Publicly Disclosed
PoC Exploits

The Anthropic Claude Code CLI and Claude Agent SDK are susceptible to an OS command injection vulnerability in the authentication helper execution. This flaw arises from the lack of input validation in the execution of helper configuration values, allowing an attacker with the ability to manipula...

A vulnerability exists in Wooey's API Endpoint, particularly in the 'add_or_update_script' function found in the file 'wooey/api/scripts.py'. This issue can be exploited to perform improper authorization, allowing for remote attacks. It's crucial for users running versions up to 0.13.2 to upgrade...

A vulnerability was identified in the vllm library, affecting versions up to 0.19.0, specifically within the has_mamba_layers function of the KV Block Handler component. This issue stems from uninitialized resources, which could potentially enable remote exploitation. Although the complexity of c...

A security vulnerability exists in the Totolink A8000RU, where manipulation of the argument HTTP within the CsteSystem function of the CGI Handler can lead to OS command injection. This vulnerability allows remote attackers to execute arbitrary commands on the device, posing a significant threat ...

A significant vulnerability has been identified in the Totolink A8000RU router, specifically within the setWiFiAclRules function located in the /cgi-bin/cstecgi.cgi file of the CGI Handler component. This flaw allows remote attackers to manipulate the mode argument, potentially leading to unautho...

A security flaw has been identified in the Totolink A8000RU router, specifically within the CGI Handler component's setNtpCfg function. This vulnerability allows an attacker to manipulate the 'tz' argument, facilitating an OS command injection. The attack can be executed remotely, potentially com...

A security vulnerability has been identified in Totolink A8000RU routers, specifically in the setStorageCfg function of the /cgi-bin/cstecgi.cgi component. This issue arises from improper handling of the sambaEnabled argument, which could allow an attacker to execute arbitrary OS commands remotel...

A command injection vulnerability exists in the CGI Handler of the Totolink A8000RU router, specifically within the setDmzCfg function found in /cgi-bin/cstecgi.cgi. This security flaw allows an attacker to manipulate the wanIdx argument to execute arbitrary commands on the operating system. With...

A security flaw has been identified in GPAC's MP4Box component, specifically within the elng_box_read function located in src/isomedia/box_code_base.c. This vulnerability facilitates an out-of-bounds read when the elng argument is manipulated. The exploit requires local access and has been made p...

ProjeQtor versions from 7.0 to 12.4.3 feature a stored cross-site scripting vulnerability that arises from inadequate restrictions on file uploads. Specifically, the checkValidFileName() function allows authenticated users to upload HTML files containing malicious JavaScript. As a result, users a...

ProjeQtor versions 7.0 to 12.4.3 are susceptible to a stored cross-site scripting (XSS) vulnerability due to inadequate input sanitization in the checkValidHtmlText() function within Security.php. This vulnerability allows adversaries to inject malicious scripts that can be stored and executed in...

The ProjeQtor application versions 7.0 to 12.4.3 has a vulnerability in its log file viewer located at dynamicDialog.php. This vulnerability allows authenticated attackers to exploit the logname parameter, which fails to properly validate input against directory traversal sequences. By injecting ...

ProjeQtor versions 7.0 through 12.4.3 are affected by a vulnerability that allows authenticated users with guest-level privileges to access sensitive data, including password hashes and API keys. The flaw exists in the objectDetail.php endpoint, which lacks adequate authorization checks. This per...

ProjeQtor, versions 7.0 through 12.4.3, is susceptible to a ZipSlip path traversal vulnerability. This security flaw is present in the plugin's upload functionality, allowing authenticated attackers with upload permissions to exploit unvalidated archive extraction. By using specially crafted ZIP ...

ProjeQtor versions 7.0 to 12.4.3 are susceptible to an unauthenticated SQL injection vulnerability within the login functionality. This occurs when the application dynamically constructs SQL queries without proper parameterization or sanitization of user inputs. Attackers can exploit this vulnera...

A manipulation vulnerability exists in the Online Lot Reservation System version 1.0, specifically in the /edithousepic.php file. By exploiting improper handling of the image argument, an attacker could perform an unrestricted file upload, potentially allowing the execution of unauthorized script...

The Online Lot Reservation System 1.0 from code-projects contains a vulnerability in the /activity.php file that allows remote attackers to manipulate the argument directory, leading to unrestricted file uploads. This flaw can be exploited to upload malicious files to the server, potentially comp...

A vulnerability exists in the Online Lot Reservation System up to version 1.0, specifically within the readfile function of the /download.php file. This issue allows remote attackers to manipulate the 'File' argument, leading to potential path traversal attacks. The vulnerability can expose sensi...

A SQL injection vulnerability has been identified in the code-projects Online Lot Reservation System up to version 1.0. The vulnerability resides in the '/loginuser.php' file, which enables an attacker to manipulate the email and password arguments. This manipulation could potentially allow for u...

The SourceCodester Pharmacy Sales and Inventory System 1.0 contains a vulnerability due to improper input validation in an unknown function within the /ajax.php file. An attacker can exploit this flaw by manipulating the argument ID during a remote request, potentially leading to unauthorized acc...

A vulnerability exists in the SourceCodester Pharmacy Sales and Inventory System version 1.0, specifically in the /index.php?page=categories file. An attacker can manipulate the 'ID' argument to execute cross-site scripting attacks remotely. This exploit has become public, posing significant secu...

A vulnerability has been discovered in the SourceCodester Pharmacy Sales and Inventory System version 1.0 that allows for remote SQL injection through manipulation of parameters in the file /ajax.php?action=save_type. This exploitation can lead to unauthorized access and manipulation of the datab...

A vulnerability has been discovered in version 1.0 of the SourceCodester Pharmacy Sales and Inventory System, specifically affecting the `/ajax.php?action=delete_receiving` file. This weakness allows attackers to manipulate an ID argument, potentially leading to SQL injection attacks. As the expl...

A security vulnerability has been identified in the SourceCodester Pharmacy Sales and Inventory System 1.0, which allows attackers to manipulate the ID parameter in the ajax.php file, leading to SQL injection. This vulnerability can be exploited remotely, posing a significant risk to the integrit...

A vulnerability exists in the Totolink A8000RU router, specifically in the setWiFiEasyCfg function within the CGI Handler component located at /cgi-bin/cstecgi.cgi. This issue allows an attacker to manipulate the merge argument, facilitating OS command injection. As a result, remote attackers cou...

A command injection vulnerability exists in the CGI Handler of the Totolink A8000RU, specifically within the setIpv6LanCfg function of the /cgi-bin/cstecgi.cgi file. By manipulating the addrPrefixLen argument, an attacker can execute arbitrary operating system commands remotely. This vulnerabilit...

A security flaw in the Totolink A8000RU, specifically in the function setIptvCfg of the cgi-bin/cstecgi.cgi file, allows for OS command injection. This vulnerability can be exploited remotely by manipulating the argument in setIptvCfg, potentially leading to unauthorized access and command execut...

A critical OS command injection vulnerability has been identified in the Totolink A8000RU router, specifically within the setUPnPCfg function of the CGI component located in the /cgi-bin/cstecgi.cgi file. This flaw allows attackers to craft malicious requests, potentially executing arbitrary comm...

A security flaw has been identified in the Totolink A8000RU router, specifically within the setWizardCfg function of the CGI Handler located in /cgi-bin/cstecgi.cgi. This vulnerability allows for os command injection via manipulation of input arguments. It can be exploited remotely, presenting a ...

A vulnerability in the Tenda HG3 2.0 router allows attackers to exploit an unknown function in the file /boaform/formCountrystr. By manipulating the 'countrystr' argument, attackers can execute arbitrary OS commands from a remote location. This vulnerability poses a significant security risk as t...

A security vulnerability exists in the Employee Management System version 1.0 developed by Code-Projects, specifically within the cancel.php file. This flaw is triggered by improper handling of the 'id/token' arguments, allowing remote attackers to execute SQL injection attacks. The remote exploi...

A security flaw has been found in the Employee Management System (version 1.0) by Code-Projects, specifically in the 'approve.php' file. An attacker can manipulate the 'id/token' parameters, leading to SQL injection vulnerabilities that can be exploited remotely. The exploit is publicly available...

A security flaw exists in the Employee Management System 1.0 developed by Code-Projects, specifically affecting the handling of the file `370project/mark.php`. This vulnerability can lead to cross-site scripting (XSS) attacks, allowing remote attackers to manipulate content and execute scripts in...

A security flaw has been discovered in the code-projects Employee Management System version 1.0, specifically within the delete.php file. This vulnerability allows remote attackers to manipulate the 'ID' argument, leading to potential SQL injection attacks. The exploit can be easily executed, pos...

A vulnerability has been identified in the Employee Management System 1.0 developed by code-projects, specifically within the edit.php file. This vulnerability allows for SQL injection attacks through manipulation of the argument ID. Attackers can exploit this security flaw remotely, which poses ...

The Hustle plugin for WordPress contains a vulnerability that allows authenticated users with lower-privileged roles, such as Subscribers, to upload arbitrary files due to insufficient file type validation. This flaw is present in all versions up to and including 7.8.9.2 and could potentially lea...

An issue has been discovered in NousResearch hermes-agent version 0.8.0, where the Webhooks Endpoint's _INSECURE_NO_AUTH argument allows for missing authentication controls. This vulnerability enables remote attackers to exploit it without authentication, potentially leading to unauthorized acces...

A security flaw exists in the NousResearch hermes-agent version 0.8.0 involving the function _check_auth located in the file gateway/platforms/api_server.py. This vulnerability allows for improper authentication, potentially enabling remote attackers to manipulate user access and permissions. Alt...

A vulnerability exists in the Code-Projects Invoice System version 1.0, where an exploitation of the file /item allows attackers to manipulate input parameters related to item names and descriptions. This manipulation can lead to Cross-Site Scripting (XSS) attacks, enabling remote attackers to ex...

A vulnerability has been identified in the Code-Projects Invoice System, specifically within the API Endpoint related to the '/item' function. This flaw enables improper authorization, allowing attackers to manipulate requests and gain unauthorized access. The impact is significant as the attack ...

A security vulnerability has been found in the Invoice System developed by Code-Projects, specifically in version 1.0, which is susceptible to cross-site request forgery (CSRF) attacks. This vulnerability allows malicious actors to perform unauthorized actions on behalf of users without their con...

A vulnerability has been discovered in the Code-Projects Invoice System, impacting version 1.0. The issue arises from an undefined function within the '/company' file, allowing attackers to manipulate the 'logo' argument and execute unrestricted file uploads. This vulnerability is exploitable rem...

A command injection vulnerability has been identified in the Tenda F456 product, specifically within the FromWriteFacMac function of the /goform/WriteFacMac file. This flaw allows attackers to manipulate the 'mac' argument, leading to unauthorized command execution. Remote exploitation of this vu...

A significant vulnerability has emerged in the Tenda F456 router, specifically in version 1.0.0.5. This flaw arises from the 'fromWrlclientSet' function within the '/goform/WrlclientSet' file of the httpd component, leading to a buffer overflow. The vulnerability could allow an attacker to exploi...

A vulnerability exists in the Tenda F456 router's HTTP service, specifically within the fromNatlimitof function in the httpd component. This flaw can be exploited remotely, potentially allowing an attacker to manipulate the affected function and trigger a buffer overflow. Exploitation of this vul...

A buffer overflow vulnerability has been identified in the Tenda F456 router. Specifically, the vulnerability lies in the function formQuickIndex located in the /goform/QuickIndex file of the httpd component. By manipulating the 'mit_linktype' argument, an attacker can cause a buffer overflow, wh...

A critical security vulnerability has been identified in the Tenda F456 router version 1.0.0.5, specifically in the fromDhcpListClient function within the /goform/DhcpListClient component. This vulnerability allows remote attackers to manipulate the arguments passed to the function, leading to a ...

The SSL Protocol 3.0 vulnerability allows attackers to exploit the nondeterministic CBC padding method used in OpenSSL, enabling man-in-the-middle attacks. This vulnerability can lead to the exposure of sensitive cleartext data via a padding-oracle attack, commonly referred to as the 'POODLE' exp...

A vulnerability in the Tenda F456 version 1.0.0.5 has been identified, which affects the httpd component, specifically within the function fromwebExcptypemanFilter. This vulnerability is caused by inadequate validation of input parameters, enabling attackers to exploit the argument 'page' to perf...

A vulnerability has been identified in Tenda HG3 2.0 version 300003070 that allows an attacker to exploit the function formgponConf in the file /boaform/admin/formgponConf. By manipulating the argument fmgpon_loid, remote command execution can be achieved, putting devices at risk of unauthorized ...