Aggregator

A vulnerability classified as critical was found in EfesTech E-Kontör. This vulnerability affects unknown code. The manipulation of the argument ID leads to sql injection. This vulnerability was named CVE-2008-1508. The attack can be initiated remotely. Furthermore, there is an exploit available.

At one time, having a personal coach was just for top-tier athletes, but no longer. Whether you prefer the term "mentor" or "life coach," there’s growth potential for us all to consider.

The post From Quarterbacks to CxOs: Why We All Need a Coach appeared first on Security Boulevard.

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /test-details.php. The manipulation of the argument assignto leads to sql injection. This vulnerability is known as CVE-2025-5859. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /patient-report.php. The manipulation of the argument searchdata leads to sql injection. This vulnerability is traded as CVE-2025-5858. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /urinalysis_record.php. The manipulation of the argument itr_no leads to sql injection. The identification of this vulnerability is CVE-2025-5857. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability has been found in PHPGurukul BP Monitoring Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /registration.php. The manipulation of the argument emailid leads to sql injection. This vulnerability was named CVE-2025-5856. The attack can be initiated remotely. Furthermore, there is an exploit available.

Submit #591443 / VDB-311605

Submit #591440 / VDB-311604

A vulnerability, which was classified as critical, was found in Tenda AC6 15.03.05.16. This affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2025-5855. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in Tenda AC6 15.03.05.16. Affected by this issue is the function fromadvsetlanip of the file /goform/AdvSetLanip. The manipulation of the argument lanMask leads to buffer overflow. This vulnerability is handled as CVE-2025-5854. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg. The manipulation of the argument remoteIp leads to stack-based buffer overflow. This vulnerability is known as CVE-2025-5853. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in Tenda AC6 15.03.05.16. Affected is the function formSetPPTPUserList of the file /goform/setPptpUserList. The manipulation of the argument list leads to buffer overflow. This vulnerability is traded as CVE-2025-5852. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Submit #591430 / VDB-311603

A vulnerability was found in Tenda AC15 15.03.05.19_multi. It has been rated as critical. This issue affects the function fromadvsetlanip of the file /goform/AdvSetLanip of the component HTTP POST Request Handler. The manipulation of the argument lanMask leads to buffer overflow. The identification of this vulnerability is CVE-2025-5851. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Tenda AC15 15.03.05.19_multi. It has been declared as critical. This vulnerability affects the function formsetschedled of the file /goform/SetLEDCf of the component HTTP POST Request Handler. The manipulation of the argument Time leads to buffer overflow. This vulnerability was named CVE-2025-5850. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Tenda AC15 15.03.05.19_multi. It has been classified as critical. This affects the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg of the component HTTP POST Request Handler. The manipulation of the argument remoteIp leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2025-5849. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Tenda AC15 15.03.05.19_multi and classified as critical. Affected by this issue is the function formSetPPTPUserList of the file /goform/setPptpUserList of the component HTTP POST Request Handler. The manipulation of the argument list leads to buffer overflow. This vulnerability is handled as CVE-2025-5848. The attack may be launched remotely. Furthermore, there is an exploit available.

Submit #591426 / VDB-311602

Submit #591422 / VDB-311601

Submit #591420 / VDB-311600