Ivanti Endpoint Manager Mobile Code Execution Vulnerability

Ivanti Endpoint Manager Mobile EPMM is an enterprise-grade mobile device management solution for centralized management and protection of mobile devices in the enterprise, supporting device enrollment, application distribution, security policy enforcement, and more. A code execution vulnerability...

Ivanti Endpoint Manager Mobile Authentication Bypass Vulnerability

Ivanti Endpoint Manager Mobile EPMM is an enterprise-grade mobile device management solution for centralized management and protection of mobile devices in the enterprise, supporting device enrollment, application distribution, security policy enforcement, and more. An authentication bypass...

Weak Password Vulnerability in H3C ER5100G2 of Xinhua San Technologies Co.

The H3C ER5100G2 is an enterprise-class Gigabit high-performance router. A weak password vulnerability exists in the H3C ER5100G2 of Xinhua San Technologies Limited, which can be exploited by an attacker to log into the system and obtain sensitive information...

Unspecified Vulnerability in RT-Labs P-Net (CNVD-2025-10048)

RT-Labs P-Net is an open source PROFINET protocol stack from RT-Labs that enables standard communication between industrial devices and PROFINET controllers. A security vulnerability exists in RT-Labs P-Net version 1.0.1 and prior versions, which can be exploited by an attacker to cause an IO...

TOTOLINK A720R Access Control Error Vulnerability

TOTOLINK A720R is a wireless router from China's Gion Electronics TOTOLINK. TOTOLINK A720R suffers from an access control error vulnerability that stems from improper access control of the parameter topicurl in the Log Handler component file /cgi-bin/cstecgi.cgi, no details of the vulnerability a...

WordPress Ajax Load More plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress Ajax Load More plugin, which stems from the application's lack of effective filtering and escaping of user-supplied...

Tenda RX2 Pro Access Control Error Vulnerability

Tenda RX2 Pro is a high performance WiFi 6 signal amplifier from Tenda China. The Tenda RX2 Pro suffers from an access control error vulnerability that can be exploited by an attacker to enable ate management binary...

Tenda RX2 Pro ate Management Service Input Validation Error Vulnerability

Tenda RX2 Pro is a high performance WiFi 6 signal amplifier from Tenda China. The Tenda RX2 Pro suffers from an input validation error vulnerability that stems from a lack of input validation in the ate management service, no details of the vulnerability are provided at this time...

PCMan FTP Server TRACE Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the TRACE command handler failing to properly validate the length and size of input data, which can be exploited by an attacker to cause a denial of...

NETGEAR EX6200 sub_54340 Function Buffer Overflow Vulnerability

NETGEAR EX6200 is a wireless network signal extender from NETGEAR. The NETGEAR EX6200 suffers from a buffer overflow vulnerability that originates from the sub54340 function parameter host failing to properly validate the length of input data, which can be exploited by an attacker to execute...

PCMan FTP Server SEND Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability, which originates from the SEND command handler failing to properly validate the length and size of the input data, which can be exploited by an attacker to cause a deni...

PCMan FTP Server RMD Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability, which originates from the RMD command handler failing to properly validate the length and size of input data, which can be exploited by an attacker to cause a denial of...

PCMan FTP Server RMDIR Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the RMDIR command handler failing to properly validate the length of input data, which can be exploited by an attacker to cause a denial of service...

PCMan FTP Server RECV Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the RECV command handler failing to properly validate the length of input data, which can be exploited by an attacker to cause a denial of service...

NETGEAR EX6200 sub_47F7C Function Buffer Overflow Vulnerability

NETGEAR EX6200 is a wireless network signal extender from NETGEAR. The NETGEAR EX6200 suffers from a buffer overflow vulnerability that originates from the sub47F7C function parameter host failing to properly validate the length of input data, which can be exploited by an attacker to execute...

PCMan FTP Server QUOTE Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the QUOTE command handler failing to properly validate the length of input data, which can be exploited by an attacker to cause a denial of service...

PCMan FTP Server PROMPT Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the PROMPT command handler failing to properly validate the length of input data, which can be exploited by an attacker to cause a denial of service...

Tenda DAP-1520 set_ws_action function buffer overflow vulnerability

Tenda DAP-1520 is a dual-band wireless access point from Tenda China. The Tenda DAP-1520 suffers from a buffer overflow vulnerability, which originates from the failure of the function setwsaction in the file /dws/api to correctly validate the length of the input data, which can be exploited by a...

PCMan FTP Server MDIR Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the MDIR command handler failing to properly validate the length of input data, which can be exploited by an attacker to cause a denial of service...

PCMan FTP Server MDELETE Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the MDELETE command handler failing to properly validate the length of input data, which can be exploited by an attacker to cause a denial of servic...

PCMan FTP Server LS Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the LS command handler failing to properly validate the length and size of input data, which can be exploited by an attacker to cause a denial of...

Tenda AC8 Buffer Overflow Vulnerability (CNVD-2025-09923)

Tenda AC8 is a wireless router from Tenda, a Chinese company. Tenda AC8 suffers from a buffer overflow vulnerability, which originates from the parameter shareSpeed in /goform/MtuSetMacWan that fails to correctly validate the length and size of the input data, which can be exploited by an attacke...

PCMan FTP Server LIST Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the LIST command handler failing to correctly validate the length and size of input data, which can be exploited by an attacker to cause a denial of...

PCMan FTP Server LCD Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the LCD command handler failing to properly validate the length and size of input data, which can be exploited by an attacker to cause a denial of...

NETGEAR JWNR2000v2 sub_435E04 Function Command Injection Vulnerability

The NETGEAR JWNR2000v2 is a wireless router from NETGEAR. The NETGEAR JWNR2000v2 suffers from a command injection vulnerability that stems from the sub435E04 function parameter host failing to correctly filter constructor command special characters, commands, and so on. No details of the...

PCMan FTP Server HASH Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the HASH command handler failing to properly validate the length of input data, which can be exploited by an attacker to cause a denial of service...

NETGEAR JWNR2000v2 sub_41A914 function buffer overflow vulnerability

The NETGEAR JWNR2000v2 is a wireless router from NETGEAR. The NETGEAR JWNR2000v2 suffers from a buffer overflow vulnerability that stems from the sub41A914 function parameter host failing to correctly validate the length size of the input data, no detailed vulnerability details are provided at th...

PCMan FTP Server 'BELL' Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server 'BELL' suffers from a punch zone overflow vulnerability that originates from the BELL command handler failing to properly validate the length and size of input data, which can be exploited by an attacker to execute...

NETGEAR JWNR2000v2 get_cur_lang_ver function buffer overflow vulnerability

The NETGEAR JWNR2000v2 is a wireless router from NETGEAR. The NETGEAR JWNR2000v2 suffers from a buffer overflow vulnerability that originates from the getcurlangver function parameter host failing to correctly validate the length of the input data, which can be exploited by an attacker to execute...

PCMan FTP Server 'ASCII' Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server 'ASCII exists' buffer overflow vulnerability, the vulnerability stems from the ASCII command handler fails to properly validate the length size of the input data, an attacker can use this vulnerability to execute...

PCMan FTP Server 'APPEND' Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. A buffer overflow vulnerability exists in PCMan FTP Server 'APPEND', which originates from the APPEND command handler failing to properly validate the length and size of input data, and can be exploited by an attacker to execute...

IBM Concert Software Path Traversal Vulnerability

IBM Concert Software is a new tool from International Business Machines IBM Inc. that uses generative AI to help manage complex cloud-native applications. A path traversal vulnerability exists in IBM Concert Software that stems from improperly handling URL requests that contain point sequences, a...

IBM Cloud Pak for Business Automation Denial of Service Vulnerability

IBM Cloud Pak for Business Automation is a modular set of integrated software components from International Business Machines IBM, built for any hybrid cloud, designed to automate work and accelerate business growth. A denial of service vulnerability exists in IBM Cloud Pak for Business Automatio...

NETGEAR EX6200 sub_3C03C Function Buffer Overflow Vulnerability

NETGEAR EX6200 is a wireless network signal extender from NETGEAR. The NETGEAR EX6200 suffers from a buffer overflow vulnerability, which originates from the sub3C03C function parameter host failing to correctly validate the length of the input data, which can be exploited by an attacker to execu...

Google Chrome Security Bypass Vulnerability (CNVD-2025-10056)

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome prior to version 136.0.7103.59, which stems from insufficient data validation in DevTools, and can be exploited by an attacker to cause an access control bypass...

WordPress Awin-Advertiser Tracking for WooCommerce plugin cross-site request forgery vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site request forgery vulnerability exists in the WordPress Awin-Advertiser Tracking for WooCommerce plugin, which stems from the WEB application not adequately verifying...

Siemens VersiCharge AC Series EV Charger Modbus Port Arbitrary Code Execution Vulnerability

The VersiCharge AC Series Electric Vehicle Charger is an electric vehicle charging device from Siemens for a variety of application scenarios, including workplaces, retail, parking lots, multi-unit housing, public charging and home charging. An arbitrary code execution vulnerability exists in the...

WordPress Awesome Gallery plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress Awesome Gallery plugin, which stems from the application's lack of effective filtering and escaping of user-supplied...

Siemens Siveillance Video V2024 R1 System Configuration Password Reset Vulnerability

Siveillance Video formerly known as Siveillance VMS is a powerful IP video management software designed for deployments ranging from small and simple to large-scale and high-security.The Siveillance Video product portfolio consists of four editions; Siveillance Video Core, Core Plus, Advanced, an...

WordPress AWEOS WP Lock plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress AWEOS WP Lock plugin, which stems from the application's lack of effective filtering and escaping of user-supplied...

WordPress Amazon Product in a Post plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress Amazon Product in a Post plugin, which stems from the application's lack of effective filtering and escaping of...

WordPress AHAthat plugin cross-site request forgery vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site request forgery vulnerability exists in the WordPress AHAthat plugin, which stems from the WEB application not adequately verifying that a request is coming from a...

WordPress Advanced File Manager plugin missing license vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A lack of authorization vulnerability exists in the WordPress Advanced File Manager plugin that stems from a lack of authorization and can be exploited by an attacker to modify...

WordPress Accept Donations with PayPal plugin Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site request forgery vulnerability exists in the WordPress Accept Donations with PayPal plugin, which stems from the WEB application not adequately verifying that a...

WordPress aBlocks plugin cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in WordPress aBlocks plugin, which stems from the application's lack of effective filtering and escaping of user-supplied data, and n...

Tenda RX3 Command Injection Vulnerability

Tenda RX3 is a dual-band WiFi 6 home wireless router from Tenda China. It is used for home network coverage and supports high-speed wireless connection. The Tenda RX3 suffers from a command injection vulnerability that stems from the failure of the file /goform/telnet to properly filter construct...

Tenda FH451 Buffer Overflow Vulnerability

The Tenda FH451 is a router from the Chinese company Tenda. The Tenda FH451 suffers from a buffer overflow vulnerability that stems from the failure of function.frmL7ImForm to correctly validate the length and size of input data, no details of the vulnerability are available at this time...

Unspecified Vulnerability in RT-Labs P-Net (CNVD-2025-10052)

RT-Labs P-Net is an open source PROFINET protocol stack from RT-Labs that enables standard communication between industrial devices and PROFINET controllers. A security vulnerability exists in RT-Labs P-Net version 1.0.1 and prior versions, which can be exploited by attackers to cause memory...

Unspecified Vulnerability in RT-Labs P-Net (CNVD-2025-10051)

RT-Labs P-Net is an open source PROFINET protocol stack from RT-Labs that enables standard communication between industrial devices and PROFINET controllers. A security vulnerability exists in RT-Labs P-Net version 1.0.1 and prior versions, which can be exploited by attackers to cause memory...

Unspecified Vulnerability in RT-Labs P-Net

RT-Labs P-Net is an open source PROFINET protocol stack from RT-Labs that enables standard communication between industrial devices and PROFINET controllers. A security vulnerability exists in RT-Labs P-Net version 1.0.1 and prior versions, which stems from an unchecked loop condition that can be...