8.7
CVE-2025-8159 - D-Link DIR-513 HTTP POST Request formLanguageChange stack-based overflow
A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue affects the function formLanguageChange of the file /goform/formLanguageChange of the component HTTP POST Request Handler. The manipulation of the argument curTime leads to stack-based buffer overflow. The atβ¦
5.3
CVE-2025-8158 - PHPGurukul Login and User Management System yesterday-reg-users.php sql injection
A vulnerability was found in PHPGurukul Login and User Management System 3.3. It has been declared as critical. This vulnerability affects unknown code of the file /admin/yesterday-reg-users.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The eβ¦
5.3
CVE-2025-8157 - PHPGurukul User Registration & Login and User Management lastthirtyays-reg-users.php sql injection
A vulnerability was found in PHPGurukul User Registration & Login and User Management 3.3. It has been classified as critical. This affects an unknown part of the file /admin/lastthirtyays-reg-users.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attaβ¦
5.3
CVE-2025-8156 - PHPGurukul User Registration & Login and User Management lastsevendays-reg-users.php sql injection
A vulnerability was found in PHPGurukul User Registration & Login and User Management 3.3 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/lastsevendays-reg-users.php. The manipulation of the argument ID leads to sql injection. The attack may be laβ¦
5.1
CVE-2025-8155 - D-Link DCS-6010L Management Application vb.htm cross site scripting
A vulnerability has been found in D-Link DCS-6010L 1.15.03 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /vb.htm of the component Management Application. The manipulation of the argument paratest leads to cross site scripting. The attack can bβ¦
6.1
CVE-2025-5254 - Stored XSS in Kron Technologies' Kron PAM
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kron Technologies Kron PAM allows Stored XSS.This issue affects Kron PAM: before 3.7.
6.5
CVE-2025-5253 - DoS in Kron Technologies' Kron PAM
Allocation of Resources Without Limits or Throttling vulnerability in Kron Technologies Kron PAM allows HTTP DoS.This issue affects Kron PAM: before 3.7.
0.0
CVE-2025-8193 -
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
7.5
CVE-2025-8183 - NULL Pointer Dereference in Β΅D3TN
NULL Pointer Dereference in Β΅D3TN via non-singleton destination Endpoint Identifier allows remote attacker to reliably cause DoS
8.7
CVE-2025-8140 - TOTOLINK A702R HTTP POST Request formWlanMultipleAP buffer overflow
A vulnerability was found in TOTOLINK A702R 4.0.0-B20230721.1521. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formWlanMultipleAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The atβ¦