130931 matches found
UTT HiPER 840G Buffer Overflow Vulnerability (CNVD-2026-00808)
The UTT HiPER 840G is a full Gigabit Internet behavior management router from Atech UTT, which is aimed at small businesses, community networks, hotels, and other scenarios, providing high-speed network access and intelligent management features. The UTT HiPER 840G suffers from a buffer overflow...
UTT 1200GW Buffer Overflow Vulnerability (CNVD-2026-00811)
The UTT 1200GW is an enterprise-grade wireless router from Atech Technology UTT designed to meet the networking needs of small to medium-sized businesses or large space office environments. The UTT 1200GW suffers from a buffer overflow vulnerability that originates from the failure of the paramet...
Online Bidding System wew.php File SQL Injection Vulnerability
Online Bidding System is an online bidding system. Online Bidding System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter ID in the file /administrator/wew.php. An attacker can exploit this vulnerability to...
Tenda AC21 Buffer Overflow Vulnerability (CNVD-2025-30948)
The Tenda AC21 is a wireless router from the Chinese company Tenda. The Tenda AC21 suffers from a buffer overflow vulnerability, which originates from the parameter wpapskcrypto of the function sub45BB10 in the file /goform/WifiExtraSet that fails to correctly validate the length of the input dat...
TOTOLINK X6000R Improper Input Validation Vulnerability
TOTOLINK X6000R is a wireless router supporting Wi-Fi 6 technology from China's Gion Electronics TOTOLINK, focusing on high concurrent connections and dual-band transmission capabilities. The TOTOLINK X6000R suffers from an improper input validation vulnerability, which can be exploited by...
Unspecified Vulnerability in WordPress Plugin Advanced Views
WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. A security vulnerability exists in the WordPress plugin Advanced Views, which can be exploited ...
D-Link DI-7100G OS Command Injection Vulnerability
D-Link DI-7100G is an Internet Behavior Management router for SMBs, supporting Gigabit network transfer rate some models are labeled as 100 Gigabit, equipped with 4 WAN interfaces and 1 LAN interface, built-in USB2.0 ports, and compliant with IEEE802.11n/g/b wireless standard and IEEE802.3 wired...
Hostel Management System log_email Parameter SQL Injection Vulnerability
Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter logemail in the file /justines/index.php. An attacker can exploit this...
Online Bidding System index.php File SQL Injection Vulnerability
Online Bidding System is an online bidding system. Online Bidding System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter aduser in the file /administrator/index.php. An attacker can exploit this...
Online Bidding System bidupdate.php File SQL Injection Vulnerability
Online Bidding System is an online bidding system. Online Bidding System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter ID of file /administrator/bidupdate.php. An attacker can exploit this vulnerability t...
Park Ticketing Management System foreigner-bwdates-reports-details.php file SQL injection vulnerability
Park Ticketing Management System is a park ticketing management system. Park Ticketing Management System suffers from a SQL injection vulnerability that stems from a lack of validation of the fromdate parameter in the file foreigner-bwdates-reports-details.php against an externally entered SQL...
D-Link DI-7100G Buffer Overflow Vulnerability
D-Link DI-7100G is an Internet Behavior Management router for SMBs, supporting Gigabit network transfer rate some models are labeled as 100 Gigabit, equipped with 4 WAN interfaces and 1 LAN interface, built-in USB2.0 ports, and compliant with IEEE802.11n/g/b wireless standard and IEEE802.3 wired...
Hostel Management System mod_comments/index.php File SQL Injection Vulnerability
Hostel Management System is a hostel management system. Hostel Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in parameter ID in file /justines/admin/modcomments/index.php. An attacker can use this...
Google Chrome Heap Buffer Overflow Vulnerability
Google Chrome is a web browser developed by Google, known for being fast, secure and personalized, with support for multi-device synchronization and smart tool integration. Google Chrome suffers from a heap buffer overflow vulnerability that originates from a heap buffer overflow in ANGLE, which...
Post-release reuse vulnerability in Google Chrome Dawn
Google Chrome is a web browser developed by Google, known for being fast, secure and personalized, with support for multi-device synchronization and smart tool integration. Google Chrome suffers from a post-release reuse vulnerability that originates from memory reuse after release in Dawn. An...
Google Chrome WebRTC Post-Release Reuse Vulnerability
Google Chrome is a web browser developed by Google, known for being fast, secure and personalized, with support for multi-device synchronization and smart tool integration. Google Chrome suffers from a post-release reuse vulnerability that originates from post-release reuse in WebRTC, which can b...
Online Bidding System weweee.php File SQL Injection Vulnerability
Online Bidding System is an online bidding system. Online Bidding System suffers from a SQL injection vulnerability that originates from insufficient validation of the parameter ID in the file /administrator/weweee.php. An attacker can use this vulnerability to obtain sensitive information from t...
Google Chrome V8 Type Obfuscation Vulnerability
Google Chrome is a web browser developed by Google, known for being fast, secure and personalized, with support for multi-device synchronization and smart tool integration. Google Chrome suffers from a type obfuscation vulnerability that stems from type obfuscation in V8, which can be exploited b...
D-Link DIR-823X Command Injection Vulnerability (CNVD-2025-23470)
The D-Link DIR-823X is a wireless router from China's AUO D-Link. The D-Link DIR-823X suffers from a command injection vulnerability that originates from a misuse of the parameters terminaladdr/serverip/serverport in the file /usr/sbin/goahead, which can be exploited by an attacker to cause...
IBM Watsonx.data OS Command Injection Vulnerability
IBM Watsonx.data is an open data lake warehouse platform from International Business Machines IBM. An operating system command injection vulnerability exists in IBM Watsonx.data version 2.2 that stems from not properly validating user input and can be exploited by an attacker to cause a privilege...
D-Link DIR-852 cgibin file command injection vulnerability
D-Link DIR-852 is a dual-band Gigabit wireless router from Youxun Technology, focusing on home networking solutions and supporting Xunlei remote download function. The D-Link DIR-852 suffers from a command injection vulnerability that originates from the parameter ST of the component Simple Servi...
D-Link DIR-852 hedwig.cgi File Command Injection Vulnerability
D-Link DIR-852 is a dual-band Gigabit wireless router from Youxun Technology, focusing on home networking solutions and supporting Xunlei remote download function. The D-Link DIR-852 suffers from a command injection vulnerability that stems from the Web Management Interface component...
D-Link DIR-645 service parameter command injection vulnerability
D-Link DIR-645 is a Gigabit wireless router launched by D-Link in 2012, designed for home and SMB users. The D-Link DIR-645 suffers from a command injection vulnerability that stems from the parameter service in the file /soap.cgi failing to properly filter constructed command special characters,...
D-Link DIR-825 Buffer Overflow Vulnerability
D-Link DIR-825 is a dual-band wireless router for SMB and SOHO environments from AUO D-Link, supporting 2.4GHz and 5GHz bands at the same time to meet the demand for multi-device HD video transmission. The D-Link DIR-825 suffers from a buffer overflow vulnerability, which originates from the...
IBM Watsonx.data Cross-Site Scripting Vulnerability
IBM Watsonx.data is an open data lake warehouse platform from International Business Machines IBM. A cross-site scripting vulnerability exists in IBM Watsonx.data version 2.2, which stems from the application's lack of effective filtering and escaping of user-supplied data, and can be exploited b...
IBM Copy Services Manager Cross-Site Scripting Vulnerability
IBM Copy Services Manager is IBM's data replication management software for simplifying and automating data replication operations in enterprise storage environments. A cross-site scripting vulnerability exists in IBM Copy Services Manager 6.3.13, which stems from insufficient filtering and...
Small CRM /create-ticket.php File SQL Injection Vulnerability
Small CRM is a customer relationship management system. Small CRM suffers from a SQL injection vulnerability, which originates from the lack of validation of externally-entered SQL statements in the parameter subject in the file /create-ticket.php. An attacker can exploit this vulnerability to...
Online Course Registration my-profile.php File SQL Injection Vulnerability
Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter cgpa in the file /my-profile.php. An attacker can exploit thi...
Ashlar-Vellum Cobalt Out-of-Bounds Read Vulnerability (CNVD-2025-22914)
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...
Ashlar-Vellum Cobalt Resource Management Error Vulnerability
Ashlar-Vellum Cobalt is a parameter-based computer-aided design and 3D modeling program from Ashlar-Vellum. Ashlar-Vellum Cobalt suffers from a Resource Management Error vulnerability that originates from not verifying the existence of an object before performing an operation on it. An attacker...
NVIDIA Triton Inference Server Operating System Command Injection Vulnerability
NVIDIA Triton Inference Server is an open source software from NVIDIA that helps standardize model deployment and deliver fast and scalable AI in production. NVIDIA Triton Inference Server suffers from an operating system command injection vulnerability that stems from the Python backend not...
Ashlar-Vellum Cobalt Code Execution Vulnerability
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. A code execution vulnerability exists in Ashlar-Vellum Cobalt,...
Ashlar-Vellum Cobalt Type Obfuscation Vulnerability (NVD-C-2025-543225)
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from a type confusion vulnerabili...
Ashlar-Vellum Cobalt Out-of-Bounds Read Vulnerability (CNVD-2025-23023)
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...
Ashlar-Vellum Cobalt Type Obfuscation Vulnerability (CNVD-2025-23022)
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. A type confusion vulnerability exists in Ashlar-Vellum Cobalt,...
Ashlar-Vellum Cobalt Type Obfuscation Vulnerability (CNVD-2025-22944)
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. A type-obfuscation vulnerability exists in Ashlar-Vellum Cobal...
Ashlar-Vellum Cobalt integer overflow vulnerability (CNVD-2025-22942)
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. An integer overflow vulnerability exists in Ashlar-Vellum...
Ashlar-Vellum Cobalt Integer Overflow Vulnerability
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an integer overflow...
Ashlar-Vellum Cobalt Memory Corruption Vulnerability
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. A memory corruption vulnerability exists in Ashlar-Vellum Coba...
Ashlar-Vellum Cobalt Out-of-Bounds Write Vulnerability (CNVD-2025-22918)
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. An out-of-bounds write vulnerability exists in Ashlar-Vellum...
Ashlar-Vellum Cobalt Out-of-Bounds Write Vulnerability
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds write...
Ashlar-Vellum Cobalt Out-of-Bounds Read Vulnerability (CNVD-2025-22916)
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...
Ashlar-Vellum Cobalt Out-of-Bounds Read Vulnerability (CNVD-2025-22913)
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...
Ashlar-Vellum Cobalt Out-of-Bounds Read Vulnerability (CNVD-2025-22912)
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...
Ashlar-Vellum Cobalt Out-of-Bounds Read Vulnerability
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...
Ashlar-Vellum Cobalt Type Obfuscation Vulnerability
Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. A type confusion vulnerability exists in Ashlar-Vellum Cobalt,...
WordPress StoreEngine plugin path traversal vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A path traversal vulnerability exists in the WordPress StoreEngine plugin, which stems from a path traversal issue in the filedownload function. An attacker can exploit this...
WordPress Social Media Shortcodes plugin cross-site scripting vulnerability
WordPress Social Media Shortcodes plugin is a shortcode Shortcodes to quickly embed social media features into the WordPress website plugin, mainly used to simplify the implementation of social media sharing, login, comments and other features. A cross-site scripting vulnerability exists in the...
WordPress Productive Style plugin cross-site scripting vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. The WordPress Productive Style plugin suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping of user-suppli...
WordPress Memberlite Shortcodes plugin cross-site scripting vulnerability
WordPress Memberlite Shortcodes plugin is a plugin used to extend the functionality of the theme, mainly used to add additional features to the WordPress theme, such as content display controls, layout tools, etc., while allowing users to use specific features without completely replacing the...