In oretnom23 Automotive Shop Management System v1.0, the product id parameter suffers from a blind SQL Injection Vulnerability allowing remote attackers to dump all database credential and gain admin access(privilege escalation). Date published :...
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetClientState request. Date published : 2022-05-26 https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/4
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/SetFirewallCfg request. Date published : 2022-05-26 https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/6
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a stack-based buffer overflow in the httpd module when handling /goform/WifiExtraSet request. Date published : 2022-05-26 https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/3
Tenda AC Series Router AC18_V15.03.05.19(6318) was discovered to contain a heap overflow in the httpd module when handling /goform/saveParentControlInfo request. Date published : 2022-05-26 https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/5
Tenda AC Series Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function form_fast_setting_wifi_set Date published : 2022-05-26 https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/2
Tenda AC Seris Router AC18_V15.03.05.19(6318) has a stack-based buffer overflow vulnerability in function fromAddressNat Date published : 2022-05-26 https://github.com/lcyfrank/VulnRepo/tree/master/IoT/Tenda/1
74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/jobfairol/resumelist. Date published : 2022-05-26 https://github.com/PAINCLOWN/74cmsSE-Arbitrary-File-Reading/issues/2
74cmsSE v3.5.1 was discovered to contain an arbitrary file read vulnerability via the component indexcontrollerDownload.php. Date published : 2022-05-26 https://github.com/PAINCLOWN/74cmsSE-Arbitrary-File-Reading/issues/1
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/singer/admin/singer/del. Date published : 2022-05-26 https://github.com/chshcms/cscms/issues/28#issue-1209044410
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/singer/admin/singer/hy. Date published : 2022-05-26 https://github.com/chshcms/cscms/issues/27#issue-1209040138
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/user/level_del. Date published : 2022-05-26 https://github.com/chshcms/cscms/issues/30#issue-1209049714
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/singer/admin/lists/zhuan. Date published : 2022-05-26 https://github.com/chshcms/cscms/issues/29#issue-1209046027
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/User/level_sort. Date published : 2022-05-26 https://github.com/chshcms/cscms/issues/32#issue-1209054307