Emergency Ambulance Hiring Portal /admin/edit-ambulance.php File SQL Injection Vulnerability

Emergency Ambulance Hiring Portal is an emergency ambulance hiring portal. Emergency Ambulance Hiring Portal suffers from a SQL injection vulnerability that stems from improper handling of the parameter dconnum in the file /admin/edit-ambulance.php, no details of the vulnerability are available a...

Park Ticketing Management System foreigner-search.php File HTML Injection Vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System has an HTML injection vulnerability that stems from improper handling of the searchdata parameter in the foreigner-search.php file. No details of the vulnerability are available at this time...

Park Ticketing Management System normal-bwdates-reports-details.php file HTML injection vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from an HTML injection vulnerability that stems from improper handling of the fromdate and todate parameters in the normal-bwdates-reports-details.php file. No details of the...

Park Ticketing Management System normal-bwdates-reports-details.php file SQL injection vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that stems from improper handling of the todate parameter in the normal-bwdates-reports-details.php file. An attacker could use this vulnerability to...

Park Ticketing Management System add-foreigners-ticket.php File SQL Injection Vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that stems from improper handling of the cprice parameter in the add-foreigners-ticket.php file. An attacker can exploit this vulnerability to query ...

Park Ticketing Management System foreigner-bwdates-reports-details.php file SQL injection vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that stems from improper handling of the todate parameter in the foreigner-bwdates-reports-details.php file. An attacker can exploit this vulnerabili...

Park Ticketing Management System HTML Injection Vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from an HTML injection vulnerability that stems from the mishandling of the searchdata parameter in the normal-search.php file, resulting in an HTML injection attack. No details of the...

Park Ticketing Management System foreigner-bwdates-reports-details.php file cross-site scripting vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a cross-site scripting vulnerability that stems from improper handling of the fromdate and todate parameters in the foreigner-bwdates-reports-details.php file, which can be...

Park Ticketing Management System /profile.php File SQL Injection Vulnerability

Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that stems from an incorrect manipulation of the parameter adminname in the /profile.php file that results in SQL injection. No details of the...

Employee Record Management System editmyeducation.php File SQL Injection Vulnerability

Employee Record Management System is an employee record management system. Employee Record Management System suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter coursepg in the file /editmyeducation.php resulting in SQL injection. No details of the...

Unspecified Vulnerability in Zoom Workplace Apps for Windows

Zoom Workplace Apps for Windows is an official suite of collaboration tools from Zoom that includes core features such as team chat, whiteboards, notes, and more, and is required to be used through a Zoom Meetings account. A security vulnerability exists in Zoom Workplace Apps for Windows, which...

Zoom Workplace Apps for Windows Null Pointer Dereference Vulnerability

Zoom Workplace Apps for Windows is an official suite of collaboration tools from Zoom that includes core features such as team chat, whiteboards, notes, and more, and is required to be used through a Zoom Meetings account. A null pointer dereference vulnerability exists in Zoom Workplace Apps for...

Art Gallery Management System SQL Injection Vulnerability

Art Gallery Management System is an art gallery management system. Art Gallery Management System has a SQL injection vulnerability, the vulnerability stems from improper operation of the parameter arttype in the file /admin/add-art-type.php, which can be exploited by an attacker to query a string...

Huawei HarmonyOS Improper Privilege Control Vulnerability

Huawei HarmonyOS is an operating system from the Chinese company Huawei. Huawei HarmonyOS suffers from an Improper Privilege Control vulnerability that stems from improper privilege control in the Contacts module. No details of the vulnerability are available at this time...

Huawei HarmonyOS Information Disclosure Vulnerability

Huawei HarmonyOS is an operating system from the Chinese company Huawei. Huawei HarmonyOS suffers from an information disclosure vulnerability that stems from insufficient protection of information in the media library module, which affects service confidentiality. No details of the vulnerability...

Huawei HarmonyOS Unauthorized Access Vulnerability

Huawei HarmonyOS is an operating system from the Chinese company Huawei. Huawei HarmonyOS suffers from an unauthorized access vulnerability that stems from unauthorized access to the application lock module. An attacker can exploit the vulnerability to authenticate and access unauthorized resourc...

Huawei HarmonyOS Process Residency Vulnerability

Huawei HarmonyOS is an operating system from the Chinese company Huawei. Huawei HarmonyOS suffers from a process-resident vulnerability. No details of the vulnerability are available at this time...

Curfew e-Pass Management System /admin/pass-bwdates-reports-details.php File SQL Injection Vulnerability

Curfew e-Pass Management System is an electronic pass management system. Curfew e-Pass Management System suffers from a SQL injection vulnerability that originates from an incorrect operation of the parameter fromdate in the /admin/pass-bwdates-reports-details.php file that results in SQL...

Linux kernel use-after-release vulnerability (CNVD-2025-10177)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from a post-release reuse vulnerability that stems from Bluetooth L2CAP post-release reuse, which could lead to arbitrary code execution. No detailed...

Huawei HarmonyOS Permission Issues Vulnerability

Huawei HarmonyOS is an operating system from the Chinese company Huawei. Huawei HarmonyOS suffers from a privilege issue vulnerability that stems from an improper implementation of the file system module's authentication logic, which can be exploited by an attacker to steal sensitive information ...

Zoom Workplace Apps for Windows Null Pointer Dereference Vulnerability

Zoom Workplace Apps for Windows is the official suite of collaboration tools from Zoom, including core features such as team chat, whiteboards, notes, and more, available through a Zoom Meetings account. A null pointer dereference vulnerability exists in Zoom Workplace Apps for Windows, which can...

Directory Management System admin/edit-directory.php File SQL Injection Vulnerability

Directory Management System is a directory management system. Directory Management System suffers from a SQL injection vulnerability that stems from improper handling of the email parameter in the admin/edit-directory.php file, which can be exploited to query strings and ultimately trick the serv...

JetBrains IntelliJ IDEA Log Information Disclosure Vulnerability

JetBrains IntelliJ IDEA is a Czech JetBrains set of integrated development environment for the Java language . JetBrains IntelliJ IDEA suffers from a log information disclosure vulnerability that originates from code being logged in the idea.log file. An attacker could exploit this vulnerability ...

Tenda RX3 GetParentControlInfo Stack Overflow Vulnerability

The Tenda RX3 is a home wireless router from the Chinese company Tenda. A stack overflow vulnerability exists in the Tenda RX3 GetParentControlInfo function when handling the mac parameter, no detailed vulnerability details are provided at this time...

D-Link DIR-619L curTime Buffer Overflow Vulnerability

The D-Link DIR-619L is a cost-effective wireless router designed for home office Internet needs. The D-Link DIR-619L suffers from a buffer overflow vulnerability that stems from the formSetEasyWizard function mishandling the curTime parameter, which can be exploited by an attacker to submit a...

D-Link DIR-619L wan_connected buffer overflow vulnerability

The D-Link DIR-619L is a cost-effective wireless router designed for home office Internet needs. The D-Link DIR-619L suffers from a buffer overflow vulnerability that stems from the improper handling of the wanconnected parameter in the formEasySetupWizard3 function, which can be exploited by an...

Dell Storage Manager Elevation of Privilege Vulnerability

Dell Storage Manager is a centralized storage management platform from Dell USA. An elevation of privilege vulnerability exists in Dell Storage Manager, which can be exploited by an attacker to submit a special request for elevation of privilege...

SonicWall SMA100 SSL-VPN Path Traversal Vulnerability

The SonicWall SMA100 is a secure access gateway appliance from SonicWall USA. A path traversal vulnerability exists in the SonicWall SMA100, which can be exploited by a user with SSLVPN privileges to inject a path traversal sequence that can be used by an attacker to make any directory writable...

TOTOLINK A3100R comment buffer overflow vulnerability

TOTOLINK A3100R is a series of wireless routers from China's Gion Electronics TOTOLINK. The TOTOLINK A3100R suffers from a buffer overflow vulnerability, which originates from the comment parameter in setIpPortFilterRules, that can be exploited by an attacker to crash an application or execute...

NETGEAR EX8000 action_wireless command injection vulnerability

The NETGEAR EX8000 is a tri-band WiFi wireless extender , which is mainly used to extend WiFi coverage, eliminate WiFi dead spots, and provide faster network speeds. The NETGEAR EX8000 suffers from a command injection vulnerability that originates from the Iface parameter in the actionwireless...

Dell Storage Manager Command Injection Vulnerability

Dell Storage Manager is a centralized storage management platform from Dell USA. A command injection vulnerability exists in Dell Storage Manager that stems from improper neutralization of special elements in commands, no details of the vulnerability are available at this time...

Dell PowerScale OneFS Out-of-Bounds Write Vulnerability

Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. An out-of-bounds write vulnerability exists in Dell PowerScale OneFS, which can be exploited by an attacker to submit a special request that could crash the servi...

SAMSUNG Notes out-of-bounds read vulnerability (CNVD-2025-24712)

SAMSUNG Notes is a South Korean company Samsung SAMSUNG used to provide a record function application software. SAMSUNG Notes suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to read out-of-bounds memory...

SonicWall SMA100 SSL-VPN Remote Command Injection Vulnerability

The SonicWall SMA100 is a secure access gateway appliance from SonicWall USA. An input validation vulnerability exists in the SonicWall SMA100 SSL-VPN, which can be exploited by a remote attacker to submit a special request that can inject shell commands, upload files, and execute arbitrary...

Tenda RX3 fromSetWifiGusetBasic Stack Overflow Vulnerability

The Tenda RX3 is a home wireless router from the Chinese company Tenda. A stack overflow vulnerability exists in the Tenda RX3 fromSetWifiGusetBasic function when handling the shareSpeed parameter, which can be exploited by an attacker to submit a special request that crashes the application and...

IBM CICS TX gets code execution vulnerability

IBM CICS TX Standard is a comprehensive single transaction runtime package from International Business Machines IBM. A security vulnerability exists in the IBM CICS TX gets function handling DNS return requests, which can be exploited by a local attacker to submit a special request that can be us...

SonicWall SMA100 Path Traversal Vulnerability

The SonicWall SMA100 is a secure access gateway appliance from SonicWall USA. A path traversal vulnerability exists in the SonicWall SMA100, which can be exploited by an attacker to delete arbitrary files, resulting in a reboot of factory settings...

IBM Jazz Reporting Service Code Issue Vulnerability

IBM Jazz Reporting Service is a suite of ready-to-use reporting components from International Business Machines IBM. The product includes features such as report generation, data collection and lifecycle queries. A code issue vulnerability exists in IBM Jazz Reporting Service that stems from a...

Tenda W18E Stack Buffer Overflow Vulnerability

The Tenda W18E is a wireless router from the Chinese company Tenda. The Tenda W18E suffers from a stack buffer overflow vulnerability that originates from a stack buffer overflow in the formSetAccountList function's handling of the parameter Password. An attacker could exploit this vulnerability ...

Unspecified Vulnerability in PyTorch (CNVD-2025-23290)

PyTorch is a Python package open-sourced by PyTorch. PyTorch has a security vulnerability that can be exploited by attackers to cause memory corruption...

Mattermost has an unspecified vulnerability

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost has a security vulnerability that stems from the Wrangler plugin that can bypass AI access control. No details of the vulnerability are provided at this time...

Mattermost Improper Access Control Vulnerability

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an Improper Access Control Vulnerability, no details of the vulnerability are provided at this time...

Cisco IOS XE Software Web Interface Command Injection Vulnerability

Cisco IOS is the interconnected Internet operating system used on most Cisco Systems routers and network switches. A security vulnerability exists in the Cisco IOS XE Software web interface, which can be exploited by a remote attacker to submit a special request that can execute arbitrary command...

Information Leakage Vulnerability in Ruiyou Tianyi Virtual System of Xi'an Ruiyou Information Technology Information Co.

Xi'an Ruiyou Information Technology Co., Ltd. is a professional virtualization and cloud computing solution provider. Xi'an Ruiyou Information Technology Information Co., Ltd Ruiyou Tianyi Virtual System has an information leakage vulnerability, which can be exploited by attackers to obtain...

Huawei HarmonyOS Out-of-Bounds Read/Write Vulnerability

Huawei HarmonyOS is an operating system from the Chinese company Huawei. Huawei HarmonyOS suffers from an out-of-bounds read/write vulnerability. The vulnerability stems from the kernel module failing to properly check array boundaries when processing certain data. An attacker can exploit this...

Denial of Service Vulnerability in H3C N12 of Xinhua San Technologies Co.

The H3C N12 is a wireless router from China's Xinhua San H3C. A denial of service vulnerability exists in the H3C N12 of Xinhua San Technologies Co. that can be exploited by attackers to cause a denial of service...

SQL Injection Vulnerability in Multimedia Integrated Service Display System of Beijing Divine Vision Han Technology Co.

Ltd. is a deep-rooted enterprise in the field of visualization. A SQL injection vulnerability exists in the multimedia integrated business display system of Beijing Divine Vision Han Technology Co. Ltd, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in Multimedia Integrated Service Display System of Beijing Divine Vision Han Technology Co.

Ltd. is a deep-rooted enterprise in the field of visualization. A SQL injection vulnerability exists in the multimedia integrated business display system of Beijing Divine Vision Han Technology Co. Ltd, which can be exploited by attackers to obtain sensitive information from the database...

Command Execution Vulnerability in H3C NX54 of Xinhua San Technologies Co.

The H3C NX54 is a Gigabit dual-band router that supports the Wi-Fi 6 802.11ax protocol. A command execution vulnerability exists in the H3C NX54 of Xinhua San Technologies Co. that can be exploited by an attacker to execute commands...

Dell Storage Manager XML External Entity References Improperly Restricted Vulnerability

Dell Storage Manager is software for managing and monitoring Dell storage systems, providing centralized management, performance monitoring, and troubleshooting with support for a wide range of Dell storage products. An improperly restricted XML external entity reference vulnerability exists in...