Publicly Disclosed
PoC Exploits

A vulnerability has been identified in SourceCodester's Student Result Management System 1.0, specifically in the /srms/script/admin/core/update_smtp.php file. This vulnerability allows for improper access controls, presenting a significant threat as it can be exploited remotely. The lack of prop...

A vulnerability exists in UTT HiPER 810G prior to version 1.7.7-171114, specifically within the function strcpy in the /goform/ConfigExceptMSN file. This weakness can be exploited by manipulating the argument 'remark', leading to a buffer overflow condition. The nature of this vulnerability allow...

A security issue in the YiFang CMS up to version 2.0.5 has been identified, specifically within the Extended Management Module's D_friendLinkGroup.php file. This vulnerability enables attackers to conduct cross site scripting (XSS) attacks by manipulating the 'Name' argument during an update func...

An identified weakness in YiFang CMS versions up to 2.0.5 involves the update function in the D_adManage.php file within the Extended Management Module. This vulnerability allows remote attackers to manipulate the 'Name' argument, leading to cross-site scripting (XSS) conditions. As the exploit h...

A security flaw has been identified in YiFang CMS versions up to 2.0.5, specifically within the Extended Management Module. This vulnerability involves a manipulation of the 'name' or 'index' parameter in the app/db/admin/D_adPosition.php file, leading to potential cross-site scripting exploits. ...

A stack-based buffer overflow vulnerability has been identified in Tenda A18, specifically within the webCgiGetUploadFile function of the /cgi-bin/UploadCfg. This flaw allows for manipulation of the argument boundary, potentially leading to remote code execution if exploited. It is critical for u...

The Conditional CAPTCHA plugin for WordPress, up to version 4.0.0, exposes users to an open redirect vulnerability due to improper validation of redirect parameters. This flaw allows attackers to manipulate redirection requests, potentially leading users to malicious sites without their awareness...

A stack-based buffer overflow vulnerability has been identified in the D-Link DWR-M960 wireless router, specifically within the Wireless Access Control Endpoint. This security flaw occurs due to improper handling of the 'submit-url' argument in the function sub_453140, potentially allowing remote...

A noteworthy stack-based buffer overflow vulnerability has been identified in the D-Link DWR-M960 router, specifically in the WLAN Encryption Configuration Endpoint function sub_452CCC. This weakness is triggered by improper handling of the submit-url argument, allowing an attacker to execute mal...

A vulnerability has been identified in the D-Link DWR-M960 router firmware version 1.01.07. This issue resides in the Operation Mode Configuration Endpoint, specifically within the function sub_462590 located in the /boafrm/formOpMode file. The vulnerability arises from improper handling of the s...

A vulnerability discovered in the D-Link DWR-M960 version 1.01.07 pertains to the LTE Configuration Endpoint's processing of the submit-url argument. This flaw allows for a stack-based buffer overflow, enabling an attacker to execute arbitrary code remotely. The vulnerability is not only technica...

A stack-based buffer overflow vulnerability exists in the D-Link DWR-M960 product, specifically in the Bridge VLAN Configuration Endpoint. This issue arises in the sub_42B5A0 function within the /boafrm/formBridgeVlan file, where an attack can exploit a manipulated argument, submit-url. The explo...

A vulnerability in libvips affects the function vips_source_read_to_memory, leading to a heap-based buffer overflow. This issue is present in libvips versions up to 8.19.0 and can be exploited on the local host. Although it requires a specific input, primarily involving custom seekable sources la...

A vulnerability exists in the Online Reviewer System developed by Code-Projects, specifically in the /system/system/students/assessments/results/studentresult-view.php file. This issue arises from insufficient input validation of the 'test_id' argument, leading to a SQL injection vulnerability th...

A buffer overflow vulnerability has been identified in the Tenda FH451 router affecting versions up to 1.0.0.9. This security issue involves improper handling of the file '/goform/GstDhcpSetSer', allowing for potential remote attacks. The vulnerability exposes the device to exploitations that can...

A vulnerability in the Tenda HG9 device has been discovered, specifically in the /boaform/formPing6 code. This flaw allows for a stack-based buffer overflow when the pingAddr argument is manipulated. An attacker can exploit this vulnerability remotely, potentially leading to unauthorized access o...

ZoneMinder, an open-source closed-circuit television software, is affected by a second-order SQL Injection vulnerability. Found in versions 1.36.37 and below, as well as 1.37.61 through 1.38.0, the flaw exists in the getNearEvents() function within web/ajax/status.php. While event field values li...

A stack-based buffer overflow vulnerability exists in the Tenda HG9 (version 300001138) within the Diagnostic Ping Endpoint, specifically in the /boaform/formPing file. This vulnerability can be exploited remotely by manipulating the pingAddr argument, potentially allowing an attacker to execute ...

A security vulnerability has been identified in the Tenda HG9 300001138, specifically within the Loopback Detection Configuration Endpoint. The issue arises from inadequate handling of the Ethtype argument in the file /boaform/formLoopBack, leading to a stack-based buffer overflow. This flaw allo...

A vulnerability has been discovered in the Tenda HG9's GPON Configuration Endpoint, specifically within the file /boaform/formgponConf. This vulnerability, stemming from improper handling of user-provided arguments (specifically fmgpon_loid and fmgpon_loid_password), can lead to a stack-based buf...

A security flaw exists in the Tenda HG9 300001138 affecting the Samba Configuration Endpoint found at /boaform/formSamba. This vulnerability allows an attacker to manipulate the sambaCap argument, leading to a stack-based buffer overflow condition. The exploitation of this vulnerability can be co...

A stack-based buffer overflow vulnerability exists in the Tenda HG9 Wireless Configuration Endpoint located at /boaform/formWlanSetup. By manipulating the 'ssid' argument, an attacker can exploit this vulnerability to execute arbitrary code. This flaw may be exploited remotely without requiring l...

A security weakness has been detected in the funadmin product, specifically in versions up to 7.1.0-rc4. The issue resides in the setConfig function located in the app/backend/controller/Ajax.php file of the Configuration Handler component. This vulnerability allows for improper authorization, wh...

A security flaw has been identified in Funadmin versions up to 7.1.0-rc4, specifically within the 'repass' function located in app/frontend/controller/Member.php. This vulnerability arises from improper handling of the 'forget_code' and 'vercode' arguments, leading to an insecure password recover...

A security vulnerability has been found in the funadmin web application affecting versions up to 7.1.0-rc4. This issue lies in the getMember function of the file app/frontend/view/login/forget.html. Exploiting this vulnerability could allow attackers to disclose sensitive information. The nature ...

A vulnerability exists in CCExtractor up to version 0.96.5, specifically in the function processmp4 located in the library src/lib_ccx/mp4.c. This vulnerability can lead to a use after free condition, presenting a risk for exploitation given local access. The exploit has been made public, prompti...

A security vulnerability in Aardappel Lobster has been identified that allows for uncontrolled recursion through the lobster::TypeName function in the dev/src/lobster/idents.h library. This issue can only be exploited from a local environment, posing a risk primarily to users with direct access. ...

A stack-based buffer overflow vulnerability has been discovered in the Tenda A21 router, specifically within the set_device_name function located at /goform/SetOnlineDevName. By manipulating the input parameter devName, an attacker can exploit this weakness remotely, potentially leading to arbitr...

A vulnerability has been identified in the D-Link DWR-M960 router, where a stack-based buffer overflow can occur in the function sub_469104 of the '/boafrm/formIpv6Setup' file. This security flaw enables an attacker to manipulate the 'submit-url' argument, potentially leading to exploitation from...

A vulnerability exists in the D-Link DWR-M960 router related to its WAN Interface Setting Handler, specifically in the sub_41914C function. An improperly handled argument, 'submit-url', can lead to a stack-based buffer overflow, enabling remote attackers to execute arbitrary code. This vulnerabil...

A stack-based buffer overflow vulnerability exists in the D-Link DWR-M960 router's formIpQoS functionality. By manipulating the 'submit-url' argument, an attacker can execute a remote exploit that compromises the router's integrity. This vulnerability was publicly disclosed and poses a significan...

A stack-based buffer overflow vulnerability exists in D-Link’s DWR-M960 router, specifically within the function sub_46385C in the /boafrm/formDosCfg file. By manipulating the 'submit-url' argument, an attacker may exploit this flaw remotely, potentially leading to arbitrary code execution or sys...

A stack-based buffer overflow vulnerability has been identified in the D-Link DWR-M960 router specifically in the Advanced Firewall Configuration Endpoint. The issue arises from improper handling of the argument 'submit-url' within the function located at sub_425FF8 of the /boafrm/formFirewallAdv...

A remote code execution vulnerability exists in the Tenda A18's Httpd Service due to improper handling in the strcpy function within the WifiExtraSet component. An attacker can exploit this flaw by manipulating the wpapsk_crypto5g argument, leading to a stack-based buffer overflow. This vulnerabi...

A stack-based buffer overflow vulnerability exists in the Tenda A18 router, specifically in the 'parse_macfilter_rule' function of the '/goform/setBlackRule' file. This vulnerability can be exploited remotely by manipulating the 'deviceList' argument, leading to potential unauthorized access or c...

A security flaw exists in the Tenda A21 version 1.0.0.0 affecting the function 'form_fast_setting_wifi_set' within the '/goform/fast_setting_wifi_set' file. An attacker can exploit this vulnerability by manipulating the 'ssid' argument, which may result in a stack-based buffer overflow. This cond...

A vulnerability has been identified in the Tenda A21 router, affecting version 1.0.0.0. This security flaw resides within the setSchedWifi function located in the /goform/openSchedWifi file. An attacker can manipulate the schedStartTime and schedEndTime parameters, leading to a stack-based buffer...

A security vulnerability has been identified in Tenda A21 firmware version 1.0.0.0, specifically within the /goform/setBlackRule endpoint of the MAC Filtering Configuration feature. This vulnerability arises from inadequate validation of the input parameter 'devName/mac', which may result in a st...

A stack-based buffer overflow vulnerability has been identified in the Tenda A21 model 1.0.0.0, specifically in the fromSetIpMacBind function within the /goform/SetIpMacBind file. This weakness allows remote attackers to manipulate the argument list, potentially leading to unauthorized access and...

A security flaw identified in the Tenda A21 router's function set_qosMib_list, located in the /goform/formSetQosBand file, permits a stack-based buffer overflow. This vulnerability allows remote attackers to manipulate the argument list, potentially leading to arbitrary code execution. The exploi...

A vulnerability exists in the Janet programming language in the function janetc_varset located in src/core/specials.c, which can lead to an out-of-bounds read. This flaw can only be exploited from a local environment. Public exploits are available, emphasizing the urgency of updating to version 1...

A SQL injection vulnerability exists in the itsourcecode Vehicle Management System 1.0 due to improper validation of the ID parameter in /billaction.php. This flaw allows remote attackers to manipulate SQL queries, potentially gaining unauthorized access to the database and exposing sensitive inf...

A vulnerability exists in the itsourcecode Agri-Trading Online Shopping System 1.0, specifically within the HTTP POST Request Handler's productcontroller.php file. This vulnerability allows for SQL injection via manipulation of the Product argument, enabling attackers to execute remote exploits. ...

A path traversal vulnerability has been identified in the Megagao ERP and Production SSM solutions, specifically within the pictureDelete function of the PictureController.java file. This vulnerability can be exploited remotely through manipulation of the picName argument, allowing unauthorized a...

A path traversal vulnerability exists in the deleteFile function of FileServiceImpl.java within both Megagao SSM-ERP and Production_SSM products. This flaw allows attackers to manipulate file paths, potentially enabling them to access unauthorized files on the server. The attack can be initiated ...

A critical issue in Camaleon CMS's UsersController, specifically in the 'updated_ajax' method, enables privilege escalation due to the improper handling of parameters. The vulnerability arises from the use of the permit! method, which fails to filter input, allowing all parameters to be processed...

A security vulnerability has been identified in the SSM ERP and Production SSM systems from Feng_Ha_Ha, specifically within the EmployeeController.java file. This flaw allows for improper authorization, which may be exploited remotely, potentially leading to unauthorized access. The issue has bee...

phpMoAdmin version 1.1.5 is affected by a stored cross-site scripting vulnerability, enabling unauthorized users to inject harmful scripts into the application. By exploiting this vulnerability, attackers can manipulate the collection parameter in GET requests to moadmin.php, allowing them to exe...

OrientDB 3.0.17 is susceptible to a reflected cross-site scripting vulnerability that can be exploited by attackers to inject malicious scripts into web applications. By crafting specific JSON payloads and submitting them via POST requests to the document endpoint, attackers can execute arbitrary...

The thesystem 1.0 is vulnerable to command injection through its run_command endpoint, which permits unauthenticated attackers to execute arbitrary system commands. By sending crafted POST requests containing shell commands in the command parameter, attackers can gain unauthorized access and exec...