Aggregator

CVE-2025-8231 | D-Link DIR-890L up to 111b04 UART Port rgbin hard-coded credentials (EUVD-2025-22822)

VulDB Recent Entries
1 week 6 days ago
A vulnerability, which was classified as critical, has been found in D-Link DIR-890L up to 111b04. This issue affects some unknown processing of the file rgbin of the component UART Port. The manipulation leads to hard-coded credentials. This vulnerability only affects products that are no longer supported by the maintainer. The identification of this vulnerability is CVE-2025-8231. It is possible to launch the attack on the physical device. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-8230 | Campcodes Courier Management System 1.0 /manage_user.php ID sql injection (EUVD-2025-22820)

VulDB Recent Entries
1 week 6 days ago
A vulnerability classified as critical was found in Campcodes Courier Management System 1.0. This vulnerability affects unknown code of the file /manage_user.php. The manipulation of the argument ID leads to sql injection. This vulnerability was named CVE-2025-8230. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-8229 | Campcodes Courier Management System 1.0 /parcel_list.php sql injection (EUVD-2025-22818)

VulDB Recent Entries
1 week 6 days ago
A vulnerability classified as critical has been found in Campcodes Courier Management System 1.0. This affects an unknown part of the file /parcel_list.php. The manipulation of the argument s leads to sql injection. This vulnerability is uniquely identified as CVE-2025-8229. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-8228 | yanyutao0402 ChanCMS up to 3.1.2 /cms/collect/getPages targetUrl server-side request forgery (ICLP28 / EUVD-2025-22819)

VulDB Recent Entries
1 week 6 days ago
A vulnerability was found in yanyutao0402 ChanCMS up to 3.1.2. It has been rated as critical. Affected by this issue is the function getPages of the file /cms/collect/getPages. The manipulation of the argument targetUrl leads to server-side request forgery. This vulnerability is handled as CVE-2025-8228. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-8227 | yanyutao0402 ChanCMS up to 3.1.2 /collect/getArticle taskUrl deserialization (ICLP81 / EUVD-2025-22816)

VulDB Recent Entries
1 week 6 days ago
A vulnerability was found in yanyutao0402 ChanCMS up to 3.1.2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /collect/getArticle. The manipulation of the argument taskUrl leads to deserialization. This vulnerability is known as CVE-2025-8227. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-8226 | yanyutao0402 ChanCMS up to 3.1.2 /sysApp/find accessKey/secretKey information disclosure (ICLP9V / EUVD-2025-22817)

VulDB Recent Entries
1 week 6 days ago
A vulnerability was found in yanyutao0402 ChanCMS up to 3.1.2. It has been classified as problematic. Affected is an unknown function of the file /sysApp/find. The manipulation of the argument accessKey/secretKey leads to information disclosure. This vulnerability is traded as CVE-2025-8226. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad