Publicly Disclosed
PoC Exploits

libssh2 contains an out-of-bounds write vulnerability in the ssh2_transport_read() function that fails to impose proper limits on the packet_length field. This flaw allows remote attackers to exploit the vulnerability by sending specially crafted SSH packets with excessively large packet_length v...

A command injection vulnerability exists in the VPN server configuration module of the TP-Link Archer BE230 v1.2, which can be exploited after administrative authentication. This flaw allows an attacker to execute arbitrary commands, potentially granting full administrative control over the route...

A flaw in the JCE editor extension for Joomla permits unauthorized users to create new editor profiles. This malicious capability exposes the site to risks, including the ability to upload PHP code and execute it, potentially leading to a full compromise of the website security. Site administrato...

A vulnerability has been detected in the itsourcecode Hospital Management System version 1.0, specifically in the functionality associated with the file /patientchangepassword.php. This issue arises from improper handling of the input parameter newpassword, making it susceptible to SQL injection ...

A security flaw has been identified in the itsourcecode Hospital Management System version 1.0, specifically in the /patientdetail.php file. This vulnerability arises from an exploitable argument manipulation of 'editid', which allows for SQL injection attacks. Attackers can execute this attack r...

A vulnerability exists in the LLVM llvm-project affecting the Bitcode File Handler, specifically within the GCRelocateInst::getBasePtr function. This issue allows for heap-based buffer overflow, potentially enabling local attackers to exploit the flaw. Despite early reports of the issue to the pr...

A vulnerability has been identified in the LLVM project's ValueSymbolTable module, specifically within the llvm::StringMap::insert function in /lib/IR/ValueSymbolTable.cpp. This vulnerability allows for a stack-based buffer overflow, which may lead to exploit scenarios if an attacker can execute ...

A vulnerability exists in version 1.0 of the itsourcecode Hospital Management System related to an unknown function within the /insertbillingrecord.php file. This flaw allows an attacker to manipulate the patientid parameter, leading to SQL injection attacks. The vulnerability is remotely exploit...

A vulnerability exists within the SourceCodester Simple Food Ordering System 1.0, specifically in the /cart.php file. A flaw in an undocumented function allows attackers to manipulate the argument item_price, potentially leading to significant business logic errors. This vulnerability can be expl...

A security flaw has been identified in the weng-xianhu EyouCMS, specifically in versions up to 1.7.1. The vulnerability resides in the /index.php file associated with the API component, where improper handling of the 'click_like' argument can lead to SQL injection attacks. This vulnerability allo...

FrontAccounting versions before 2.4.20 are susceptible to a path traversal vulnerability present in the attachment upload handler. This vulnerability enables authenticated attackers to manipulate the unique_name parameter, allowing the inclusion of malicious path traversal sequences like '../../....

A security vulnerability has been identified in code-projects Online Music Site version 1.0, specifically within the POST Request Handler located in the /Frontend/Feedback.php file. This flaw allows for cross-site scripting (XSS) through manipulated arguments such as fname, femail, faddress, and ...

An SQL injection vulnerability exists in FrontAccounting, specifically in versions prior to 2.4.20, affecting the Bank Statement report handler. This vulnerability allows authenticated attackers to exploit the PARAM_0 POST parameter by injecting malicious SQL commands. By leveraging this flaw, at...

A notable SQL injection issue exists in FrontAccounting prior to version 2.4.20, specifically within the Audit Trail report handler. This vulnerability can be exploited by authenticated users holding the SA_GLANALYTIC permission. By injecting malicious SQL queries through the PARAM_2 and PARAM_3 ...

FrontAccounting prior to version 2.4.20 contains an SQL injection vulnerability in the get_gl_transactions() function. This issue arises because the filter_type parameter is concatenated directly into a SQL IN() clause without proper parameterization. Malicious actors with SA_GLANALYTIC permissio...

A vulnerability in the SourceCodester Class and Exam Timetabling System version 1.0 permits SQL injection through the /preview3.php file. The issue arises when the argument 'course_year_section' is manipulated by attackers, allowing the potential for unauthorized database access. This exploit can...

A vulnerability exists in the SourceCodester Class and Exam Timetabling System, specifically within the /edit_class1.php file. This vulnerability arises from improper handling of user-supplied input related to the argument ID. Attackers can exploit this weakness to execute arbitrary SQL commands,...

A stack-based buffer overflow vulnerability exists in the Edimax EW-7478APC version 1.04, specifically within the formPPPoESetup function of the POST Request Handler. This vulnerability can be triggered remotely by manipulating the pppUserName parameter. If exploited, it can lead to unauthorized ...

A vulnerability affecting the Edimax EW-7478APC version 1.04 has been identified in the POST Request Handler, specifically within the formL2TPSetup function. This flaw allows for a stack-based buffer overflow when the L2TPUserName parameter is improperly manipulated. Attackers can exploit this vu...

A vulnerability in the Edimax EW-7478APC wireless range extender has been identified, specifically in the function handling POST requests for site surveys. The incident involves improper processing of the 'selSSID' parameter, leading to a buffer overflow situation. This weakness can be exploited ...

An OS command injection vulnerability exists in Edimax EW-7478APC version 1.04. This flaw is found in the POST Request Handler within the function formiNICbasic, specifically when manipulating the rootAPmac argument. Successful exploitation allows remote attackers to execute arbitrary OS commands...

A security vulnerability has been identified in the Edimax EW-7478APC version 1.04, specifically within the formAccept function of the POST Request Handler. This flaw allows remote attackers to manipulate the submit-url parameter, leading to potential OS command injection. This vulnerability has ...

A vulnerability has been detected in the Code-Projects Real State Services, specifically in the function within the file /single-list_sale.php when the action parameter is set to 'add'. By manipulating the argument ID, an attacker can execute an SQL injection, potentially exposing sensitive data....

A security vulnerability has been identified in the CodeAstro Complaint Management System version 1.0, specifically within the Report Handler component. The flaw is triggered by improper handling of the 'Report Title' argument in the /report/addreport file. This oversight allows attackers to inje...

A cross-site scripting (XSS) vulnerability was discovered in the itsourcecode Online Hotel Management System version 1.0, specifically in the POST Request Handler component located in the file /admin/mod_room/controller.php. This vulnerability allows an attacker to manipulate the argument 'Name',...

A cross site scripting vulnerability exists within itsourcecode Online Hotel Management System version 1.0, specifically affecting the POST Request Handler component. The vulnerability arises from improper handling of user input in the file /admin/mod_users/controller.php when the 'edit' action i...

A security flaw has been identified in the itsourcecode Online Hotel Management System 1.0, where the file /admin/mod_users/controller.php allows remote attackers to execute SQL injection attacks. By manipulating the 'Name' argument, unauthorized users could potentially access or alter sensitive ...

A vulnerability exists in the Online Hotel Management System (version 1.0) due to improper handling of POST requests in the controller file. Specifically, the 'add' action in /admin/mod_amenities/controller.php is susceptible to cross site scripting (XSS) attacks. By manipulating the 'Name' argum...

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

A security flaw has been identified in the itsourcecode Online Hotel Management System version 1.0, specifically in the /admin/mod_amenities/controller.php file. This vulnerability is associated with an unprotected function that processes image uploads, allowing an attacker to manipulate argument...

A vulnerability in the SP Page Builder for Joomla permits unauthenticated users to upload arbitrary files. This weakness can lead to the execution of PHP code, presenting significant security risks for Joomla websites using this extension.

A SQL injection vulnerability exists in the itsourcecode Online Hotel Management System version 1.0, specifically impacting the /admin/mod_amenities/controller.php?action=edit endpoint. This vulnerability allows attackers to manipulate the 'amen_id' parameter, leading to unauthorized database acc...

A vulnerability exists in the WiseDelfile64.sys component of WiseCleaner Wise Force Deleter versions 7.3.2 and earlier, which allows attackers to execute crafted requests that can lead to unauthorized deletion of arbitrary files from the system. This issue poses a significant risk as it can compr...

A security concern has been identified in itsourcecode's Baptism Information Management System 1.0. A flaw exists in the /editBaptism.php file, where manipulation of the parameter 'ID' can allow an attacker to execute SQL injection attacks. This vulnerability can be exploited remotely, posing a s...

A security weakness has been discovered in the itsourcecode Baptism Information Management System, specifically affecting the /delbaptism.php file. The vulnerability arises from improper handling of the argument ID, allowing for SQL injection attacks. This flaw can be exploited remotely, leading ...

A security vulnerability has been identified in the CodeAstro Complaint Management System version 1.0, specifically in the deletereport function located in application/controllers/Report.php of the Report Endpoint component. This flaw allows attackers to bypass authorization measures, enabling po...

A significant SQL injection vulnerability has been identified in the itsourcecode Hospital Management System version 1.0, specifically within the file /doctortimings.php. This vulnerability allows for the manipulation of the 'editid' argument, which can enable unauthorized access and manipulation...

A vulnerability exists in the Hanwang e-Face General Management Platform 6.3.5.4 that allows for unrestricted file uploads through the manipulation of the /manage/resourceUpload/upload.do endpoint. This security flaw could be exploited remotely, enabling attackers to upload malicious files onto t...

A vulnerability exists in Feehi CMS versions up to 2.1.1 affecting the REST API Endpoint used for handling articles. This issue results from missing authentication mechanisms in the /api/articles file, allowing unauthorized remote access. Attackers can exploit this vulnerability to manipulate req...

A vulnerability has been identified in the D-Link DCS-935L HD Wi-Fi Camera, specifically in version 1.10.01. This issue occurs within the POST Parameter Handler, particularly in the function sub_400E40 of the setconf.cgi file. An attacker can manipulate the UID argument to execute arbitrary OS co...

OpenSTAManager, an open source tool for managing technical support and invoicing, contains a vulnerability in its Payment Schedule module. The application improperly validates array entries used in SQL queries, enabling attackers to execute malicious SQL commands. This could lead to unauthorized ...

A flaw exists in Feehi CMS versions prior to 2.1.1, specifically within the API component at /api/users. This vulnerability allows for improper access controls, enabling attackers to potentially exploit functionality that should be restricted. The issue can be triggered remotely, posing a signifi...

A vulnerability discovered in Documenso versions up to 2.11.0 pertains to a flaw in the Google OAuth Login component. This issue resides in the file packages/auth/server/lib/utils/handle-oauth-callback-url.ts, where improper authentication functionality can be exploited. The vulnerability allows ...

A security vulnerability has been identified in the itsourcecode Hospital Management System version 1.0, specifically within the /doctorprofile.php file. This issue is caused by the improper handling of the 'doctorname' parameter, which allows attackers to execute SQL injection attacks remotely. ...

A vulnerability has been identified in the itsourcecode Hospital Management System 1.0, specifically affecting the /doctorchangepassword.php file. An attacker can exploit this weakness by manipulating the 'newpassword' parameter, leading to SQL injection attacks. This type of attack allows unauth...

The APCu Manager plugin for WordPress, prior to version 4.5.0, can lead to a Stored Cross-Site Scripting vulnerability due to the improper handling of APCu object-cache keys. When persistent object caching is enabled, cache keys derived from unsanitized user input can be rendered unescaped on adm...

The F4 Post Tree WordPress plugin prior to version 2.0.5 exposes a serious security flaw where it fails to conduct proper capability checks and lacks CSRF/nonce verification on specific AJAX actions. This oversight allows authenticated users with Subscriber-level access and above to alter the par...

A double free vulnerability has been identified in Apache HTTP Server that may lead to remote code execution, particularly concerning the HTTP/2 protocol. This issue affects version 2.4.66, and it is crucial for users to upgrade to version 2.4.67 to mitigate any potential security risks associate...

A security flaw has been identified in GitBucket versions up to 4.46.1, specifically affecting the Git.cloneRepository.setURI function within the RepositoryCreationService.scala file. This vulnerability allows attackers to perform server-side request forgery (SSRF) by manipulating the URL argumen...

A stack-based buffer overflow vulnerability was discovered in the Wavlink WL-NU516U1-A device's POST parameter handler, specifically within the function sub_407504 of the /cgi-bin/wireless.cgi file. Attackers can exploit this vulnerability remotely by manipulating the Guest_ssid argument, leading...