Publicly Disclosed
PoC Exploits

A vulnerability exists in the Tiandy Easy7 CMS version 7.17.0, specifically in the WebService component of the application. The issue arises from inadequate validation of input, allowing an attacker to manipulate the 'strTBName' argument in the GetDBData.jsp file. This flaw permits the execution ...

The bigint-buffer package is susceptible to a buffer overflow vulnerability in its toBigIntLE() function. This exploitation can lead to application crashes, allowing attackers to disrupt service and potentially execute arbitrary code. Users of this package should evaluate their current versions a...

A vulnerability has been identified in the SourceCodester Patients Waiting Area Queue Management System 1.0, specifically concerning the file /patient-search.php. This flaw allows for improper authorization, potentially enabling unauthorized users to access restricted features or data within the ...

A security vulnerability has been identified in OWASP DefectDojo affecting versions up to 2.55.4. Specifically, the issue resides in the 'input_zip.read' function within the SonarQubeParser/MSDefenderParser component's parser.py file. This flaw can allow a remote attacker to initiate a denial of ...

A critical weakness has been discovered in UTT HiPER 810G versions up to 1.7.7-1711, specifically affecting the strcpy function within the /goform/formApMail file. This vulnerability could allow attackers to manipulate the software remotely, leading to potential buffer overflow attacks. The explo...

A security flaw has been identified in the UTT HiPER 810G, specifically concerning the function strcpy located in /goform/getOneApConfTempEntry. This vulnerability enables an attacker to manipulate the system and trigger a buffer overflow. As a result, it allows for the potential execution of arb...

A significant vulnerability has been found in the JFlow application developed by OpenCC, specifically within the Calculate function located in the WF_CCForm.java file. This flaw allows for remote code execution through injection attacks, which can be exploited by malicious actors over the interne...

A cross site scripting vulnerability was identified in the itsourcecode Payroll Management System 1.0. The issue arises from an insecure function within the file /manage_employee_allowances.php, where the manipulation of the argument ID allows attackers to execute scripts in the context of the vi...

A stack-based buffer overflow vulnerability exists in the Tenda FH1202 router, specifically within the P2pListFilter function. This issue is triggered by manipulating the 'page' argument in the /goform/P2pListFilter file, which could allow remote attackers to execute their own code leading to una...

A stack-based buffer overflow vulnerability exists in the Tenda FH1202 router, specifically in the fromDhcpListClient function located in the /goform/DhcpListClient endpoint. By manipulating the 'page' argument, an attacker can potentially exploit this vulnerability to execute unauthorized action...

A stack-based buffer overflow vulnerability exists in the Tenda FH1202's fromNatStaticSetting function. By manipulating the argument page within the /goform/NatSaticSetting file, an attacker can exploit this flaw remotely, potentially compromising the device's integrity. This vulnerability poses ...

A stack-based buffer overflow vulnerability exists in the webtypelibrary function of Tenda FH1202 routers. An attacker can exploit this flaw by manipulating the webSiteId parameter, potentially allowing remote code execution. The affected version is V1.2.0.14(408), and this vulnerability is now p...

A security vulnerability has been identified in the Tenda FH1202 device, specifically involving the formWrlsafeset function located in the /goform/AdvSetWrlsafeset file. The manipulation of arguments such as mit_ssid and mit_ssid_index can lead to a stack-based buffer overflow, potentially allowi...

A security weakness has been identified in the janobe Resort Reservation System, where manipulation of the 'q' argument in the /room_rates.php file can lead to SQL injection. This vulnerability allows attackers to execute arbitrary SQL queries, potentially compromising sensitive data. The exploit...

A security flaw has been identified in the Tenda i3 router version 1.0.0.6(2204), specifically within the function formWifiMacFilterSet located in the /goform/WifiMacFilterSet file. This vulnerability allows for manipulation of the argument index, leading to a stack-based buffer overflow conditio...

A vulnerability exists in the Tenda i3 router version 1.0.0.6 (2204) related to the function formWifiMacFilterGet. An attacker can manipulate an argument index to trigger a stack-based buffer overflow. This exploit can be executed remotely, exposing the router to potential attacks. As details of ...

CVE-2024-56348 is a critical security vulnerability found in JetBrains TeamCity versions prior to 2024.12. The flaw arises from improper access control mechanisms that permit unauthorized users to view sensitive information related to agents that should be restricted. This vulnerability poses a s...

A vulnerability exists in the Tenda i3 router's execution command function located at /goform/exeCommand. By manipulating the input argument 'cmdinput', an attacker can trigger a stack-based buffer overflow. This flaw allows for remote exploitation, potentially giving malicious actors control ove...

A buffer overflow vulnerability exists in the Tenda i3 router within the formSetAutoPing function found in the /goform/setAutoPing file. By manipulating the ping1 or ping2 arguments, an attacker can trigger a stack-based buffer overflow. This vulnerability can be exploited remotely, allowing unau...

A security flaw has been identified in the janobe Resort Reservation System, impacting version 1.0. The vulnerability resides in the doInsert function within the /controller.php file, where an attacker can manipulate the 'image' argument. This flaw allows for unrestricted file uploads, enabling r...

A vulnerability in the Tenda i3 router's firmware allows a stack-based buffer overflow due to inadequate input validation in the formSetCfm function. Exploiting this flaw via remote access could allow attackers to execute arbitrary code, leading to potential unauthorized access to the device. It ...

ZoneMinder, a popular open-source closed-circuit television software, has a vulnerability that exposes versions v1.37.* up to and including v1.37.64 to a boolean-based SQL injection attack through the web/ajax/event.php endpoint. This flaw can allow an attacker to manipulate SQL queries, potentia...

A detected command injection vulnerability in the Comfast CF-AC100 version 2.6.0.8 allows attackers to exploit the function sub_44AC14 within the /cgi-bin/mbox-config?method=SET&section=ping_config path handler. This exploitation can be initiated remotely, posing significant security risks. Despi...

A vulnerability has been identified in PDF.js, specifically related to a missing type check when processing fonts. This oversight permits arbitrary JavaScript execution within the PDF.js environment. As a result, users of affected versions of Mozilla Firefox and Thunderbird could be vulnerable to...

A security flaw in Tiandy Video Surveillance System version 7.17.0 allows unauthorized users to exploit the uploadFile function located in CLS_REST_File.java. By manipulating the 'fileName' parameter, attackers can achieve unrestricted uploads of potentially malicious files. This vulnerability po...

A vulnerability has been identified in the Qi-ANXIN QAX Virus Removal software, specifically affecting the ZwTerminateProcess function within the QKSecureIO_Imp.sys library of the Mini Filter Driver component. This weakness can lead to improper access controls, allowing a local attacker to execut...

A vulnerability has been identified in the SourceCodester Sales and Inventory System version 1.0, specifically affecting the code within the sales_invoice1.php file. This vulnerability arises from improper handling of the GET parameter 'sellid', allowing attackers to execute SQL injection attacks...

A vulnerability exists in the SourceCodester Sales and Inventory System 1.0 due to improper handling of the 'purchaseid' parameter within the purchase_invoice.php file. This flaw allows an attacker to manipulate the argument, potentially leading to SQL injection attacks. Such an exploitation can ...

A critical SQL injection vulnerability has been identified in the SourceCodester Sales and Inventory System, specifically within the dashboard.php file of the Search component. An attacker can manipulate the 'searchtxt' argument, leading to unauthorized database queries. This exploitation can be ...

A directory traversal vulnerability has been identified in ZenML, specifically within the /api/v1/steps endpoint. This flaw allows attackers to manipulate the 'logs' URI path within requests to access arbitrary files on the server, circumventing established access control mechanisms. The underlyi...

A remote code execution vulnerability in Microsoft Outlook allows an attacker to run arbitrary code on a user's system. This can occur when the vulnerable version processes specially crafted email messages, which can result in unauthorized access or control over the affected system. Attackers can...

A vulnerability was identified in Bytedesk versions up to 1.3.9 within the 'getModels' function located in 'SpringAIGiteeRestService.java'. This issue arises from improper handling of the 'apiUrl' argument, leading to a server-side request forgery (SSRF) risk. Attackers may exploit this vulnerabi...

A security flaw has been identified in Bytedesk affecting versions up to 1.3.9. The issue arises in the getModels function within the SpringAIOpenrouterRestService.java file, specifically related to the manipulation of the apiUrl argument. This unintended behavior can allow attackers to perform s...

A security flaw has been identified in EasyCMS versions up to 1.6, specifically in the Request Parameter Handler component. This vulnerability arises from an unknown function located in the /RbacuserAction.class.php file. Through manipulation of the argument '_order', an attacker can execute SQL ...

A vulnerability has been discovered in EasyCMS versions up to 1.6, specifically within the Request Parameter Handler located at /RbacnodeAction.class.php. This flaw allows an attacker to manipulate the '_order' argument, leading to SQL injection attacks. The exploit can be executed remotely, and ...

A SQL injection vulnerability has been identified in SourceCodester's janobe Resort Reservation System version 1.0. This flaw resides in the unknown code of the '/accomodation.php' file, where manipulation of the 'q' argument can lead to unauthorized access to the database. Attackers can exploit ...

A vulnerability has been identified in the SourceCodester Computer Laboratory Management System version 1.0, allowing attackers to exploit a cross-site request forgery (CSRF) flaw. This security issue permits unauthorized commands to be transmitted from a user whom the website trusts. Attackers c...

A stack-based buffer overflow vulnerability exists in the Tenda F453 Router, specifically within the WrlclientSet function located in the /goform/WrlclientSet file. This vulnerability can be exploited remotely by manipulating the GO argument, leading to potential unauthorized access and execution...

A security vulnerability exists in the Tenda F453 router, specifically within the formWrlExtraSet function located in the /goform/WrlExtraSet file. An issue arises from improper handling of the GO argument, leading to a stack-based buffer overflow. This flaw allows for potential remote exploitati...

A vulnerability exists within the itsourcecode Teacher Attendance System, specifically in the /admin/teacher-attendance.php file. An attacker can exploit this weakness by manipulating the 'teacher_id' argument, potentially leading to unauthorized SQL code execution. This vulnerability may be expl...

A security flaw has been identified in the SourceCodester Web-based Pharmacy Product Management System affecting version 1.0. This vulnerability resides in the edit-profile.php file, where inadequate input validation allows an attacker to exploit the argument 'fullname'. By manipulating this argu...

A severe SQL injection vulnerability exists within the itsourcecode University Management System version 1.0, specifically in the /att_single_view.php file. This flaw occurs when an attacker manipulates the 'dt' parameter, allowing unauthorized access to the database. Since the attack can be exec...

A vulnerability exists in SourceCodester Client Database Management System version 1.0, specifically within the /superadmin_user_update.php file. This weakness allows attackers to exploit improper authorization mechanisms, enabling remote exploitation. As the flaw has been publicly disclosed, the...

A cross site scripting vulnerability has been identified in the Simple Flight Ticket Booking System, specifically within an unknown function in the showhistory.php file. This issue allows remote attackers to inject arbitrary web script or HTML into the application. Given that the exploit has been...

A vulnerability exists in the SourceCodester Client Database Management System where an unidentified function in the /superadmin_delete_manager.php file allows improper authorization through the manipulation of the manager_id argument. This flaw enables remote attackers to exploit the system, pot...

A vulnerability exists in the SourceCodester Client Database Management System 1.0 that allows attackers to exploit improper authorization through the manipulation of the user_id parameter in the /superadmin_user_delete.php file. This flaw can be leveraged remotely, potentially compromising user ...

A SQL injection vulnerability exists in the itsourcecode University Management System 1.0, specifically within the /view_result.php file. This vulnerability arises from improper handling of user input in the seme argument, allowing attackers to execute arbitrary SQL queries. The exploitation of t...

A vulnerability in the peering authentication process of Cisco Catalyst SD-WAN Controller and Manager allows unauthenticated remote attackers to bypass authentication measures. By sending specially crafted requests, an attacker could gain unauthorized access to a system as a high-privileged non-r...

A security vulnerability exists in the Projectworlds Online Art Gallery Shop version 1.0, specifically affecting the file /admin/adminHome.php. This vulnerability allows an attacker to manipulate the 'reach_nm' argument, leading to SQL injection. The attack can be executed remotely, posing signif...

A vulnerability exists in Projectworlds Online Art Gallery Shop version 1.0 that allows for SQL injection through the manipulation of the 'Info' argument in the /admin/adminHome.php file. This weakness can be exploited remotely, leading to unauthorized database access and potential data compromis...