Aggregator

CVE-2025-1853 | Tenda AC8 16.03.34.06 Parameter /goform/SetIpMacBind sub_49E098 list stack-based overflow

VulDB Recent Entries
9 months 2 weeks ago
A vulnerability was found in Tenda AC8 16.03.34.06 and classified as critical. This issue affects the function sub_49E098 of the file /goform/SetIpMacBind of the component Parameter Handler. The manipulation of the argument list leads to stack-based buffer overflow. The identification of this vulnerability is CVE-2025-1853. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-1852 | Totolink EX1800T 9.1.0cu.2112_B20220316 /cgi-bin/cstecgi.cgi loginAuth password buffer overflow

VulDB Recent Entries
9 months 2 weeks ago
A vulnerability has been found in Totolink EX1800T 9.1.0cu.2112_B20220316 and classified as critical. This vulnerability affects the function loginAuth of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument password leads to buffer overflow. This vulnerability was named CVE-2025-1852. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-1851 | Tenda AC7 up to 15.03.06.44 /goform/SetFirewallCfg formSetFirewallCfg firewallEn stack-based overflow

VulDB Recent Entries
9 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Tenda AC7 up to 15.03.06.44. This affects the function formSetFirewallCfg of the file /goform/SetFirewallCfg. The manipulation of the argument firewallEn leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2025-1851. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-1850 | Codezips College Management System 1.0 /university.php book_name sql injection

VulDB Recent Entries
9 months 2 weeks ago
A vulnerability, which was classified as critical, has been found in Codezips College Management System 1.0. Affected by this issue is some unknown functionality of the file /university.php. The manipulation of the argument book_name leads to sql injection. This vulnerability is handled as CVE-2025-1850. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2002-1129 | Compaq Tru64 up to 5.1a Pk2 Bl2 dxterm -xrm memory corruption (EDB-21807 / XFDB-10148)

Vuldb Updates
9 months 2 weeks ago
A vulnerability was found in Compaq Tru64. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component dxterm. The manipulation of the argument -xrm leads to memory corruption. This vulnerability is known as CVE-2002-1129. Attacking locally is a requirement. Furthermore, there is an exploit available.
vuldb.com

CVE-2015-2090 | Sympies Wordpress Survey And Poll 1.1.7 admin/ settings.php ajax_survey survey_id sql injection (ID 130381 / EDB-36054)

Vuldb Updates
9 months 2 weeks ago
A vulnerability, which was classified as critical, has been found in Sympies Wordpress Survey And Poll 1.1.7. This issue affects the function ajax_survey of the file settings.php of the component admin/. The manipulation of the argument survey_id leads to sql injection. The identification of this vulnerability is CVE-2015-2090. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

Managed ad