Publicly Disclosed
PoC Exploits

The bigint-buffer package is susceptible to a buffer overflow vulnerability in its toBigIntLE() function. This exploitation can lead to application crashes, allowing attackers to disrupt service and potentially execute arbitrary code. Users of this package should evaluate their current versions a...

A stack-based buffer overflow vulnerability exists in the Tenda FH1202 router, specifically in the fromDhcpListClient function located in the /goform/DhcpListClient endpoint. By manipulating the 'page' argument, an attacker can potentially exploit this vulnerability to execute unauthorized action...

A stack-based buffer overflow vulnerability exists in the Tenda FH1202's fromNatStaticSetting function. By manipulating the argument page within the /goform/NatSaticSetting file, an attacker can exploit this flaw remotely, potentially compromising the device's integrity. This vulnerability poses ...

A stack-based buffer overflow vulnerability exists in the webtypelibrary function of Tenda FH1202 routers. An attacker can exploit this flaw by manipulating the webSiteId parameter, potentially allowing remote code execution. The affected version is V1.2.0.14(408), and this vulnerability is now p...

A security vulnerability has been identified in the Tenda FH1202 device, specifically involving the formWrlsafeset function located in the /goform/AdvSetWrlsafeset file. The manipulation of arguments such as mit_ssid and mit_ssid_index can lead to a stack-based buffer overflow, potentially allowi...

A security weakness has been identified in the janobe Resort Reservation System, where manipulation of the 'q' argument in the /room_rates.php file can lead to SQL injection. This vulnerability allows attackers to execute arbitrary SQL queries, potentially compromising sensitive data. The exploit...

A security flaw has been identified in the Tenda i3 router version 1.0.0.6(2204), specifically within the function formWifiMacFilterSet located in the /goform/WifiMacFilterSet file. This vulnerability allows for manipulation of the argument index, leading to a stack-based buffer overflow conditio...

A vulnerability exists in the Tenda i3 router version 1.0.0.6 (2204) related to the function formWifiMacFilterGet. An attacker can manipulate an argument index to trigger a stack-based buffer overflow. This exploit can be executed remotely, exposing the router to potential attacks. As details of ...

CVE-2024-56348 is a critical security vulnerability found in JetBrains TeamCity versions prior to 2024.12. The flaw arises from improper access control mechanisms that permit unauthorized users to view sensitive information related to agents that should be restricted. This vulnerability poses a s...

A vulnerability exists in the Tenda i3 router's execution command function located at /goform/exeCommand. By manipulating the input argument 'cmdinput', an attacker can trigger a stack-based buffer overflow. This flaw allows for remote exploitation, potentially giving malicious actors control ove...

A buffer overflow vulnerability exists in the Tenda i3 router within the formSetAutoPing function found in the /goform/setAutoPing file. By manipulating the ping1 or ping2 arguments, an attacker can trigger a stack-based buffer overflow. This vulnerability can be exploited remotely, allowing unau...

A security flaw has been identified in the janobe Resort Reservation System, impacting version 1.0. The vulnerability resides in the doInsert function within the /controller.php file, where an attacker can manipulate the 'image' argument. This flaw allows for unrestricted file uploads, enabling r...

A vulnerability in the Tenda i3 router's firmware allows a stack-based buffer overflow due to inadequate input validation in the formSetCfm function. Exploiting this flaw via remote access could allow attackers to execute arbitrary code, leading to potential unauthorized access to the device. It ...

ZoneMinder, a popular open-source closed-circuit television software, has a vulnerability that exposes versions v1.37.* up to and including v1.37.64 to a boolean-based SQL injection attack through the web/ajax/event.php endpoint. This flaw can allow an attacker to manipulate SQL queries, potentia...

A detected command injection vulnerability in the Comfast CF-AC100 version 2.6.0.8 allows attackers to exploit the function sub_44AC14 within the /cgi-bin/mbox-config?method=SET&section=ping_config path handler. This exploitation can be initiated remotely, posing significant security risks. Despi...

A vulnerability has been identified in PDF.js, specifically related to a missing type check when processing fonts. This oversight permits arbitrary JavaScript execution within the PDF.js environment. As a result, users of affected versions of Mozilla Firefox and Thunderbird could be vulnerable to...

A security flaw in Tiandy Video Surveillance System version 7.17.0 allows unauthorized users to exploit the uploadFile function located in CLS_REST_File.java. By manipulating the 'fileName' parameter, attackers can achieve unrestricted uploads of potentially malicious files. This vulnerability po...

A vulnerability has been identified in the Qi-ANXIN QAX Virus Removal software, specifically affecting the ZwTerminateProcess function within the QKSecureIO_Imp.sys library of the Mini Filter Driver component. This weakness can lead to improper access controls, allowing a local attacker to execut...

A vulnerability has been identified in the SourceCodester Sales and Inventory System version 1.0, specifically affecting the code within the sales_invoice1.php file. This vulnerability arises from improper handling of the GET parameter 'sellid', allowing attackers to execute SQL injection attacks...

A vulnerability exists in the SourceCodester Sales and Inventory System 1.0 due to improper handling of the 'purchaseid' parameter within the purchase_invoice.php file. This flaw allows an attacker to manipulate the argument, potentially leading to SQL injection attacks. Such an exploitation can ...

A critical SQL injection vulnerability has been identified in the SourceCodester Sales and Inventory System, specifically within the dashboard.php file of the Search component. An attacker can manipulate the 'searchtxt' argument, leading to unauthorized database queries. This exploitation can be ...

A directory traversal vulnerability has been identified in ZenML, specifically within the /api/v1/steps endpoint. This flaw allows attackers to manipulate the 'logs' URI path within requests to access arbitrary files on the server, circumventing established access control mechanisms. The underlyi...

A remote code execution vulnerability in Microsoft Outlook allows an attacker to run arbitrary code on a user's system. This can occur when the vulnerable version processes specially crafted email messages, which can result in unauthorized access or control over the affected system. Attackers can...

A vulnerability was identified in Bytedesk versions up to 1.3.9 within the 'getModels' function located in 'SpringAIGiteeRestService.java'. This issue arises from improper handling of the 'apiUrl' argument, leading to a server-side request forgery (SSRF) risk. Attackers may exploit this vulnerabi...

A security flaw has been identified in Bytedesk affecting versions up to 1.3.9. The issue arises in the getModels function within the SpringAIOpenrouterRestService.java file, specifically related to the manipulation of the apiUrl argument. This unintended behavior can allow attackers to perform s...

A security flaw has been identified in EasyCMS versions up to 1.6, specifically in the Request Parameter Handler component. This vulnerability arises from an unknown function located in the /RbacuserAction.class.php file. Through manipulation of the argument '_order', an attacker can execute SQL ...

A vulnerability has been discovered in EasyCMS versions up to 1.6, specifically within the Request Parameter Handler located at /RbacnodeAction.class.php. This flaw allows an attacker to manipulate the '_order' argument, leading to SQL injection attacks. The exploit can be executed remotely, and ...

A SQL injection vulnerability has been identified in SourceCodester's janobe Resort Reservation System version 1.0. This flaw resides in the unknown code of the '/accomodation.php' file, where manipulation of the 'q' argument can lead to unauthorized access to the database. Attackers can exploit ...

A vulnerability has been identified in the SourceCodester Computer Laboratory Management System version 1.0, allowing attackers to exploit a cross-site request forgery (CSRF) flaw. This security issue permits unauthorized commands to be transmitted from a user whom the website trusts. Attackers c...

A stack-based buffer overflow vulnerability exists in the Tenda F453 Router, specifically within the WrlclientSet function located in the /goform/WrlclientSet file. This vulnerability can be exploited remotely by manipulating the GO argument, leading to potential unauthorized access and execution...

A security vulnerability exists in the Tenda F453 router, specifically within the formWrlExtraSet function located in the /goform/WrlExtraSet file. An issue arises from improper handling of the GO argument, leading to a stack-based buffer overflow. This flaw allows for potential remote exploitati...

A vulnerability exists within the itsourcecode Teacher Attendance System, specifically in the /admin/teacher-attendance.php file. An attacker can exploit this weakness by manipulating the 'teacher_id' argument, potentially leading to unauthorized SQL code execution. This vulnerability may be expl...

A security flaw has been identified in the SourceCodester Web-based Pharmacy Product Management System affecting version 1.0. This vulnerability resides in the edit-profile.php file, where inadequate input validation allows an attacker to exploit the argument 'fullname'. By manipulating this argu...

A severe SQL injection vulnerability exists within the itsourcecode University Management System version 1.0, specifically in the /att_single_view.php file. This flaw occurs when an attacker manipulates the 'dt' parameter, allowing unauthorized access to the database. Since the attack can be exec...

A vulnerability exists in SourceCodester Client Database Management System version 1.0, specifically within the /superadmin_user_update.php file. This weakness allows attackers to exploit improper authorization mechanisms, enabling remote exploitation. As the flaw has been publicly disclosed, the...

A cross site scripting vulnerability has been identified in the Simple Flight Ticket Booking System, specifically within an unknown function in the showhistory.php file. This issue allows remote attackers to inject arbitrary web script or HTML into the application. Given that the exploit has been...

A vulnerability exists in the SourceCodester Client Database Management System where an unidentified function in the /superadmin_delete_manager.php file allows improper authorization through the manipulation of the manager_id argument. This flaw enables remote attackers to exploit the system, pot...

A vulnerability exists in the SourceCodester Client Database Management System 1.0 that allows attackers to exploit improper authorization through the manipulation of the user_id parameter in the /superadmin_user_delete.php file. This flaw can be leveraged remotely, potentially compromising user ...

A SQL injection vulnerability exists in the itsourcecode University Management System 1.0, specifically within the /view_result.php file. This vulnerability arises from improper handling of user input in the seme argument, allowing attackers to execute arbitrary SQL queries. The exploitation of t...

A vulnerability in the peering authentication process of Cisco Catalyst SD-WAN Controller and Manager allows unauthenticated remote attackers to bypass authentication measures. By sending specially crafted requests, an attacker could gain unauthorized access to a system as a high-privileged non-r...

A security vulnerability exists in the Projectworlds Online Art Gallery Shop version 1.0, specifically affecting the file /admin/adminHome.php. This vulnerability allows an attacker to manipulate the 'reach_nm' argument, leading to SQL injection. The attack can be executed remotely, posing signif...

A vulnerability exists in Projectworlds Online Art Gallery Shop version 1.0 that allows for SQL injection through the manipulation of the 'Info' argument in the /admin/adminHome.php file. This weakness can be exploited remotely, leading to unauthorized database access and potential data compromis...

A security flaw present in Projectworlds' Online Art Gallery Shop version 1.0 exposes the application to SQL injection attacks via the /?pass=1 endpoint. By manipulating the input parameter 'fnm', an attacker can execute unauthorized SQL queries. This type of vulnerability permits attackers to la...

A vulnerability has been detected in the SourceCodester Sales and Inventory System version 1.0. This vulnerability exists in the file /check_item_details.php, where the manipulation of the stock_name1 parameter can enable an attacker to execute unauthorized SQL commands. The attack can be perform...

A security gap has been identified in the SourceCodester Sales and Inventory System version 1.0, specifically within the POST handler located in the /check_customer_details.php file. This vulnerability allows for SQL Injection through the manipulation of the 'stock_name1' argument. As a result, a...

A SQL injection vulnerability has been identified in the SourceCodester Sales and Inventory System version 1.0, specifically in the /add_stock.php file. By manipulating the 'cost' parameter, an attacker can execute unauthorized SQL commands, potentially compromising the database. This vulnerabili...

A security flaw has been identified in the SourceCodester Sales and Inventory System, specifically in the /add_sales_print.php file. This vulnerability arises from inadequate validation of the 'sid' argument, enabling an attacker to execute SQL injection attacks. Such vulnerabilities can permit u...

A vulnerability exists in the SourceCodester Employee Task Management System up to version 1.0, where the file /daily-task-report.php is susceptible to SQL injection via the Date argument. This allows attackers to manipulate SQL queries and potentially gain unauthorized access to sensitive databa...

A vulnerability in the SourceCodester Employee Task Management System has been identified, specifically within the `daily-attendance-report.php` file. An issue arises from the GET parameter handling, where manipulation of the 'Date' argument allows for SQL injection attacks. This vulnerability ca...

A security vulnerability has been identified within the storage management module of ContiNew Admin versions up to 4.2.0, specifically in the URI.create function of S3ClientFactory.java. This flaw allows attackers to perform server-side request forgery (SSRF), enabling them to send crafted reques...