130931 matches found
Unspecified Vulnerability in Oracle MySQL Server (CNVD-2025-17181)
Oracle MySQL Server is a relational database from Oracle Corporation. A security vulnerability exists in Oracle MySQL Server, which originates from a flaw in the optimizer component and can be exploited by an attacker to cause a denial of service...
Unspecified Vulnerability in Oracle Java SE (CNVD-2025-24098)
Oracle Java SE is a U.S. Oracle Oracle company for the development and deployment of desktop, server and embedded devices and real-time environments in the Java application. A security vulnerability exists in Oracle Java SE for Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise...
Oracle MySQL Server Resource Management Error Vulnerability (CNVD-2025-17105)
Oracle MySQL Server is a relational database from Oracle Corporation. A resource management error vulnerability exists in Oracle MySQL Server, which stems from improper access control on a multi-protocol network and can be exploited by an attacker to cause a denial of service...
Oracle MySQL Server Resource Management Error Vulnerability (CNVD-2025-17168)
Oracle MySQL Server is a relational database from Oracle Corporation. A resource management error vulnerability exists in Oracle MySQL Server that stems from improper access control of the InnoDB component and can be exploited by an attacker to cause a denial of service...
Oracle MySQL Server Resource Management Error Vulnerability (CNVD-2025-17170)
Oracle MySQL Server is a relational database from Oracle Corporation. A resource management error vulnerability exists in Oracle MySQL Server that stems from improper access control of the DML component and can be exploited by an attacker to cause a denial of service...
Unspecified Vulnerability in Oracle MySQL Server (CNVD-2025-17173)
Oracle MySQL Server is a relational database from Oracle Corporation. A security vulnerability exists in Oracle MySQL Server that originates from improper access control of the Optimizer component and can be exploited by an attacker to cause a denial of service...
Oracle MySQL Server Resource Management Error Vulnerability (CNVD-2025-17175)
Oracle MySQL Server is a relational database from Oracle Corporation. A resource management error vulnerability exists in Oracle MySQL Server that stems from improper access control of the Optimizer component and can be exploited by an attacker to cause a denial of service...
Adobe InDesign Heap Buffer Overflow Vulnerability (CNVD-2025-16537)
Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. Adobe InDesign suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code in the context of the current user...
WordPress Plugin BeeTeam368 Extensions Code Issue Vulnerability
WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists in the WordPress plugin BeeTeam368 Extensions, which stems from a lack...
Modern Bag slideupdate.php File SQL Injection Vulnerability
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter idSlide in file /admin/slideupdate.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illeg...
Online Appointment Booking System ulocateus.php File SQL Injection Vulnerability
Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that stems from an error in the parameter doctorname in the file /ulocateus.php that lacks validation of externally entered SQL statements. An...
Chat System update_account.php File SQL Injection Vulnerability
Chat System is a chat system. Chat System suffers from a SQL injection vulnerability that stems from an error in the parameter musername in the file /user/updateaccount.php that lacks validation of an externally entered SQL statement. An attacker can use this vulnerability to execute illegal SQL...
Vehicle Parking Management System print.php File SQL Injection Vulnerability
Vehicle Parking Management System is a parking management system. Vehicle Parking Management System suffers from a SQL injection vulnerability that stems from an error in the parameter vid in the file /users/print.php that lacks validation of externally entered SQL statements. An attacker can...
Online Appointment Booking System get_town.php File SQL Injection Vulnerability
Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that stems from an error in the parameter countryid in file /gettown.php that lacks validation of an externally entered SQL statement. An attacke...
Online Appointment Booking System getDay.php File SQL Injection Vulnerability
Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that stems from an error in the parameter cidval in the file /getDay.php that lacks validation of externally entered SQL statements. The...
Modern Bag productadd_back.php File SQL Injection Vulnerability
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter namepro in file /admin/productaddback.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute...
Tenda FH1202 /goform/webExcptypemanFilter File Buffer Overflow Vulnerability
The Tenda FH1202 is a wireless router from Tenda China. The Tenda FH1202 version 1.2.0.14408 suffers from a buffer overflow vulnerability, which originates from the failure of the function fromwebExcptypemanFilter parameter page to correctly validate the length of the input data in the file...
WordPress plugin AIT CSV import/export code issue vulnerability
WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin AIT CSV import/export has a code issue vulnerability , the vulnerability stems from the...
Cisco ISE and ISE-PIC Injection Vulnerabilities (CNVD-2025-17186)
Cisco ISE and Cisco ISE-PIC are both products of the U.S. Cisco Cisco.Cisco ISE is the identity services engine introduced by Cisco, mainly used for network access control and security management.Cisco ISE-PIC is the passive identity connector of the Cisco Identity Services Engine, which is mainl...
Job Diary search.php File SQL Injection Vulnerability
Job Diary is a job diary software. Job Diary suffers from an SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements due to an error in the parameter Search in the file /search.php. An attacker can exploit this vulnerability to execute illegal SQL...
Mobile Shop EditMobile.php File SQL Injection Vulnerability
Mobile Shop is a mobile store. Mobile Shop suffers from a SQL injection vulnerability that stems from an error in the parameter ID in the file /EditMobile.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal SQL commands to...
Mobile Shop LoginAsAdmin.php File SQL Injection Vulnerability
Mobile Shop is a mobile store. Mobile Shop suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter email in the file /LoginAsAdmin.php. An attacker can exploit this vulnerability to execute illegal SQL commands to...
Modern Bag action.php file SQL injection vulnerability
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter proId in file /action.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal SQL comman...
Modern Bag category-list.php file SQL Injection Vulnerability
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter idCate in file /admin/category-list.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute...
Modern Bag contact-back.php File SQL Injection Vulnerability
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter contact-name in file /contact-back.php that lacks validation of externally entered SQL statements. An attacker can use this vulnerability to execute illegal S...
Modern Bag login-back.php File SQL Injection Vulnerability
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter user-name in file /admin/login-back.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute...
Modern Bag product-detail.php file SQL Injection Vulnerability
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter ID in the file /product-detail.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal S...
Modern Bag product-update.php file SQL Injection Vulnerability
Modern Bag is an online management system. Modern Bag suffers from a SQL injection vulnerability that stems from an error in the parameter idProduct in the file /admin/product-update.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to...
Library System profile.php file code issue vulnerability
Library System is a library system. Library System has a code issue vulnerability that stems from the lack of valid validation of uploaded files by the parameter image in the file /user/student/profile.php. An attacker can exploit this vulnerability to upload malicious files...
Library System teacher/profile.php file code issue vulnerability
Library System is a library system. Library System has a code issue vulnerability that stems from the lack of valid validation of uploaded files by the parameter image in the file /user/teacher/profile.php. An attacker can exploit this vulnerability to upload malicious files...
Online Appointment Booking System getclinic.php File SQL Injection Vulnerability
Online Appointment Booking System is an online appointment booking system. The Online Appointment Booking System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter townid in the file /getclinic.php. The...
Tenda FH1202 /goform/GstDhcpSetSer File Buffer Overflow Vulnerability
The Tenda FH1202 is a wireless router from Tenda China. The Tenda FH1202 version 1.2.0.14408 suffers from a buffer overflow vulnerability, which originates from the failure of the function fromGstDhcpSetSer parameter dips to correctly validate the length of the input data in the file...
Tenda O3V2 /goform/setPingInfo file buffer overflow vulnerability
Tenda O3V2 is an outdoor wireless bridge from Tenda, China. The Tenda O3V2 suffers from a buffer overflow vulnerability, which originates from the parameter ip in the file /goform/setPingInfo failing to correctly validate the length and size of the input data, which can be exploited by an attacke...
Advantech iView NetworkServlet.backupDatabase Function Parameter Injection Vulnerability
Advantech iView is a Simple Network Protocol SNMP based software from Advantech, China to manage B + B SmartWorx devices. The Advantech iView NetworkServlet.backupDatabase function parameter injection vulnerability can be exploited by an attacker to cause information disclosure, including sensiti...
Modern Bag contact-list.php File SQL Injection Vulnerability
Modern Bag is an online management system. Modern Bag suffers from an SQL injection vulnerability that stems from an error in the parameter idStatus in file /admin/contact-list.php that lacks validation of externally entered SQL statements. An attacker can use this vulnerability to execute illega...
Advantech iView Cross-Site Scripting Vulnerability
Advantech iView is a Simple Network Protocol SNMP based software from Advantech, China to manage B + B SmartWorx devices. A cross-site scripting vulnerability exists in Advantech iView due to improper validation of user-supplied input. An attacker could use this vulnerability to execute...
Vehicle Parking Management System manage-outgoingvehicle.php File SQL Injection Vulnerability
Vehicle Parking Management System is a parking management system. Vehicle Parking Management System suffers from a SQL injection vulnerability that stems from an error in the parameter del in the file /admin/manage-outgoingvehicle.php that lacks validation of externally entered SQL statements. An...
D-Link DIR-818LW Command Injection Vulnerability
The D-Link DIR-818LW is a dual-band Gigabit cloud router that supports wireless standards such as IEEE 802.11ac and IEEE 802.11n, with a wireless transfer rate of up to 433Mbps, and also provides one USB 2.0 port and four Gigabit wired ports. The D-Link DIR-818LW suffers from a command injection...
Job Diary view-details.php file SQL Injection Vulnerability
Job Diary is a job diary software. Job Diary suffers from a SQL injection vulnerability that stems from an error in the parameter jobid in the file /view-details.php that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal SQL...
Vehicle Parking Management System reg-users.php File SQL Injection Vulnerability
Vehicle Parking Management System is a parking management system. Vehicle Parking Management System suffers from a SQL injection vulnerability that stems from an error in the parameter del in the file /admin/reg-users.php that lacks validation of externally entered SQL statements. An attacker can...
Vehicle Parking Management System view-outgoingvehicle-detail.php file SQL Injection Vulnerability
Vehicle Parking Management System is a parking management system. Vehicle Parking Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter viewid in file /admin/view-outgoingvehicle-detail.php...
Vehicle Parking Management System search-vehicle.php File SQL Injection Vulnerability
Vehicle Parking Management System is a parking management system. Vehicle Parking Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter searchdata in file /admin/search-vehicle.php. An attacke...
Student Result Management System /notice-details.php File SQL Injection Vulnerability
Student Result Management System is a student result management system. Student Result Management System suffers from a SQL injection vulnerability that stems from an error in the parameter nid in the file /notice-details.php that lacks validation of externally entered SQL statements. An attacker...
Tenda FH451 /goform/Natlimit File Buffer Overflow Vulnerability
The Tenda FH451 is a router from the Chinese company Tenda. The Tenda FH451 version 1.0.0.9 suffers from a buffer overflow vulnerability, which originates from the failure of the function fromNatlimit parameter page in the file /goform/Natlimit to correctly validate the length of the input data,...
Tenda FH451 /goform/L7Prot File Buffer Overflow Vulnerability
The Tenda FH451 is a router from the Chinese company Tenda. The Tenda FH451 version 1.0.0.9 suffers from a buffer overflow vulnerability, which originates from the function frmL7ProtForm parameter page in file /goform/L7Prot that fails to correctly validate the length of the input data, which can...
Tenda FH451 /goform/addressNat File Buffer Overflow Vulnerability
The Tenda FH451 is a router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda FH451 1.0.0.9 and earlier versions, which stems from the file /goform/addressNat parameter page failing to correctly validate the length of the input data, and can be exploited by a remote...
Tenda FH1202 /goform/PPTPDClient File Buffer Overflow Vulnerability
The Tenda FH1202 is a wireless router from Tenda China. The Tenda FH1202 version 1.2.0.14408 suffers from a buffer overflow vulnerability, which originates from the failure of the function fromPptpUserAdd parameter Username to correctly validate the length of the input data in the file...
Tenda FH1202 /goform/Natlimit File Buffer Overflow Vulnerability
The Tenda FH1202 is a wireless router from Tenda China. The Tenda FH1202 version 1.2.0.14408 suffers from a buffer overflow vulnerability, which originates from the function fromNatlimit parameter page in the file /goform/Natlimit that fails to correctly validate the length of the input data, whi...
Tenda FH1202 /goform/AdvSetWan File Buffer Overflow Vulnerability
The Tenda FH1202 is a wireless router from Tenda China. The Tenda FH1202 version 1.2.0.14408 suffers from a buffer overflow vulnerability, which originates from the failure of the function fromAdvSetWan parameter PPPOEPassword to correctly validate the length of the input data in file...
Tenda FH1201 /goform/SafeEmailFilter File Buffer Overflow Vulnerability
The Tenda FH1201 is a wireless router from Tenda China. The Tenda FH1201 version 1.2.0.14408 suffers from a buffer overflow vulnerability that originates from the parameter page in the file /goform/SafeEmailFilter that fails to correctly validate the length of the input data, which can be exploit...