Publicly Disclosed
PoC Exploits

The gRPC-Go server has a vulnerability that allows an attacker to bypass authorization checks due to improper input validation on the HTTP/2 ':path' pseudo-header. Specifically, versions before 1.79.3 accepted requests with omitted leading slashes in the ':path', allowing unauthorized access to s...

The PJSIP multimedia communication library has a vulnerability related to a heap-based buffer overflow in the DNS parser's name length handler. This issue impacts applications using PJSIP's integrated DNS resolver, which is configured through pjsua_config.nameserver or UaConfig.nameserver setting...

A vulnerability exists within the ngx_http_dav_module of NGINX Open Source and NGINX Plus that can be exploited to trigger a buffer overflow in the NGINX worker process. This scenario is possible when configuration files utilize the DAV module's MOVE or COPY methods combined with specific prefix ...

Pydio Cells allows users to create external users for file sharing. However, by altering the HTTP request during this process, it is possible to assign arbitrary roles to new external users. This vulnerability enables an attacker to grant themselves or any other unauthorized user access to all ce...

The parquet-avro module of Apache Parquet versions 1.15.0 and earlier contains a schema parsing vulnerability that enables attackers to execute arbitrary code. It is crucial for users to upgrade to version 1.15.1 or later to mitigate this risk and secure their systems against potential exploitation.

A SQL injection vulnerability has been identified in the itsourcecode sanitize or validate this input version 1.0, specifically within the borrowedequip.php file of the Parameter Handler component. This flaw allows attackers to manipulate the emp_id argument, enabling unauthorized SQL queries to ...

A security vulnerability has been identified in the Totolink A3300R router, specifically within the function vsetTr069Cfg located in the /cgi-bin/cstecgi.cgi file. This issue arises from improper handling of the stun_pass argument, allowing an attacker to execute arbitrary commands on the operati...

The Anthropic Claude Code CLI and Claude Agent SDK are susceptible to an OS command injection vulnerability in the authentication helper execution. This flaw arises from the lack of input validation in the execution of helper configuration values, allowing an attacker with the ability to manipula...

A security weakness has been discovered in the Totolink A7100RU router effective with the software version 7.4cu.2313_b20191024, specifically in the function setScheduleCfg located in /cgi-bin/cstecgi.cgi. This vulnerability allows attackers to manipulate the 'mode' argument, potentially enabling...

A security vulnerability has been identified in the Totolink A7100RU router, specifically within the CsteSystem function of the cgi-bin/cstecgi.cgi file. This flaw allows attackers to manipulate the resetFlags argument, thereby executing arbitrary OS commands remotely. The existence of this explo...

A significant vulnerability exists in the Totolink A8000R router, particularly within the 'setLanguageCfg' function located in the /cgi-bin/cstecgi.cgi file. This weakness stems from the improper handling of the 'langType' argument, resulting in a lack of required authentication for certain opera...

A vulnerability has been identified in the itsourcecode Construction Management System 1.0 that allows an SQL injection through the manipulation of the 'emp' argument in the 'borrowed_tool.php' file. This weakness enables remote attackers to execute unauthorized SQL commands, potentially compromi...

The Simple IT Discussion Forum version 1.0 by Code-Projects contains a vulnerability in the edit-category.php file within its Parameter Handler component. This flaw allows for SQL injection, where manipulating the cat_id parameter can enable an attacker to execute malicious SQL queries remotely. ...

A cross-site scripting vulnerability is present in the Cyber-III Student-Management-System within the Class Schedule Deletion Endpoint located at /admin/class%20schedule/delete_batch.php. This flaw allows an attacker to manipulate the 'batch' argument, potentially leading to the injection of mali...

A vulnerability in the Cyber-III Student-Management System allows for unrestricted file uploads through the manipulation of the 'File' parameter in the 'move_uploaded_file' function located in '/AssignmentSection/submission/upload.php'. This issue can be exploited remotely, enabling attackers to ...

A SQL injection vulnerability has been identified in the Cyber-III Student-Management System specifically affecting the /login.php file within the Parameter Handler component. This vulnerability allows for remote exploitation through manipulation of the Password argument, enabling attackers to ex...

A security flaw has been identified in the Cyber-III Student-Management-System, which impacts the /admin/Add%20notice/add%20notice.php file. This vulnerability arises from improper handling of the $_SERVER['PHP_SELF'] parameter, allowing a potential attacker to exploit cross-site scripting (XSS) ...

Twitch Studio versions up to 0.114.8 are vulnerable to a privilege escalation issue stemming from an unprotected XPC service in the application's privileged helper tool. This flaw allows local attackers to execute arbitrary code with root privileges. By exploiting the installFromPath:toPath:withR...

A vulnerability has been identified in the Online FIR System version 1.0, specifically within the file /complaints.sql related to the SQL Database Backup File Handler. This issue allows for the insecure storage of sensitive information, posing a risk of unauthorized access. The exploitation can b...

A security vulnerability has been identified in version 1.0 of the Online FIR System developed by Code-Projects. The issue arises from a flaw in the login functionality, specifically within the file /Login/checklogin.php. Attackers can exploit this vulnerability by manipulating the 'email' and 'p...

The web interface of multiple Omada switches lacks proper validation for certain external inputs, potentially allowing out-of-bounds memory access when processing specially crafted requests. This flaw creates an opportunity for an unauthenticated attacker with network access to exploit the affect...

A vulnerability has been discovered in the Free5GC 4.2.0 framework, affecting the NGSetupRequest Handler component. An attacker could exploit this vulnerability to initiate a denial of service attack, which can be executed remotely. The exploit is publicly accessible, posing significant risks to ...

A SQL injection vulnerability exists in the itsourcecode Construction Management System 1.0, specifically within an unknown function of the /borrowed_equip.php file related to parameter handling. This security flaw allows attackers to manipulate the 'emp' argument, which could lead to unauthorize...

A security vulnerability has been identified in the pytries datrie component, specifically affecting the Trie.load, Trie.read, and Trie.__setstate__ functions within the src/datrie.pyx file. This deserialization flaw can be exploited remotely, allowing an attacker to manipulate the data structure...

A vulnerability exists in the code-projects Online Application System for Admission 1.0, specifically within its database handling functionality. This flaw allows for the insecure storage of sensitive information, which can be remotely manipulated by an attacker. The risk of exploitation is signi...

A vulnerability in the Online Application System for Admission version 1.0 by Code-Projects has been identified, allowing for potential SQL injection attacks. This security flaw affects the file /enrollment/admsnform.php within the Endpoint component, enabling attackers to manipulate queries exec...

A SQL injection vulnerability has been identified in the Simple Laundry System version 1.0, specifically within the /userfinishregister.php file, related to the Parameter Handler component. This flaw allows for remote exploitation through manipulation of the 'firstName' argument, potentially enab...

A Cross Site Scripting vulnerability has been identified in the Code-Projects Online Shoe Store version 1.0. The issue is rooted in the 'product_name' parameter of the file '/admin/admin_feature.php' within the Add Product Page component. This vulnerability allows an attacker to manipulate the in...

A SQL injection vulnerability has been identified in the Easy Blog Site 1.0 product. Specifically, the vulnerability lies within the login.php file, where improper validation of the username and password arguments allows for the execution of arbitrary SQL queries. This flaw can be exploited remot...

An SQL injection vulnerability exists in the Projectworlds Car Rental System version 1.0, specifically within the '/pay.php' file's Parameter Handler component. This flaw can be exploited through a manipulation of the 'mpesa' argument, allowing attackers to execute arbitrary SQL code. The vulnera...

A security flaw has been identified in the Cyber-III Student-Management-System that allows an attacker to leverage an unknown function within the batch-notice.php file. By manipulating the $_SERVER['PHP_SELF'] argument, an attacker can execute cross site scripting (XSS) attacks remotely. This vul...

A cross site scripting vulnerability exists in the Cyber-III Student-Management-System, specifically within the Admin Add Endpoint. This issue arises due to manipulation of the $_SERVER['PHP_SELF'] argument in the notice.php file, allowing attackers to execute malicious scripts remotely. As the e...

A vulnerability exists in the Cyber-III Student Management System related to improper authorization due to an issue in the HTTP POST Request Handler located in /viva/update.php. The problem arises from manipulation of the argument 'Name', allowing for unauthorized access. This vulnerability can b...

An SQL injection vulnerability exists in the PHPGurukul Online Shopping Portal version 2.1, specifically within the /admin/update-image1.php file's Parameter Handler. Attackers can exploit this vulnerability by manipulating the 'filename' argument, potentially leading to unauthorized access and m...

A vulnerability exists in PHPGurukul's Online Shopping Portal Project 2.1, specifically within the '/admin/update-image2.php' file's Parameter Handler component. This issue arises from improper handling of the 'filename' argument, which can lead to SQL injection exploits. Attackers can potentiall...

A security flaw exists in the PHPGurukul Online Shopping Portal Project version 2.1, specifically within an unclassified function in the file /admin/update-image3.php. This vulnerability allows an attacker to manipulate the 'filename' argument, potentially leading to a remote SQL injection attack...

A security flaw has been identified in the HerikLyma CPPWebFramework version 3.1 and below, which permits path traversal. This vulnerability enables attackers to manipulate file paths, potentially leading to unauthorized access to sensitive files outside the intended directory structure. The prob...

A security flaw has been identified in the Projectworlds Car Rental System 1.0, specifically within the /message_admin.php file's Parameter Handler component. This vulnerability allows for potential SQL injection via manipulation of the Message parameter, enabling attackers to execute malicious S...

A vulnerability exists in PHPGurukul Online Shopping Portal Project 2.1, specifically within the /cancelorder.php file of the Parameter Handler component. This weakness allows an attacker to exploit the argument 'oid', leading to SQL injection attacks that can be initiated remotely. The potential...

A security vulnerability exists in PHPGurukul Online Shopping Portal Project 2.1, specifically in the parameter handler located in /categorywise-products.php. An attacker can manipulate the 'cid' argument to execute unauthorized SQL commands, potentially leading to remote exploitation of the appl...

A SQL injection vulnerability has been discovered in the Projectworlds Car Rental Project version 1.0, specifically within the file /book_car.php. This issue arises from an inadequate handling of parameters in the Parameter Handler component, where the manipulation of the 'fname' argument can all...

A vulnerability has been identified in the assafelovic gpt-researcher, specifically in the ws Endpoint component. By manipulating the argument source_urls, an attacker can execute a server-side request forgery (SSRF) attack. This flaw can be exploited remotely, allowing unauthorized actions on th...

A vulnerability has been identified in the assafelovic gpt-researcher application, specifically affecting versions up to 3.4.3. This issue pertains to an unknown function within the component handling the HTTP REST API Endpoint, which demonstrates missing authentication controls. Consequently, th...

A significant code injection vulnerability has been identified in the gpt-researcher product from Assafelovic, affecting versions up to 3.4.3. This vulnerability exists within the 'extract_command_data' function located in the 'backend/server/server_utils.py' file, specifically in the ws Endpoint...

A significant flaw resides in the Report API of the assafelovic gpt-researcher software, specifically within an undisclosed function found in backend/server/app.py. This vulnerability permits remote attackers to perform cross-site scripting (XSS) attacks. Despite being informed through an issue r...

A stack-based buffer overflow vulnerability exists in the formSetFirewall function of Belkin's F9K1015 router firmware version 1.00.10. An attacker can exploit this vulnerability remotely by manipulating the argument used in the webpage, leading to potential unauthorized access and control over t...

A vulnerability in the Linux kernel's ICMP protocol handling could lead to a kernel panic upon receiving specific ICMP Fragmentation Needed errors. The issue arises from the unconditional dereference of an unregistered protocol's handler, which may result in a NULL pointer dereference. This occur...

A security vulnerability affecting the Belkin F9K1015 router has been identified in the formSetSystemSettings function within the Setting Handler component. This vulnerability arises from improper handling of the 'webpage' argument, which can lead to a stack-based buffer overflow. As a result, an...

A vulnerability has been detected in Assafelovic's GPT-Researcher up to version 3.4.3 that exposes the WebSocket Interface to potential cross-site scripting attacks. The flaw arises from improper handling of arguments in the file gpt_researcher/skills/researcher.py. By manipulating the argument '...

A command injection vulnerability exists in the HTTP Interface of ChrisChinchilla Vale-MCP, specifically in the src/index.ts file. The vulnerability is triggered by manipulating the config_path argument, allowing attackers to execute arbitrary operating system commands. This exploitation requires...