Submit #519615: Phpgurukul Art Gallery Management System v1.1 SQL Injection [Accepted]
Submit #519615 / VDB-300630
Aggregator
Submit #519335: PHPGurukul Art Gallery Management System V1.0 SQL injection [Accepted]
3 months ago
Submit #519335 / VDB-300629
liuhao7328
Submit #519610: PHPGurukul Art Gallery Management System v1.1 SQL Injection [Duplicate]
3 months ago
Submit #519610 / VDB-220582
IEeee
Submit #519307: Advocate office management system free download edit_case.php V1.0 SQL Injection [Accepted]
3 months ago
Submit #519307 / VDB-300628
chaosheng001
CVE-2025-2622 | aizuda snail-job 1.4.0 Workflow-Task Management Module check-node-expression getRuntime nodeExpression deserialization (IBSQ24)
3 months ago
A vulnerability was found in aizuda snail-job 1.4.0. It has been classified as critical. Affected is the function getRuntime of the file /snail-job/workflow/check-node-expression of the component Workflow-Task Management Module. The manipulation of the argument nodeExpression leads to deserialization.
This vulnerability is traded as CVE-2025-2622. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #519303: PHPGurukul Land Record System v1.0 SQL Injection [Duplicate]
3 months ago
Submit #519303 / VDB-289838
IEeee
Submit #519296: CicadasCMS v1.0 SQL Injection Vulnerability [Accepted]
3 months ago
Submit #519296 / VDB-300627
icefoxh
Submit #519295: CicadasCMS v1.0 SQL Injection Vulnerability [Accepted]
3 months ago
Submit #519295 / VDB-300626
icefoxh
Submit #519294: CicadasCMS v1.0 Stored XSS Vulnerability [Accepted]
3 months ago
Submit #519294 / VDB-300625
icefoxh
CVE-2025-2621 | D-Link DAP-1620 1.03 /storage check_dws_cookie uid stack-based overflow
3 months ago
A vulnerability was found in D-Link DAP-1620 1.03 and classified as critical. This issue affects the function check_dws_cookie of the file /storage. The manipulation of the argument uid leads to stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer.
The identification of this vulnerability is CVE-2025-2621. The attack may be initiated remotely. Furthermore, there is an exploit available.
It is recommended to apply restrictive firewalling.
vuldb.com
CVE-2025-2620 | D-Link DAP-1620 1.03 Authentication /storage mod_graph_auth_uri_handler stack-based overflow
3 months ago
A vulnerability has been found in D-Link DAP-1620 1.03 and classified as critical. This vulnerability affects the function mod_graph_auth_uri_handler of the file /storage of the component Authentication Handler. The manipulation leads to stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability was named CVE-2025-2620. The attack can be initiated remotely. Furthermore, there is an exploit available.
It is recommended to apply restrictive firewalling.
vuldb.com
CVE-2025-2619 | D-Link DAP-1620 1.03 Cookie /storage check_dws_cookie stack-based overflow
3 months ago
A vulnerability, which was classified as critical, was found in D-Link DAP-1620 1.03. This affects the function check_dws_cookie of the file /storage of the component Cookie Handler. The manipulation leads to stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability is uniquely identified as CVE-2025-2619. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
It is recommended to apply restrictive firewalling.
vuldb.com
CVE-2025-2618 | D-Link DAP-1620 1.03 Path /dws/api/ set_ws_action heap-based overflow
3 months ago
A vulnerability, which was classified as critical, has been found in D-Link DAP-1620 1.03. Affected by this issue is the function set_ws_action of the file /dws/api/ of the component Path Handler. The manipulation leads to heap-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer.
This vulnerability is handled as CVE-2025-2618. The attack may be launched remotely. Furthermore, there is an exploit available.
It is recommended to apply restrictive firewalling.
vuldb.com
Submit #519275: code-projects Real Estate Property Management System php v1 sql command injection [Duplicate]
3 months ago
Submit #519275 / VDB-299916
YAEMIKO-W
Submit #518999: gitee/github snail-job 1.4.0 Command Injection [Accepted]
3 months ago
Submit #518999 / VDB-300624
startr4ck
Submit #518980: D-Link DAP-1620 1.03 Buffer Overflow [Accepted]
3 months ago
Submit #518980 / VDB-300623
Submit #518969: D-Link DAP-1620 1.03 Buffer Overflow [Accepted]
3 months ago
Submit #518969 / VDB-300622
Submit #518968: D-Link DAP-1620 1.03 Buffer Overflow [Accepted]
3 months ago
Submit #518968 / VDB-300621
Submit #518963: D-Link DAP-1620 1.03 Buffer Overflow [Accepted]
3 months ago
Submit #518963 / VDB-300620
CVE-2020-0796 | Microsoft Windows 10 1903/10 1909/Server 1903/Server 1909 SMBv3 Server Message Block SMBGhost memory corruption (Advisory 156731 / EDB-48216)
3 months ago
A vulnerability, which was classified as very critical, was found in Microsoft Windows 10 1903/10 1909/Server 1903/Server 1909. Affected is an unknown function of the component SMBv3. The manipulation as part of Server Message Block leads to memory corruption.
This vulnerability is traded as CVE-2020-0796. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
A worm is spreading, which is automatically exploiting this vulnerability.
It is recommended to apply a patch to fix this issue.
vuldb.com