130931 matches found
D-Link DI-7003GV2 /H5/webgl.data File Information Disclosure Vulnerability
The D-Link DI-7003GV2 is a router from China-based AUO D-Link. The D-Link DI-7003GV2 suffers from an information disclosure vulnerability that originates from improper access control in the file /H5/webgl.data function sub41F0FC, which can be exploited by an attacker to cause information disclosu...
D-Link DI-7003GV2 /H5/restart.asp File Denial of Service Vulnerability
The D-Link DI-7003GV2 is a router from China-based AUO D-Link. A denial of service vulnerability exists in the D-Link DI-7003GV2, which originates from improper privilege management in the file /H5/restart.asp, and can be exploited by an attacker to cause a denial of service...
D-Link DI-7003GV2 /H5/get_version.data File Information Disclosure Vulnerability
The D-Link DI-7003GV2 is a router from China-based AUO D-Link. The D-Link DI-7003GV2 suffers from an information disclosure vulnerability that originates from improper access control in the file /H5/getversion.data, which can be exploited by an attacker to cause information disclosure...
D-Link DI-7003GV2 /H5/backup.asp File Denial of Service Vulnerability
The D-Link DI-7003GV2 is a router from China-based AUO D-Link. The D-Link DI-7003GV2 suffers from a denial of service vulnerability that originates from improper access control in the function sub4983B0 in file /H5/backup.asp, which can be exploited by an attacker to cause a denial of service...
D-Link DCS-932L /sbin/udev File Buffer Overflow Vulnerability
The D-Link DCS-932L is a network surveillance camera from China AUO D-Link. It is used for security and surveillance. The D-Link DCS-932L suffers from a buffer overflow vulnerability that originates from the failure of the parameter CameraName in the file /sbin/udev to properly validate the lengt...
D-Link DCS-932L /sbin/ucp file buffer overflow vulnerability
The D-Link DCS-932L is a network surveillance camera from China AUO D-Link. It is used for security and surveillance. The D-Link DCS-932L suffers from a buffer overflow vulnerability that originates from the failure of the parameter CameraName in the file /sbin/ucp to properly validate the length...
D-Link DCS-932L /bin/gpio file buffer overflow vulnerability
The D-Link DCS-932L is a network surveillance camera from China AUO D-Link. It is used for security and surveillance. The D-Link DCS-932L suffers from a buffer overflow vulnerability that originates from the failure of the parameter CameraName in the file /bin/gpio to properly validate the length...
D-Link DAP-2695 /adv_arpspoofing.php file cross-site scripting vulnerability
The D-Link DAP-2695 is a high-performance dual-band wireless access point from China's AUO D-Link. The D-Link DAP-2695 suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by the parameter harpmac in the file...
GNU PSPP Buffer Overflow Vulnerability
GNU PSPP is an application for data sampling, statistics and analysis from the American GNU community. GNU PSPP suffers from a buffer overflow vulnerability that originates from a boundary error when processing untrusted input. An attacker could exploit this vulnerability to cause a denial of...
Unspecified Vulnerability in D-Link DI-7003GV2
The D-Link DI-7003GV2 is a router from China-based AUO D-Link. A security vulnerability exists in the D-Link DI-7003GV2, which stems from improper handling of the file /H5/webgl.asp function sub41F4F0, which can be exploited by an attacker to cause an unverified password change...
Fuji Electric V-SFT set_plc_type_default Function Buffer Overflow Vulnerability
Fuji Electric V-SFT is a screen configuration software from Fuji Electric Japan. Fuji Electric V-SFT suffers from a buffer overflow vulnerability that originates from the failure of the setplctypedefault function in VS6MemInIF.dll to properly validate the length of input data, which can be...
Fuji Electric V-SFT MakeItemGlidZahyou Function Buffer Overflow Vulnerability
Fuji Electric V-SFT is a screen configuration software from Fuji Electric Japan. Fuji Electric V-SFT suffers from a buffer overflow vulnerability that originates from the MakeItemGlidZahyou function in VS6ComFile failing to correctly validate the length and size of input data, which can be...
Fuji Electric V-SFT CWinFontInf::WinFontMsgCheck function buffer overflow vulnerability
Fuji Electric V-SFT is a screen configuration software from Fuji Electric Japan. Fuji Electric V-SFT suffers from a buffer overflow vulnerability that originates from the CWinFontInf::WinFontMsgCheck function in VS6EditData.dll that fails to correctly validate the length and size of input data,...
Fuji Electric V-SFT CV7BaseMap::WriteV7DataToRom function buffer overflow vulnerability
Fuji Electric V-SFT is a screen configuration software from Fuji Electric Japan. Fuji Electric V-SFT suffers from a buffer overflow vulnerability that stems from the CV7BaseMap::WriteV7DataToRom function in VS6ComFile failing to properly validate the length and size of input data, which can be...
Fuji Electric V-SFT CTxSubFile::get_ProgramFile_name function buffer overflow vulnerability
Fuji Electric V-SFT is a screen configuration software from Fuji Electric Japan. Fuji Electric V-SFT suffers from a buffer overflow vulnerability that originates from the CTxSubFile::getProgramFilename function in VS6File that fails to correctly validate the length and size of input data, which c...
Fuji Electric V-SFT Conv_Macro_Data function buffer overflow vulnerability
Fuji Electric V-SFT is a screen configuration software from Fuji Electric Japan. Fuji Electric V-SFT suffers from a buffer overflow vulnerability that originates from the failure of the ConvMacroData function in VS6EditData to properly validate the length of input data, which can be exploited by ...
Fuji Electric V-SFT CGamenDataRom::set_mr400_strc function buffer overflow vulnerability
Fuji Electric V-SFT is a screen configuration software from Fuji Electric Japan. Fuji Electric V-SFT suffers from a buffer overflow vulnerability that originates from the CGamenDataRom::setmr400strc function in VS6EditData that fails to correctly validate the length and size of the input data,...
Fuji Electric V-SFT VS4_SaveEnvFile function buffer overflow vulnerability
Fuji Electric V-SFT is a screen configuration software from Fuji Electric Japan. Fuji Electric V-SFT suffers from a buffer overflow vulnerability that stems from the VS4SaveEnvFile function in VS6EditData failing to properly validate the length and size of input data, which can be exploited by an...
Fuji Electric V-SFT set_temp_type_default function buffer overflow vulnerability
Fuji Electric V-SFT is a screen configuration software from Fuji Electric Japan. Fuji Electric V-SFT suffers from a buffer overflow vulnerability that originates from the settemptypedefault function in VS6MemInIF that fails to properly validate the length of input data, which can be exploited by ...
Human Metapneumovirus Testing Management System /profile.php File SQL Injection Vulnerability
Human Metapneumovirus Testing Management System is a human subpneumovirus testing management system. The Human Metapneumovirus Testing Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter...
FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14506)
FreeFloat FTP Server is an FTP service from Freefloat. A buffer overflow vulnerability exists in FreeFloat FTP Server, which stems from the component TRACE Command Handler failing to properly validate the length size of input data, no details of the vulnerability are provided at this time...
CampCodes Online Shopping Portal /forgot-password.php File SQL Injection Vulnerability
CampCodes Online Shopping Portal is an online shopping portal from CampCodes, Inc. Campcodes Online Shopping Portal suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter email in the file /forgot-password.php. An...
Park Ticketing Management System /forgot-password.php File SQL Injection Vulnerability
Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter email/contactno in the file /forgot-password.php. A...
Tenda AC7 /goform/SetRebootTimer File Buffer Overflow Vulnerability
Tenda AC7 is a wireless router from Tenda, a Chinese company. The Tenda AC7 suffers from a buffer overflow vulnerability, which originates from the parameter reboottime in the file /goform/SetRebootTimer that fails to correctly validate the length of the input data, and can be exploited by an...
Online Course Registration /news.php File SQL Injection Vulnerability
Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter newstitle in the file /news.php. An attacker can exploit this...
Credit Card Application Management System SQL Injection Vulnerability
Credit Card Application Management System is a credit card application management system. Credit Card Application Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter Username in the file...
Daily Expense Tracker System SQL Injection Vulnerability (CNVD-2025-31000)
Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a SQL injection vulnerability, which originates from the lack of validation of the fromdate/todate parameter in the file /expense-monthwise-reports-detailed.php with...
Daily Expense Tracker System SQL Injection Vulnerability (CNVD-2025-31002)
Daily Expense Tracker System is a PHP and MySQL based daily expense tracking system. Daily Expense Tracker System suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter fullname/contactnumber in the file...
News Portal Project /contactus.php File SQL Injection Vulnerability
News Portal Project is a news portal project. News Portal Project suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter pagetitle in the file /admin/contactus.php. An attacker can exploit this vulnerability to...
Employee Record System current_employees.php file cross-site scripting vulnerability
Employee Record System is an employee record system. Employee Record System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameters employeedid/firstname/middlename/lastname in the file...
Employee Record System getData.php File SQL Injection Vulnerability
Employee Record System is an employee record system. Employee Record System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter keywords in the file /dashboard/getData.php. An attacker can exploit this...
Human Metapneumovirus Testing Management System /edit-phlebotomist.php File SQL Injection Vulnerability
Human Metapneumovirus Testing Management System is a human subpneumovirus testing management system. Human Metapneumovirus Testing Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally-entered SQL statements in the parameter...
Notice Board System login.php File SQL Injection Vulnerability
Notice Board System is a bulletin board system. The Notice Board System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the Username parameter of file /login.php. The vulnerability can be exploited by an attacker to...
CampCodes Sales and Inventory System /pages/supplier_add.php File SQL Injection Vulnerability
CampCodes Sales and Inventory System is a sales and inventory system from CampCodes, Inc. The CampCodes Sales and Inventory System suffers from a SQL injection vulnerability that stems from the lack of validation of the parameter Name in the file /pages/supplieradd.php for externally entered SQL...
Zoo Management System /admin/profile.php File SQL Injection Vulnerability
Zoo Management System is a zoo management system. Zoo Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter contactnumber in the file /admin/profile.php. An attacker can exploit this...
Zoo Management System /admin/edit-animal-details.php File SQL Injection Vulnerability
Zoo Management System is a zoo management system. Zoo Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter aname in the file /admin/edit-animal-details.php. An attacker can exploit this...
Zoo Management System /admin/contactus.php File SQL Injection Vulnerability
Zoo Management System is a zoo management system. Zoo Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter mobnum in the file /admin/contactus.php. An attacker can exploit this vulnerability ...
Directory Management System /searchdata.php Cross-Site Scripting Vulnerability
Directory Management System is a directory management system. Directory Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter searchdata in the file /searchdata.php, which can be...
Zoo Management System /admin/view-foreigner-ticket.php File SQL Injection Vulnerability
Zoo Management System is a zoo management system. Zoo Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter viewid in file /admin/view-foreigner-ticket.php. An attacker can exploit this...
Park Ticketing Management System /view-foreigner-ticket.php File SQL Injection Vulnerability
Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter viewid in the file /view-foreigner-ticket.php. An...
Park Ticketing Management System /normal-search.php File SQL Injection Vulnerability
Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter searchdata in the file /normal-search.php. An attacker c...
Park Ticketing Management System /foreigner-search.php File SQL Injection Vulnerability
Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter searchdata in the file /foreigner-search.php. An...
Online Course Registration /edit-student-profile.php File SQL Injection Vulnerability
Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter cgpa in the file /edit-student-profile.php. An attacker can...
Online Course Registration /admin/department.php File SQL Injection Vulnerability
Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter department in the file /admin/department.php. An attacker can...
Employee Record Management System registererms.php File SQL Injection Vulnerability
Employee Record Management System is an employee record management system. Employee Record Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Email in the file /registererms.php. An attacke...
Car Rental Project Unlimited Upload Vulnerability
Car Rental Project is a car rental program. Car Rental Project has an unlimited upload vulnerability that stems from the lack of valid validation of uploaded files by the parameters img1/img2/img3/img4/img5 in the file /admin/post-avehical.php. No details of the vulnerability are available at thi...
Auto Taxi Stand Management System /admin/new-autoortaxi-entry-form.php File SQL Injection Vulnerability
Auto Taxi Stand Management System is an auto cab stand management system. Auto Taxi Stand Management System suffers from a SQL injection vulnerability, which originates from the lack of validation of an externally entered SQL statement in the parameter drivername in the file...
Auto Taxi Stand Management System /admin/index.php File SQL Injection Vulnerability
Auto Taxi Stand Management System is an auto cab stand management system. Auto Taxi Stand Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter Username in the file /admin/index.php. An...
Auto Taxi Stand Management System /admin/forgot-password.php File SQL Injection Vulnerability
Auto Taxi Stand Management System is an auto cab stand management system. Auto Taxi Stand Management System suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter email in the file /admin/forgot-password.php. An...
Auto Taxi Stand Management System /admin/admin-profile.php File SQL Injection Vulnerability
Auto Taxi Stand Management System is an auto cab stand management system. Auto Taxi Stand Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter mobilenumber in the file /admin/admin-profile.ph...