366763 matches found
CVE-2026-10155
The CVE-2026-10155 describes a SQL injection in Bdtask Multi-Store Inventory Management System 1.0, specifically in accounts_report_search (application/modules/accounts/controllers/Accounts.php of Accounts Report Handler). The vulnerability is triggered by manipulating the argument dtpToDate, ena...
CVE-2026-10154
Dolibarr ERP CRM vulnerability CVE-2026-10154 affects Dolibarr 23.0.0–23.0.2 in htdocs/user/messaging.php, where manipulation of the ID argument enables an authorization bypass via a remote attack. The issue is confirmed to impact the affected versions and is mitigated by upgrading to 23.0.3, wit...
CVE-2026-10153
CVE-2026-10153 affects westboy CicadasCMS; the issue resides in the Search function of org/springframework/cache/support/AbstractCacheManager.java, where manipulation of the argument s enables cross-site scripting. Exploitation is remote and the exploit has been published. The project uses a roll...
CVE-2026-10152
TaleLin lin-cms-spring-boot up to 0.2.1 contains an access-control issue in the BookEndpoint path BookController.java. The underlying cause is stated as improper access controls due to some unknown file processing, with a remote attack possibility and public exploit availability. No specific vuln...
CVE-2026-10127
CVE-2026-10127 affects Edimax BR-6478AC firmware version 1.23. The vulnerability resides in the POST Request Handler function formStaDrvSetup, specifically the /goform/formStaDrvSetup endpoint, where manipulating the argument rootAPmac enables command injection. Exploitation can be remote; public...
CVE-2026-10126
Edimax BR-6478AC firmware 1.23 has a vulnerability in the POST Request Handler, specifically the formQoS function (/goform/formQoS). Manipulating the selSSID argument causes a buffer overflow, enabling a remote attacker. Public exploit exists. The provided sources do not specify a patched version...
CVE-2026-10125
CVE-2026-10125 affects Edimax BR-6478AC firmware 1.23. The issue is in the POST Request Handler’s file /goform/formPPPoESetup, specifically the formPPPoESetup function. Manipulating the pppUserName argument triggers a stack-based buffer overflow, with remote initiation possible. Public exploit ma...
CVE-2026-10124
CVE-2026-10124 affects Shibby Tomato up to version 1.28. The vulnerability targets the function rip_zebra_read_ipv4 in /usr/sbin/ripd (Zserv Handler) and can cause a stack-based buffer overflow via remote impact. Public exploit has been disclosed. The project is superseded by FreshTomato and appl...
CVE-2026-8594
Summary: CVE-2026-8594 affects Text::LineFold (Perl) up to version 2019.001, which is part of the Unicode-LineBreak distribution. The issue arises because the line-breaking logic applies the break function to the entire input string, not just each segment, causing the full input to be duplicated ...
CVE-2026-10123
TRENDnet TEW-432BRP 3.10B20 is affected by CVE-2026-10123 in the formSetDomainFilter handler (/goform/formSetDomainFilter). The issue is a stack-based buffer overflow triggered by manipulating arguments such as blocked_domain, permitted_domain, blocked_domain_list, or permitted_domain_list, with ...
CVE-2026-10122
TRENDnet TEW-432BRP (v3.10B20) contains a stack-based overflow in formSetProtocolFilter (/goform/formSetProtocolFilter) triggered by manipulation of protocol_name. The vulnerability affects a device with EOL status (since 2009) and is described as remotely exploitable with public disclosure of th...
CVE-2026-10121
Technical details (affected products, vulnerable components, impact, remediation) are not publicly available in the provided documents; monitor for updates.
CVE-2018-25426
CVE-2018-25426 affects WinMTR 0.91. The vulnerability is a buffer overflow in processing a specially crafted payload file, allowing a denial of service crash. Attackers can cause the crash by providing a input file containing a large buffer of repeated characters; the description notes a crafted ...
CVE-2018-25425
Technical details about CVE-2018-25425 are not publicly available in the provided documents. Monitor for updates.
CVE-2018-25424
The provided documents confirm a SQL injection vulnerability in Gate Pass Management System 2.1 affecting the login-exec.php authentication flow. Attackers can bypass authentication by submitting crafted POST requests with SQL payloads in the login and password parameters, enabling unauthenticate...
CVE-2018-25422
CVE-2018-25422 affects the MOGG web simulator Script. The vulnerability is an SQL injection in the play.php script, exploitable via the id parameter to send crafted payloads and extract data (e.g., usernames) without authentication. The issue is classified as high severity on both CVSS v3.1 (8.2,...
CVE-2018-25423
Arm Whois 3.11 is affected by a local denial-of-service vulnerability due to a buffer overflow when processing an oversized input string (about 700 bytes) in the IP address or domain field. The flaw allows local attackers to crash the application. No remediation, patch version, or exploit details...
CVE-2018-25421
Open STA Manager 2.3 is affected by a path traversal vulnerability that lets authenticated users download arbitrary files by calling modules/backup/actions.php?op=getfile and traversing with ../ sequences to access sensitive system files. Affected component is the Open STA Manager implementation;...
CVE-2018-25420
AiOPMSD Final 1.0.0 contains an SQL injection in watch.php where the id parameter can be crafted via GET requests to execute arbitrary SQL. The vulnerability allows unauthenticated attackers to extract sensitive data, including usernames, database names, and version details. Affected component is...
CVE-2018-25418
AiOPMSD Final 1.0.0 contains an SQL injection vulnerability in the year.php endpoint. The vulnerability allows unauthenticated attackers to send crafted GET requests with malicious payloads in the year parameter to execute arbitrary SQL queries. Impact stated includes extraction of sensitive data...
CVE-2018-25419
AiOPMSD Final 1.0.0 is affected by an SQL injection in genre.php. The vulnerability allows unauthenticated attackers to send crafted SQL payloads via the genre parameter in GET requests to extract sensitive data (usernames, databases, version details). CVSS metrics are provided (3.1: 8.2 High; 4....
CVE-2018-25417
AiOPMSD Final 1.0.0 contains an SQL injection vulnerability via the quality parameter in quality.php. Unauthenticated attackers can send crafted SQL payloads to extract sensitive data (usernames, database names, version details). CVSS metrics indicate high severity (CVSS 3.1: 8.2; CVSS 4.0: 8.8)....
CVE-2018-25416
AiOPMSD Final 1.0.0 contains an SQL injection vulnerability in country.php via the country parameter. An unauthenticated attacker can send crafted GET requests to extract sensitive data from the database (usernames, database names, version details). CVSS data indicates high impact with network ac...
CVE-2018-25414
AiOPMSD Final 1.0.0 contains an SQL injection vulnerability in actor.php that can be exploited by unauthenticated attackers via the actor parameter. The vulnerability is triggered by crafted SQL payloads in GET requests to actor.php, allowing extraction of sensitive database information such as u...
CVE-2018-25415
AiOPMSD Final 1.0.0 is affected by an SQL injection via the director parameter. An unauthenticated attacker can send crafted SQL payloads to director.php (GET) to extract sensitive data such as usernames, database names, and version details. CVSS metrics: v3.1 base score 8.2 (HIGH) with Network v...
CVE-2018-25413
AiOPMSD Final 1.0.0 is affected by an SQL injection in search.php via the q parameter, allowing unauthenticated attackers to execute arbitrary SQL and enumerate usernames, database names, and version details. The CVE entry includes CVSS scores (3.1: base 8.2 HIGH network/low integrity; 4.0: base ...
CVE-2018-25412
DeltaSql 1.8.2 is affected by an arbitrary file upload vulnerability reachable via docs_upload.php. The issue allows unauthenticated attackers to upload PHP files through crafted multipart form data and place them in the upload directory, enabling remote code execution on the server. The connecte...
CVE-2018-25411
CVE-2018-25411 affects MGB OpenSource Guestbook 0.7.0.2. The vulnerability is an SQL injection in the email.php endpoint vulnerable to crafted payloads via the id parameter, allowing unauthenticated attackers to execute arbitrary SQL and potentially enumerate database tables and columns. The issu...
CVE-2018-25410
SIM-PKH 2.4.1 contains an SQL injection in admin/media.php via the id parameter. In the affected flow, an authenticated attacker can craft GET requests with module=pengurus and act=editpengurus to inject SQL UNION statements, enabling extraction of database information (usernames, database names,...
CVE-2018-25409
SIM-PKH 2.4.1 contains an Arbitrary File Upload vulnerability. Authenticated users can upload PHP code via the fupload parameter to the aksi_pengurus.php endpoint (module=pengurus, act=update). Uploaded PHP files are stored in the foto directory and can be executed as web scripts, enabling potent...
CVE-2018-25408
The Open ISES Project 3.30A contains a path traversal vulnerability in the ajax/download.php endpoint that lets unauthenticated attackers download arbitrary files by supplying directory traversal sequences (e.g., ../) in the filename parameter. Affected component: ajax/download.php within The Ope...
CVE-2018-25406
CVE-2018-25406 affects the eNdonesia Portal 8.7, where multiple SQL injection vulnerabilities allow unauthenticated attackers to run arbitrary SQL queries via mod.php. The attacker can inject SQL through parameters artid, cid, did, contid, and aboutid across modules including publisher, diskusi, ...
CVE-2018-25407
CVE-2018-25407 affects eNdonesia Portal 8.7, where multiple SQL injection flaws in mod.php allow unauthenticated attackers to execute arbitrary SQL via parameters such as artid, cid, did, contid, and aboutid across the publisher, diskusi, galeri, content, and about modules. The issue can be used ...
CVE-2018-25405
The CVE-2018-25405 entry describes SQL injection vulnerabilities in eNdonesia Portal 8.7. Specifically, unauthenticated attackers can inject SQL through mod.php parameters artid, cid, did, contid, and aboutid to retrieve sensitive data (usernames, database names, version details). Metrics show CV...
CVE-2026-10120
TRENDnet TEW-432BRP 3.10B20 is affected by CVE-2026-10120. The vulnerability lies in function formSetFirewallRule within /goform/formSetFirewallRule, where manipulating the firewall_name argument causes a stack-based buffer overflow. The issue is exploitable remotely and the exploit is public. TR...
CVE-2026-10119
TRENDnet TEW-432BRP (firmware 3.10B20) contains a stack-based buffer overflow in the formSetMACFilter function within /goform/formSetMACFilter. The vulnerability arises from manipulation of the filter_name argument, enabling remote exploitation. Exploit appears publicly available. The vendor note...
CVE-2026-10117
The CVE concerns Open5GS up to 2.7.7. The issue affects the ogs_pool_id_calloc function in /lib/sbi/nghttp2-server.c. A manipulation can remotely trigger a denial of service. Public exploit availability is noted. Remediation guidance: apply the official patch/update to resolve the vulnerability (...
CVE-2026-46242
Summary (CVE-2026-46242) : The Linux kernel contains a fix for a UAF in eventpoll related to ep_remove. The bug arose when ep_remove_file() cleared file->f_ep under file->f_lock but continued using @file inside the critical section, allowing a concurrent path to reach freed memory via f_op-...
CVE-2026-10116
Technical details are not publicly available in the provided documents. Monitor for updates. The description notes a denial‑of‑service vulnerability in Open5GS (ogs_sbi_xact_add in ogs-timer.c).
CVE-2026-10115
Technical details are not publicly available in the provided documents. Monitor for updates.
CVE-2026-10114
Open5GS up to 2.7.7 is affected by an out-of-bounds write in handle_scp_info (lib/sbi/nnrf-handler.c) within the Shared NF-profile Parser. The issue can be triggered remotely and is linked to a publicly disclosed exploit. Remediation guidance in the sources is to deploy an official patch; no addi...
CVE-2026-7459
The CVE concerns the Simple History – Track, Log, and Audit WordPress Changes plugin for WordPress (
CVE-2026-7465
Summary (supported by provided documents): CVE-2026-7465 affects the WordPress plugin Spectra Gutenberg Blocks (ultimate-addons-for-gutenberg). In versions up to and including 2.19.25, an authenticated Contributor can influence post block attributes in uagb/* blocks, which are dynamically registe...
CVE-2026-9757
The GEO my WP WordPress plugin (prepare(). This enables unauthenticated attackers to append additional SQL to existing queries to extract data. Exploitation requires a public page hosting the Posts Locator shortcode ([gmw form="results" form_id=N]) and at least one published post with an associat...
CVE-2026-10113
Open5GS up to 2.7.7 is affected by a vulnerability in the Shared NF-profile Parser, specifically in lib/sbi/nnrf-handler.c. The issue allows remote denial of service via an unknown functionality manipulation. Public exploitation details are available, and a patch is recommended to remediate. Affe...
CVE-2026-10112
CVE-2026-10112: Technical details are not publicly available in the provided documents. Monitor for updates.
CVE-2026-10111
CVE-2026-10111 affects the sambitraj STUDENT-MANAGEMENT-SYSTEM 1.0 Login Page. The vulnerability occurs when manipulating the argument email , which can lead to SQL injection . It is exploitable remotely and the exploit has been published. The issue was reported to the project early via an issue ...
CVE-2026-5071
The CVE-2026-5071 entry concerns the SocketCAN implementation (Zephyr context) where a user-provided buffer containing a socketcan_frame is validated only by a NET_ASSERT in zcan_sendto_ctx() and then dereferenced in socketcan_to_can_frame(). In production builds with assertions disabled, a users...
CVE-2026-10110
The CVE-2026-10110 affects code-projects’ Student Details Management System 1.0. The vulnerability resides in an unknown function of /index.php, where manipulation of the roll argument enables SQL injection. Exploitation is possible remotely and a public exploit reportedly exists. Metrics indicat...
CVE-2026-48840
Exim is affected: Exim 4.88 prior to 4.99.4 in certain PROXY configurations mishandles short payloads, causing disclosure of uninitialized stack memory to a client. The issue centers on the PROXY-protocol handling, enabling an information disclosure in configurations with SUPPORT_PROXY and host_p...