lunary /v1/templates/{id}/versions endpoint access control error vulnerability

lunary is lunary open source a production toolkit for LLM . An access control error vulnerability exists in lunary, which stems from improper access control in the /v1/templates/id/versions endpoint, and can be exploited by an attacker to modify any user's templates...

Tenda AC6 Buffer Overflow Vulnerability (CNVD-2025-07605)

The Tenda AC6 is a wireless router from the Chinese company Tenda. The Tenda AC6 suffers from a buffer overflow vulnerability that originates from the timeZone parameter in the /goform/fastsettingwifiset file that fails to properly validate the length of the input data, which can be exploited by ...

Tenda AC8 Stack Buffer Overflow Vulnerability (CNVD-2025-07606)

Tenda AC8 is a wireless router from Tenda, a Chinese company. The Tenda AC8 suffers from a stack buffer overflow vulnerability, which stems from the deviceid parameter in the getparentControllistInfo function failing to properly validate the length of the input data, which can be exploited by an...

Tenda AX12 Buffer Overflow Vulnerability (CNVD-2025-07608)

Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from Tenda China. The Tenda AX12 suffers from a buffer overflow vulnerability that originates from the sub43fdcc function in /goform/SetNetControlList that fails to correctly validate the length of the input data, which can be exploited by ...

Tenda i12 Buffer Overflow Vulnerability (CNVD-2025-08309)

The Tenda i12 is a Tenda Ceiling Mount Wireless Access Point from Tenda China. The Tenda i12 suffers from a buffer overflow vulnerability that originates from the ping1 parameter in the formSetAutoPing function failing to properly validate the length of the input data, which can be exploited by a...

GPT Academic path traversal vulnerability (CNVD-2025-22739)

GPT Academic is an interface that provides pragmatic interactions for LLM grand language models such as GPT/GLM. GPT Academic suffers from a path traversal vulnerability that stems from an unverified 7z file extraction, which can be exploited by an attacker to perform arbitrary file writes, leadi...

GPT Academic Remote Code Execution Vulnerability

GPT Academic is an interface that provides pragmatic interactions for LLM grand language models such as GPT/GLM. GPT Academic suffers from a remote code execution vulnerability that stems from not properly validating a user-supplied RAR file, which can be exploited by an attacker to cause remote...

D-Link DIR-605L/DIR-618 formSetPassword Function Access Control Error Vulnerability

The D-Link DIR-605L and D-Link DIR-618 are both a wireless router from China-based AUO D-Link. An Access Control Error vulnerability exists in the D-Link DIR-618 version 2.02 and the D-Link DIR-605L version 3.02, which stems from improper access control of the file /goform/formSetPassword, and ca...

D-Link DIR-605L/DIR-618 formSetDomainFilter Function Access Control Error Vulnerability

The D-Link DIR-605L and D-Link DIR-618 are both a wireless router from China-based AUO D-Link. An access control error vulnerability exists in the D-Link DIR-618 version 2.02 and the D-Link DIR-605L version 3.02, which stems from improper access control in the file /goform/formSetDomainFilter, an...

D-Link DIR-605L/DIR-618 formSetDDNS Function Access Control Error Vulnerability

The D-Link DIR-605L and D-Link DIR-618 are both a wireless router from China-based AUO D-Link. An Access Control Error vulnerability exists in the D-Link DIR-618 version 2.02 and DIR-605L version 3.02, which stems from improper access control of the file /goform/formSetDDNS, and can be exploited ...

lunary access control error vulnerability (CNVD-2025-07600)

lunary is lunary open source a production toolkit for LLM . An access control error vulnerability exists in lunary that stems from improper access control on the /prompts/promptid endpoint, and no detailed vulnerability details are provided at this time...

Unspecified vulnerability in Lunary (CNVD-2025-06937)

Lunary is Lunary open source a production toolkit for LLM . Lunary has a security vulnerability that stems from improper privilege management, which can be exploited by an attacker to cause an administrator to bypass role controls to access billing information...

lunary /v1/evaluators/endpoint access control error vulnerability

lunary is lunary open source a production toolkit for LLM . An access control error vulnerability exists in lunary, which stems from insufficient access control in /v1/evaluators/endpoints, and can be exploited by an attacker to obtain sensitive information...

LiteLLM Resource Management Error Vulnerability

LiteLLM is a Berri AI open source application. All LLM APIs can be called using the OpenAI format. LiteLLM has a resource management error vulnerability that stems from an insecure parsing of user input in ast.literaleval, which can be exploited by an attacker to cause a denial of service...

Unspecified Vulnerability in LibreChat

LibreChat is an enhanced ChatGPT clone. LibreChat has a security vulnerability that stems from an unhandled exception that can be exploited by an attacker to cause a server crash...

phpIPAM circuits options page cross-site scripting vulnerability

phpIPAM is phpIPAM open source set of open source PHP and MySQL based IP address management application IPAM. A cross-site scripting vulnerability exists in phpIPAM version 1.5.2, which stems from the lack of effective filtering and escaping of user-supplied data on the circuits options page, whi...

LibreChat groupid parameter access control error vulnerability

LibreChat is an enhanced ChatGPT clone. An Access Control Error vulnerability exists in versions of LibreChat prior to 0.7.6, which stems from the groupid parameter not verifying that the prompt ID provided belongs to the current user, and can be exploited by an attacker to cause the deletion of...

Unspecified vulnerability in Lunary (CNVD-2025-06934)

Lunary is Lunary open source a production toolkit for LLM . A security vulnerability exists in Lunary versions prior to 1.6.3 that stems from not enforcing unique constraints and can be exploited by an attacker to cause data integrity issues...

GPT Academic Access Control Error Vulnerability

GPT Academic is an interface that provides pragmatic interactions for LLM grand language models such as GPT/GLM. GPT Academic suffers from an Access Control Error vulnerability that could be exploited by an attacker to cause unauthorized operations...

ChuanhuChatGPT Resource Management Error Vulnerability

ChuanhuChatGPT is an application that provides a lightweight and easy-to-use web GUI and many additional features for a wide range of LLMs such as ChatGPT. A resource management error vulnerability exists in ChuanhuChatGPT version 20240914, which stems from improper handling of large file names i...

GPT Academic Code Issue Vulnerability

GPT Academic is an interface that provides pragmatic interactions for LLM grand language models such as GPT/GLM. GPT Academic suffers from a code issue vulnerability that arises from unsafe deserialization of serialized data received from users by the Latex English Error Correction Plugin feature...

Mattermost Authorization Issues Vulnerability

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an authorization issue vulnerability that stems from improper authorization of the Viewer role, which can be exploited by an attacker to still view team and site statistics...

GPT Academic Markdown_Translate.get_files_from_everything function server-side request forgery vulnerability

GPT Academic is an interface that provides pragmatic interactions for LLM grand language models such as GPT/GLM. A server-side request forgery vulnerability exists in the GPT Academic MarkdownTranslate.getfilesfromeverything function, which can be exploited by an attacker to cause unauthorized...

Tenda AX12 Buffer Overflow Vulnerability (CNVD-2025-07607)

Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from Tenda China. The Tenda AX12 suffers from a buffer overflow vulnerability that originates from the sub42F69C function in /goform/setMacFilterCfg that fails to correctly validate the length of the input data, which can be exploited by an...

D-Link DIR-605L/DIR-618 formTcpipSetup Function Access Control Error Vulnerability

The D-Link DIR-605L and D-Link DIR-618 are both a wireless router from China-based AUO D-Link. An access control error vulnerability exists in the D-Link DIR-618 version 2.02 and DIR-605L version 3.02, which stems from improper access control in the file /goform/formTcpipSetup, and can be exploit...

LibreChat Path Traversal Vulnerability

LibreChat is an enhanced ChatGPT clone. LibreChat suffers from a path traversal vulnerability that stems from the program failing to properly filter special elements in the path of a resource or file, which can be exploited by an attacker to cause arbitrary file writes and remote code execution...

Siemens Teamcenter Visualization Buffer Overflow Vulnerability (CNVD-2025-09960)

Siemens Teamcenter Visualization is software that provides teamwork capabilities for designing 2D and 3D scenarios. The software simplifies the engineering and manufacturing process by creating virtual prototypes from a variety of mechanical computer-aided design MCAD formats.Siemens Tecnomatix...

D-Link DAP-1620 mod_graph_auth_uri_handler function stack buffer overflow vulnerability

The D-Link DAP-1620 is a wireless repeater extender from D-Link. A stack buffer overflow vulnerability exists in the D-Link DAP-1620 modgraphauthurihandler function, which can be exploited by an attacker to execute arbitrary code on the system or cause a denial of service...

D-Link DAP-1620 set_ws_action function buffer overflow vulnerability

The D-Link DAP-1620 is a wireless repeater extender from D-Link. The D-Link DAP-1620 suffers from a buffer overflow vulnerability that stems from the Path component's setwsaction function failing to properly validate the length of the input data, which could be exploited by an attacker to execute...

D-Link DAP-1620 Stack Buffer Overflow Vulnerability

The D-Link DAP-1620 is a wireless repeater extender from D-Link. The D-Link DAP-1620 suffers from a stack buffer overflow vulnerability. The vulnerability stems from improper handling of the parameter uid and can be exploited by an attacker to trigger a denial of service or execute malicious code...

D-Link DAP-1620 check_dws_cookie function stack buffer overflow vulnerability

The D-Link DAP-1620 is a wireless repeater extender from D-Link. The D-Link DAP-1620 suffers from a stack buffer overflow vulnerability that stems from the cookie handling component checkdwscookie function failing to properly validate the length and size of input data, which can be exploited by a...

Apache Oozie Cross-Site Scripting Vulnerability

Apache Oozie is an application from the Apache Apache Foundation, USA. Provides a workflow scheduler system for managing Apache Hadoop job functions. Apache Oozie has a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping of user-supplied...

Art Gallery Management System contactus.php File SQL Injection Vulnerability

Art Gallery Management System is an art gallery management system. Art Gallery Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter pagetitle of /admin/contactus.php. An attacker can exploit...

ChuanhuChatGPT Authorization Issue Vulnerability

ChuanhuChatGPT is an application that provides a lightweight and easy-to-use web GUI and many additional features for a wide range of LLMs such as ChatGPT. An authorization issue vulnerability exists in the ChuanhuChatGPT c91dbfc version, which stems from the reboot server feature not being check...

Apache Commons VFS Information Disclosure Vulnerability

Apache Commons VFS is a public virtual file system from the Apache USA Foundation. Apache Commons VFS prior to version 2.10.0 suffers from an information disclosure vulnerability that stems from the FtpFileObject class that may disclose the original URI containing the password if the file is not...

Microsoft Edge (Chromium-based) Update elevation of privilege vulnerability (CNVD-2025-23062)

Microsoft Edge is a web browser from the American company Microsoft that comes with systems after Windows 10. An elevation of privilege vulnerability exists in Microsoft Edge Chromium-based Update, which is caused by improper link resolution before file access. An attacker could exploit the...

HDF5 H5Z__scaleoffset_decompress_one_byte function buffer overflow vulnerability

HDF5 is a library of HDF open source . HDF5 has a buffer overflow vulnerability , the vulnerability stems from the H5Z scaleoffsetdecompressonebyte function fails to correctly validate the length of the input data size , an attacker can use this vulnerability to cause a denial of service...

CicadasCMS Code Injection Vulnerability (CNVD-2025-06474)

CicadasCMS is a content management system. CicadasCMS code injection vulnerability can be exploited by attackers to conduct cross-site scripting attacks...

Access control error vulnerability exists in Vite (CNVD-2025-05817)

Vite is Vite open source a new front-end building tools . Vite has an access control error vulnerability that can be exploited by an attacker to bypass the development server's protection mechanism and illegally access sensitive files outside the project root directory...

Remote Code Execution Vulnerability in Ingress NGINX Controller (CNVD-2025-05885)

Ingress NGINX Controller is an open source portal controller that uses NGINX as a reverse proxy and load balancer. Ingress NGINX Controller suffers from a remote code execution vulnerability that stems from the mirror-target and mirror-host Ingress annotations can be used to inject arbitrary...

Remote Code Execution Vulnerability in Ingress NGINX Controller (CNVD-2025-05886)

Ingress NGINX Controller is an open source portal controller that uses NGINX as a reverse proxy and load balancer. Ingress NGINX Controller suffers from a remote code execution vulnerability that stems from auth-tls-match-cn Ingress annotations can be used to inject configurations, which could le...

Art Gallery Management System art-enquiry.php File SQL Injection Vulnerability

Art Gallery Management System is an art gallery management system. Art Gallery Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter eid of art-enquiry.php. An attacker can exploit this...

IBM SPSS Statistics Encryption Problem Vulnerability

IBM Spss Statistics is a software package from International Business Machines IBM, Inc. It is used for interactive or batch statistical analysis. An encryption issue vulnerability exists in IBM SPSS Statistics versions 26.0, 27.0.1, 28.0.1, and 29.0.2, which stems from the use of a weak encrypti...

JetBrains GoLand Code Issue Vulnerability

JetBrains GoLand is a set of intelligent IDE Integrated Development Environment dedicated to Go language development from the Czech company JetBrains. A code issue vulnerability exists in JetBrains GoLand that stems from a networked system or product that does not have the correct filters set up ...

AC8 Buffer Overflow Vulnerability (CNVD-2025-07594) in Shenzhen Jixiang Tengda Technology Co.

Shenzhen Jixiang Tengda Technology Co., Ltd AC8 is a wireless router. Shenzhen Jixiang Tengda Technology Co., Ltd AC8 has a buffer overflow vulnerability, the vulnerability stems from the sub47D878 function's src parameter fails to correctly validate the length of the input data size, an attacker...

GPT Academic path traversal vulnerability (CNVD-2025-22731)

GPT Academic is an interface that provides pragmatic interactions for LLM grand language models such as GPT/GLM. GPT Academic suffers from a path traversal vulnerability that can be exploited by an attacker to disclose sensitive information...

GPT Academic crazy_utils.get_files_from_everything function server-side request forgery vulnerability

GPT Academic is an interface that provides pragmatic interactions for LLM grand language models such as GPT/GLM. A server-side request forgery vulnerability exists in the GPT Academic crazyutils.getfilesfromeverything function, which can be exploited by an attacker to cause unauthorized access to...

Doctor Appointment Management System check-appointment.php File SQL Injection Vulnerability

Doctor Appointment Management System is a doctor appointment management system. Doctor Appointment Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter searchdata of /check-appointment.php. A...

ChuanhuChatGPT Access Control Error Vulnerability

ChuanhuChatGPT is an application that provides a lightweight and easy-to-use web GUI and many additional features for a wide range of LLMs such as ChatGPT. An access control error vulnerability exists in ChuanhuChatGPT version 20240802, which stems from improper handling of session data and lack ...

LibreChat Improper Access Control Vulnerability

LibreChat is an enhanced ChatGPT clone. LibreChat suffers from an Improper Access Control vulnerability that can be exploited by an attacker to corrupt application logic and permissions and allow unauthorized operations...