Submit #796965: PHPGurukul Employee Record Management System 1.3 SQL Injection [Duplicate]
Submit #796965 / VDB-306805
Aggregator
Submit #796964: PHPGurukul Employee Record Management System 1.3 SQL Injection [Duplicate]
1 week 5 days ago
Submit #796964 / VDB-306696
Submit #796963: PHPGurukul Employee Record Management System 1.3 SQL Injection [Duplicate]
1 week 5 days ago
Submit #796963 / VDB-188030
Submit #796767: SourceCodester Student Result Management System (SRMS) 1.0 Path Traversal [Duplicate]
1 week 5 days ago
Submit #796767 / VDB-309022
imad alvi
CVE-2026-6158 | Totolink N300RH 6.1c.1353_B20190305 upgrade.so setUpgradeUboot FileName os command injection
1 week 5 days ago
A vulnerability identified as critical has been detected in Totolink N300RH 6.1c.1353_B20190305. Affected is the function setUpgradeUboot of the file upgrade.so. This manipulation of the argument FileName causes os command injection.
This vulnerability is tracked as CVE-2026-6158. The attack is possible to be carried out remotely. Moreover, an exploit is present.
vuldb.com
CVE-2026-6157 | Totolink A800R 4.1.2cu.5137_B20200730 /lib/cste_modules/app.so setAppEasyWizardConfig apcliSsid buffer overflow
1 week 5 days ago
A vulnerability categorized as critical has been discovered in Totolink A800R 4.1.2cu.5137_B20200730. This impacts the function setAppEasyWizardConfig in the library /lib/cste_modules/app.so. The manipulation of the argument apcliSsid results in buffer overflow.
This vulnerability is identified as CVE-2026-6157. The attack can be executed remotely. Additionally, an exploit exists.
vuldb.com
CVE-2026-6156 | Totolink A7100RU 7.4cu.2313_b20191024 CGI /cgi-bin/cstecgi.cgi setIpQosRules Comment os command injection
1 week 5 days ago
A vulnerability was found in Totolink A7100RU 7.4cu.2313_b20191024. It has been rated as critical. This affects the function setIpQosRules of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument Comment leads to os command injection.
This vulnerability is referenced as CVE-2026-6156. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
vuldb.com
CVE-2026-6155 | Totolink A7100RU 7.4cu.2313 CGI /cgi-bin/cstecgi.cgi setWanCfg pppoeServiceName os command injection
1 week 5 days ago
A vulnerability was found in Totolink A7100RU 7.4cu.2313. It has been declared as critical. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument pppoeServiceName can lead to os command injection.
The identification of this vulnerability is CVE-2026-6155. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #796697: code-projects Simple ChatBox In PHP 1.0 SQL Injection [Accepted]
1 week 5 days ago
Submit #796697 / VDB-357041
AhmadMarzook
Submit #796696: code-projects Simple Chatbox PHP 1.0 Information Disclosure [Accepted]
1 week 5 days ago
Submit #796696 / VDB-357040
AhmadMarzook
Submit #796666: code-projects Simple ChatBox In PHP 1.0 Cross Site Scripting [Accepted]
1 week 5 days ago
Submit #796666 / VDB-357039
AhmadMarzook
CVE-2026-6154 | Totolink A7100RU 7.4cu.2313_b20191024 CGI /cgi-bin/cstecgi.cgi setWizardCfg wizard os command injection
1 week 5 days ago
A vulnerability was found in Totolink A7100RU 7.4cu.2313_b20191024. It has been classified as critical. The affected element is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument wizard results in os command injection.
This vulnerability was named CVE-2026-6154. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com
Submit #796665: code-projects Simple Laundry System In PHP 1.0 SQL Injection [Duplicate]
1 week 5 days ago
Submit #796665 / VDB-355334
AhmadMarzook
Submit #796426: TOTOLINK N300RH_V4 V6.1c.1353_B20190305 OS Command Injection [Accepted]
1 week 5 days ago
Submit #796426 / VDB-357038
xuanyu
Submit #793114: TOTOLINK A800R V4.1.2cu.5137_B20200730 Buffer Overflow [Accepted]
1 week 5 days ago
Submit #793114 / VDB-357037
xuanyu
Submit #793681: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
1 week 5 days ago
Submit #793681 / VDB-357036
LtzHust2
Submit #793679: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
1 week 5 days ago
Submit #793679 / VDB-357035
LtzHust2
Submit #793668: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Duplicate]
1 week 5 days ago
Submit #793668 / VDB-356548
LtzHust2
Submit #792990: Totolink A7100RU 7.4cu.2313_b20191024 Command Injection [Accepted]
1 week 5 days ago
Submit #792990 / VDB-357034
LtzHuster
CVE-2026-6153 | code-projects Vehicle Showroom Management System 1.0 StaffDetailsFunction.php STAFF_ID sql injection
1 week 5 days ago
A vulnerability was found in code-projects Vehicle Showroom Management System 1.0 and classified as critical. Impacted is an unknown function of the file /util/StaffDetailsFunction.php. Such manipulation of the argument STAFF_ID leads to sql injection.
This vulnerability is uniquely identified as CVE-2026-6153. The attack can be launched remotely. Moreover, an exploit is present.
vuldb.com