Lucene search
K

195539 matches found

CNNVD
CNNVD
added 2026/05/31 12:0 a.m.12 views

TRENDnet TEW-432BRP 安全漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by TRENDnet Corporation. Version 3.10B20 of TRENDnet TEW-432BRP has a security vulnerability. This vulnerability stems from an operation on the currentpage parameter in the formSysLog function located in the file/goform/formSysLog,...

9CVSS7.7AI score0.00463EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/31 12:0 a.m.10 views

TRENDnet TEW-432BRP 安全漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by TRENDnet Corporation. Version 3.10B20 of TRENDnet TEW-432BRP has a security vulnerability. This vulnerability stems from an issue with the formSetPassword function in the file/goform/formSetPassword, where the webpage operation in the...

9CVSS7.6AI score0.00472EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/31 12:0 a.m.9 views

School Student Management System 授权问题漏洞

School Student Management System is an open-source tool developed by Binary Brains for managing school student information. The School Student Management System has a vulnerability related to authorization. This vulnerability stems from the parameter email in the ajaxforgotpassword function of th...

6.3CVSS5.8AI score0.00286EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/31 12:0 a.m.11 views

Sereal::Decoder 安全漏洞

Sereal::Decoder is a decoding module developed by YVES’s individual developers, designed for parsing high-performance binary serialization data formats. Versions of Sereal::Decoder prior to 5.005 contained security vulnerabilities; these vulnerabilities stemmed from heap out-of-bound access durin...

8.1CVSS5.8AI score0.00399EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/31 12:0 a.m.10 views

Assimp 代码问题漏洞

Assimp is an open-source library developed by Assimp. It is used for importing and exporting various 3D model formats. Versions of Assimp 6.0.4 and earlier contained code vulnerabilities. These vulnerabilities originated from a function in the glTFImporter component, specifically the function...

4.8CVSS5.9AI score0.00113EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/05/31 12:0 a.m.12 views

TOTOLINK N300RH 安全漏洞

TOTOLINK N300RH is a long-range wireless router produced by TOTOLINK Corporation. Version 6.1c.1353B20190305 of TOTOLINK N300RH contains a security vulnerability. This vulnerability stems from a function in the Web Management Interface component called “wireless.so,” where the parameter “KeyStr” ...

10CVSS7.5AI score0.01425EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.10 views

TRENDnet TEW-432BRP 安全漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by TRENDnet Corporation. Version 3.10B20 of TRENDnet TEW-432BRP contains a security vulnerability. This vulnerability arises from the operation of the formSetFirewallRule function in the file/goform/formSetFirewallRule, where the paramet...

9CVSS7.7AI score0.00463EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.10 views

SIM-PKH 代码问题漏洞

SIM-PKH is a community-based poverty alleviation data management system developed by Insan Sutejo. Version 2.4.1 of SIM-PKH has code vulnerabilities. These vulnerabilities arise from submitting PHP code via the fupload parameter. This may allow authenticated attackers to upload malicious files,...

8.8CVSS5.9AI score0.00325EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.10 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from the ue-authentications Endpoint component’s ogssbixactadd...

5.3CVSS5.8AI score0.00391EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.11 views

Edimax BR-6478AC 命令注入漏洞

The Edimax BR-6478AC is a dual-band Gigabit router produced by Edimax Corporation. The Edimax BR-6478AC version 1.23 has a command injection vulnerability. This vulnerability stems from the operation of the formStaDrvSetup function in the component POST Request Handler, specifically the parameter...

6.5CVSS6.6AI score0.01262EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.9 views

AiOPMSD Final SQL注入漏洞

AiOPMSD Final is a video stream download tool developed by AiOPMSD Corporation. Version 1.0.0 of AiOPMSD Final contains a SQL injection vulnerability. This vulnerability arises from injecting malicious code through the director parameter, potentially allowing unauthenticated attackers to execute...

8.8CVSS6.2AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.11 views

deltasql 访问控制错误漏洞

Deltasql is open-source software used for tracking and managing changes to database structures. Version 1.8.2 of deltasql contains a vulnerability related to access control. This vulnerability arises from the upload of malicious files via the docsUpload.php script. It could allow unauthorized...

9.8CVSS5.9AI score0.00771EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.9 views

TRENDnet TEW-432BRP 安全漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by the TRENDnet company. Version 3.10B20 of TRENDnet TEW-432BRP has a security vulnerability. This vulnerability arises from the operation of the formSetProtocolFilter function in the file/goform/formSetProtocolFilter, where the paramete...

9CVSS7.7AI score0.00472EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.10 views

Shibby Tomato 安全漏洞

Shibby Tomato is a third-party router firmware developed by Shibby’s individual developers. Versions of Shibby Tomato prior to 1.28 contained security vulnerabilities. These vulnerabilities were caused by a function in the Zserv Handler component called ripzebrareadipv4, which led to a stack buff...

9CVSS7.7AI score0.00472EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.9 views

Open ISES Project 路径遍历漏洞

The Open ISES Project is an open-source information technology platform and resource platform for emergency service organizations developed by Open ISES. Version 3.30A of the Open ISES Project contains a path traversal vulnerability. This vulnerability stems from improper handling of the filename...

8.7CVSS5.9AI score0.00638EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.10 views

Student-Management-System 代码注入漏洞

Student-Management-System is an open-source student information management system developed by Cyber-III. Version 1.0 of STUDENT-MANAGEMENT-SYSTEM contains a code injection vulnerability. This vulnerability stems from the Name parameter on the dashboard page, which contains cross-site scripting,...

4.8CVSS5.8AI score0.00206EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.11 views

WordPress plugin GEO my WP SQL注入漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.5CVSS5.9AI score0.00344EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.11 views

Projectworlds Gate Pass Management System SQL注入漏洞

The Projectworlds Gate Pass Management System is an open-source boarding pass management system developed by Projectworlds. Version 2.1 of the Projectworlds Gate Pass Management System has a SQL injection vulnerability. This vulnerability stems from the login and password parameters, which are...

8.8CVSS5.9AI score0.0032EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.11 views

AiOPMSD Final SQL注入漏洞

AiOPMSD Final is a video stream download tool developed by AiOPMSD Corporation. Version 1.0.0 of AiOPMSD Final contains a SQL injection vulnerability. This vulnerability arises from injecting malicious code through the ‘genre’ parameter, which may allow unauthenticated attackers to execute...

8.8CVSS6.2AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.12 views

MGB OpenSource Guestbook SQL注入漏洞

MGB OpenSource Guestbook is an open-source web-based message board system developed by MGB OpenSource. Version 0.7.0.2 of MGB OpenSource Guestbook has a SQL injection vulnerability. This vulnerability arises from injecting malicious code through the id parameter, which may allow unauthenticated...

8.8CVSS6.2AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the epremove function in eventpoll. This function continues to use @file after clearing file-fep,...

5.8AI score0.00125EPSS
Exploits2References3
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.14 views

ArmCode Arm Whois 安全漏洞

ArmCode Arm Whois is a web information query tool developed by ArmCode Corporation. Version 3.11 of Arm Whois contains a security vulnerability; this vulnerability stems from a buffer overflow, which could allow local attackers to cause the application to crash by providing excessively long input...

6.9CVSS6AI score0.0014EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.9 views

Yamcs security vulnerabilities

Yamcs is an open-source software framework developed by Yamcs. It is used for commanding and controlling spacecraft, satellites, payloads, ground stations, and ground equipment. There are security vulnerabilities in YAMCS, and attackers can exploit these vulnerabilities to perform LDAP injection...

5.8AI score0.01027EPSS
Exploits3References1
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.13 views

MOGG web simulator Script SQL注入漏洞

MOGG web simulator Script is a Web application scripting environment developed by spider312. The MOGG web simulator Script has a SQL injection vulnerability. This vulnerability stems from the id parameter being susceptible to SQL injections, allowing unauthenticated attackers to execute arbitrary...

8.8CVSS6AI score0.00262EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.14 views

Edimax BR-6478AC 安全漏洞

The Edimax BR-6478AC is a dual-band Gigabit router produced by Edimax Corporation. Version 1.23 of the Edimax BR-6478AC contains a security vulnerability. This vulnerability stems from a function called formPPPoESetup in the component POST Request Handler. The function’s handling of the parameter...

9CVSS7.4AI score0.00447EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.13 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for Lte/Nr networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities; these vulnerabilities stem from the ogspoolidcalloc function, which can cause denial-of-service...

5.3CVSS5.8AI score0.00271EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.13 views

Exim 安全漏洞

Exim is an open-source message transfer agent MTA developed by Exim Software, running on Unix systems. It primarily handles the routing, forwarding, and delivery of emails. Versions of Exim from 4.88 to 4.99.4 contained security vulnerabilities. These vulnerabilities stemmed from improper handlin...

5.3CVSS5.8AI score0.00264EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.12 views

TRENDnet TEW-432BRP 安全漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by TRENDnet Corporation. Version 3.10B20 of TRENDnet TEW-432BRP contains a security vulnerability. This vulnerability arises from the function formSetUrlFilter in the file/goform/formSetUrlFilter, which improperly handles the parameter...

9CVSS7.7AI score0.00447EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.10 views

WinMTR 安全漏洞

WinMTR is an open-source network diagnostic tool developed by WinMTR. Version 0.91 of WinMTR contains a security vulnerability, which stems from a buffer overflow. This vulnerability could allow attackers to cause the application to crash by sending malicious load files containing repeated...

8.7CVSS6.2AI score0.00514EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.11 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from a denial-of-service attack in the shared NF configuration file...

5.3CVSS5.9AI score0.00296EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.11 views

Code-Projects Student Details Management System SQL注入漏洞

Code-Projects Student Details Management System is an open-source student information management system developed by Code-Projects. Version 1.0 of the code-projects Student Details Management System contains a SQL injection vulnerability. This vulnerability stems from the roll parameter in the...

7.5CVSS7.2AI score0.00313EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.14 views

Notepad++ security vulnerabilities

Notepad++ is an open-source plain-text editor developed by Don Ho of Taiwan, China. Notepad++ has security vulnerabilities, and attackers can exploit these vulnerabilities to execute arbitrary code...

6AI score0.01314EPSS
Exploits5References1
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.10 views

Text::LineFold 安全漏洞

Text::LineFold is a Perl text processing module developed by NEZUMI’s individual developers. Versions of Text::LineFold starting from 2019.001 and earlier contained security vulnerabilities. These vulnerabilities were caused by repeated output based on the number of special line breaks, which cou...

6.2CVSS5.8AI score0.002EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.10 views

eNdonesia Portal SQL注入漏洞

eNdonesia Portal is a system platform developed by eNdonesia’s individual developers, offering functions for portal content management and information publishing. Version 8.7 of eNdonesia Portal has a SQL injection vulnerability. This vulnerability arises from injecting malicious code through...

8.8CVSS6.1AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.12 views

AiOPMSD Final SQL注入漏洞

AiOPMSD Final is a video stream download tool developed by AiOPMSD Corporation. Version 1.0.0 of AiOPMSD Final contains a SQL injection vulnerability. This vulnerability arises from injecting malicious code through the year parameter, potentially allowing unauthenticated attackers to execute...

8.8CVSS6.2AI score0.00276EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.11 views

Zephyr 安全漏洞

Zephyr is an open-source, scalable real-time operating system RTOS developed by Zephyr. There is a security vulnerability in Zephyr, which stems from the use of NETASSERT for verifying buffer length only in the zcansendtoctx function. Disabling this feature in production builds may lead to...

6.1CVSS5.9AI score0.00167EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.10 views

AiOPMSD Final SQL注入漏洞

AiOPMSD Final is a video stream download tool developed by AiOPMSD Corporation. Version 1.0.0 of AiOPMSD Final contains a SQL injection vulnerability. This vulnerability arises from injecting malicious code through the q parameter, which may allow unauthenticated attackers to execute arbitrary SQ...

8.8CVSS6.2AI score0.00276EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.12 views

Edimax BR-6478AC 安全漏洞

The Edimax BR-6478AC is a dual-band Gigabit router produced by Edimax Corporation. Version 1.23 of the Edimax BR-6478AC contains a security vulnerability. This vulnerability arises from the function formQoS in the component POST Request Handler, which allows for operations on the parameter selSSI...

9CVSS7.7AI score0.00753EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.12 views

CicadasCMS 代码注入漏洞

CicadasCMS is a content management framework developed by the Chinese individual developer westboy, based on SpringBoot, Mybatis, SpringSecurity, and Vue. CicadasCMS has a code injection vulnerability. This vulnerability stems from the Search method in the...

5.3CVSS5.7AI score0.0028EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.12 views

TRENDnet TEW-432BRP 安全漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by TRENDnet Corporation. Version 3.10B20 of TRENDnet TEW-432BRP contains a security vulnerability. This vulnerability arises from the operation of the formSetDomainFilter function in the file/goform/formSetDomainFilter, where parameters...

9CVSS7.7AI score0.00472EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.12 views

Lin-CMS-Spring-boot 访问控制错误漏洞

Lin-CMS-Spring-boot is a simple and easy-to-use CMS backend project developed by the TaleLin team. Versions of Lin-CMS-Spring-boot prior to 0.2.1 contained an access control vulnerability. This vulnerability stemmed from an unknown processing in the book component’s endpoint, specifically in the...

6.5CVSS6.5AI score0.00206EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.13 views

AiOPMSD Final SQL注入漏洞

AiOPMSD Final is a video stream download tool developed by AiOPMSD Corporation. Version 1.0.0 of AiOPMSD Final contains a SQL injection vulnerability. This vulnerability arises from injecting malicious code through the quality parameter, potentially allowing unauthenticated attackers to execute...

8.8CVSS6.2AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.10 views

eNdonesia Portal SQL注入漏洞

eNdonesia Portal is a system platform developed by eNdonesia’s individual developers, offering functions for portal content management and information publishing. Version 8.7 of eNdonesia Portal has a SQL injection vulnerability. This vulnerability arises from injecting malicious code through...

8.8CVSS6.1AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.11 views

eNdonesia Portal SQL注入漏洞

eNdonesia Portal is a system platform developed by eNdonesia’s individual developers, offering functions for portal content management and information publishing. Version 8.7 of eNdonesia Portal has a SQL injection vulnerability. This vulnerability arises from injecting malicious code through...

8.8CVSS6.1AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.13 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for Lte/Nr networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities are caused by unknown parts within the Shared NF-profile Parser component,...

5.3CVSS5.8AI score0.00309EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.11 views

TRENDnet TEW-432BRP 安全漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by the TRENDnet company. Version 3.10B20 of TRENDnet TEW-432BRP has a security vulnerability. This vulnerability arises from the operation of the formSetMACFilter function in the file/goform/formSetMACFilter, where the parameter filterna...

9CVSS7.7AI score0.00472EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.9 views

SIM-PKH SQL注入漏洞

SIM-PKH is a community-based poverty alleviation data management system developed by Insan Sutejo. Version 2.4.1 of SIM-PKH contains an SQL injection vulnerability. This vulnerability arises from injecting malicious code through the id parameter, potentially allowing authenticated attackers to...

7.1CVSS6.2AI score0.00221EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.12 views

Open STA Manager 路径遍历漏洞

Open STA Manager is an enterprise service management system developed by the Italian company Open STA Manager. Version 2.3 of Open STA Manager contains a path traversal vulnerability. This vulnerability arises from operations using the file parameter, which may allow authenticated users to downlo...

7.1CVSS5.9AI score0.00334EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.12 views

Student-Management-System SQL注入漏洞

Student-Management-System is an open-source student information management system developed by Cyber-III. Version 1.0 of Student-Management-System has a SQL injection vulnerability; this vulnerability stems from the email parameter on the login page, which may lead to remote attacks...

7.5CVSS7.2AI score0.00259EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.11 views

Yamcs security vulnerabilities

Yamcs is an open-source software framework developed by Yamcs. It is used for commanding and controlling spacecraft, satellites, payloads, ground stations, and ground equipment. YAMCS has a security vulnerability that stems from the lack of rate limits...

5.8AI score0.00052EPSS
Exploits2References1
Total number of security vulnerabilities195539