XSS statements. This vulnerability allows an attacker to inject an XSS...

nopCommerce 跨站脚本漏洞

nopCommerce is a set of open source general e-commerce platform. A cross-site scripting vulnerability exists in nopCommerce Store version 4.30, which stems from the Schedule tasks name field not being effectively filtered for XSS statements. This vulnerability allows an attacker to inject an XSS...

Zyxel UTM and Zyxel Gateway VPN series Buffer Error Vulnerability

Welkin Technology Zyxel UTM is a unified threat management appliance from Welkin Technology, China. Welkin Technologies Zyxel Gateway VPN series is a series of VPN routers from Welkin Technologies, China that provide secure access. VPNs supported by this router include IPSec, L2TP over IPSec, PPT...

CVE-2020-7378

CRIXP OpenCRX version 4.30 and 5.0-20200717 and prior suffers from an unverified password change vulnerability. An attacker who is able to connect to the affected OpenCRX instance can change the password of any user, including admin-Standard, to any chosen value. This issue was resolved in versio...

Design/Logic Flaw

CRIXP OpenCRX version 4.30 and 5.0-20200717 and prior suffers from an unverified password change vulnerability. An attacker who is able to connect to the affected OpenCRX instance can change the password of any user, including admin-Standard, to any chosen value. This issue was resolved in versio...

CVE-2020-7378 CRIXP OpenCRX Unverified Password Change

CRIXP OpenCRX version 4.30 and 5.0-20200717 and prior suffers from an unverified password change vulnerability. An attacker who is able to connect to the affected OpenCRX instance can change the password of any user, including admin-Standard, to any chosen value. This issue was resolved in versio...

ShopCartDx 4.30 - products.php Blind SQL Injection

ShopCartDx 4.30 - products.php Blind SQL Injection !/usr/bin/perl 0-Day ShopCartDx /trafficdemos/shopcartdx1/ my $MemberID = shift or my $Method = HTTP::Request-newGET = $Host; my $HTTP = new LWP::UserAgent; my $Referrer = "http://www.warwolfz.org/"; my $DefaultTime = request$Referrer; sub...

Golden FTP Server 4.30 File Deletion Vulnerability

No description provided by source. Exploit Title: Golden FTP Server File Deletion Vulnerability Date: 18.11.2009 Author: sharpe Software Link: http://www.goldenftpserver.com/download.html Version: 4.30 Free and Professional Tested on: Windows XP SP3 CVE : if exists Code :...