PT-2025-27442 · Unknown · Phpgurukul Old Age Home Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Old Age Home Management System version 1.0 Description: A critical issue has been discovered in the PHPGurukul Old Age Home Management System, affecting an unknown functionality of the file /admin/add-scdetails.php. The manipulatio...

PT-2025-27319 · Code Projects · Code-Projects Inventory Management System

Name of the Vulnerable Software and Affected Versions: code-projects Inventory Management System version 1.0 Description: A critical vulnerability has been found in the code-projects Inventory Management System, affecting an unknown functionality of the file /php action/removeBrand.php. The...

PT-2025-26761 · Netbox · Netbox

Name of the Vulnerable Software and Affected Versions: Netbox Community version 4.1.7 Description: In Netbox Community, once authenticated, the Configuration History Add option is vulnerable to cross-site scripting XSS due to the current value field rendering user-supplied HTML. An authenticated...

PT-2025-26553 · Unknown · Sourcecodester Student Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Student Result Management System version 1.0 Description: A vulnerability was found in the Manage Students Module, affecting some unknown processing of the file /script/admin/manage students. This issue leads to cross-site...

PT-2025-26564 · Totolink · Totolink A3002Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R version 1.1.1-B20200824.0128 Description: A critical vulnerability was found in the TOTOLINK A3002R, affecting the function formWlanMultipleAP of the file /boafrm/formWlanMultipleAP. The manipulation of the argument submit-url...

PT-2025-26476 · D Link · D-Link Dir-619L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-619L version 2.06B01 Description: A critical vulnerability was found in the D-Link DIR-619L, affecting the function formSetWizard1 of the file /goform/formSetWizard1. The manipulation of the argument curTime leads to a stack-based...

PT-2025-26288 · Unknown · Phpgurukul Pre-School Enrollment System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Pre-School Enrollment System version 1.0 Description: A critical vulnerability was found in the PHPGurukul Pre-School Enrollment System. This issue affects unknown code of the file /admin/check availability.php. The manipulation of...

PT-2025-25512 · Letta-Ai · Letta-Ai

Name of the Vulnerable Software and Affected Versions: letta-ai letta versions up to 0.4.1 Description: A critical issue has been found in the function function message of the file letta/letta/interface.py. The manipulation of the argument function name/function args leads to improper...

PT-2025-25501 · H3C · H3C Gr-3000Ax

Name of the Vulnerable Software and Affected Versions: H3C GR-3000AX version V100R007L50 Description: A critical vulnerability was found in the function UpdateWanParamsMulti/UpdateIpv6Params of the file /routing/goform/aspForm. The manipulation of the argument param leads to buffer overflow. It i...

PT-2025-25605 · Tp Link · Tp-Link Tl-Wr940N

Name of the Vulnerable Software and Affected Versions: TP-Link TL-WR940N version V4 Description: A critical vulnerability has been found in the TP-Link TL-WR940N V4, affecting some unknown functionality of the file /userRpm/WanSlaacCfgRpm.htm. The manipulation of the argument dnsserver1 leads to...

PT-2025-24398 · Tenda · Tenda Ac5

Name of the Vulnerable Software and Affected Versions: Tenda AC5 version 15.03.06.47 Description: A critical issue was found, classified as critical, affecting the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to a stack-based...

PT-2025-24321 · Tenda · Tenda Ac5

Name of the Vulnerable Software and Affected Versions: Tenda AC5 version 15.03.06.47 Description: A critical issue has been found in the function formSetPPTPUserList of the file /goform/setPptpUserList. The manipulation of the list argument leads to a buffer overflow. This issue can be exploited...

PT-2025-23986 · Code Projects · Code-Projects Real Estate Property Management System

Name of the Vulnerable Software and Affected Versions: code-projects Real Estate Property Management System version 1.0 Description: A critical issue was found in the code-projects Real Estate Property Management System. The problem affects an unknown function of the file /Admin/Property.php...

PT-2025-23893 · Unknown · Phpgurukul Notice Board System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Notice Board System version 1.0 Description: A critical vulnerability has been found in the PHPGurukul Notice Board System, affecting an unknown functionality of the file /admin-profile.php. The manipulation of the mobilenumber...

PT-2025-23489 · Linksys · Linksys Re9000 +5

Name of the Vulnerable Software and Affected Versions: Linksys RE6500, RE6250, RE6300, RE6350, RE7000, and RE9000 versions 1.0.013.001 through 1.2.07.001 Description: A critical vulnerability has been found in the Linksys RE-series range extenders. This affects the NTP function of the file...

PT-2025-23369 · Sourcecodester · Sourcecodester Php Display Username After Login

Name of the Vulnerable Software and Affected Versions: SourceCodester PHP Display Username After Login version 1.0 Description: A critical vulnerability has been found in the software. The issue affects an unknown function of the file /login.php. Manipulation of the Username argument leads to SQL...

PT-2025-23181 · Free5Gc · Free5Gc

Name of the Vulnerable Software and Affected Versions: Free5gc version 4.0.0 Description: The issue is a buffer overflow vulnerability that allows a remote attacker to cause a denial of service. This is achieved via the AMF, NGAP, security.go, handler generated.go, handleInitialUEMessageMain,...

PT-2025-23202 · Unknown · Chshcms Mccms

Name of the Vulnerable Software and Affected Versions: chshcms mccms version 2.7 Description: A critical vulnerability affects the restore del function of the file /sys/apps/controllers/admin/Backups.php. The manipulation of the dirs argument leads to path traversal. The attack can be initiated...

PT-2025-22912 · Llisoft · Llisoft Mta Maita Training System

Name of the Vulnerable Software and Affected Versions: llisoft MTA Maita Training System version 4.5 Description: A critical vulnerability was found in the llisoft MTA Maita Training System, affecting the AdminShitiListRequestVo function of the file...

PT-2025-23625 · Totolink · Totolink X15

Name of the Vulnerable Software and Affected Versions: TOTOLINK X15 version 1.0.0-B20230714.1105 Description: A critical vulnerability was found in the TOTOLINK X15, affecting the function formMapReboot of the file /boafrm/formMapReboot. The manipulation of the deviceMacAddr argument leads to a...