6.9
CVE-2025-5635 - PCMan FTP Server PLS Command buffer overflow
A vulnerability classified as critical was found in PCMan FTP Server 2.0.7. This vulnerability affects unknown code of the component PLS Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
6.9
CVE-2025-5634 - PCMan FTP Server NOOP Command buffer overflow
A vulnerability classified as critical has been found in PCMan FTP Server 2.0.7. This affects an unknown part of the component NOOP Command Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be useβ¦
5.3
CVE-2025-5633 - code-projects/anirbandutta9 Content Management System/News-Buzz users.php sql injection
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/users.php. The manipulation of the argument delete leads to sql injection. The attack may be lβ¦
5.3
CVE-2025-5632 - code-projects/anirbandutta9 Content Management System/News-Buzz users.php sql injection
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/users.php. The manipulation of the argument change_to_admin leads to sql injection. Tβ¦
6.9
CVE-2025-5631 - code-projects/anirbandutta9 Content Management System/News-Buzz publicposts.php sql injection
A vulnerability was found in code-projects/anirbandutta9 Content Management System and News-Buzz 1.0. It has been classified as critical. Affected is an unknown function of the file /publicposts.php. The manipulation of the argument post leads to sql injection. It is possible to launch the attack rβ¦
9.3
CVE-2025-5630 - D-Link DIR-816 form2lansetup.cgi stack-based overflow
A vulnerability has been found in D-Link DIR-816 1.10CNB05 and classified as critical. This vulnerability affects unknown code of the file /goform/form2lansetup.cgi. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been β¦
8.7
CVE-2025-5629 - Tenda AC10 HTTP SetPptpServerCfg formSetPPTPServer buffer overflow
A vulnerability, which was classified as critical, was found in Tenda AC10 up to 15.03.06.47. This affects the function formSetPPTPServer of the file /goform/SetPptpServerCfg of the component HTTP Handler. The manipulation of the argument startIp/endIp leads to buffer overflow. It is possible to inβ¦
5.1
CVE-2025-5628 - SourceCodester Food Menu Manager Add Menu index.php cross site scripting
A vulnerability, which was classified as problematic, has been found in SourceCodester Food Menu Manager 1.0. Affected by this issue is some unknown functionality of the file /index.php of the component Add Menu Handler. The manipulation of the argument name/description leads to cross site scriptinβ¦
5.3
CVE-2025-5627 - code-projects Patient Record Management System sputum_form.php sql injection
A vulnerability classified as critical was found in code-projects Patient Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /sputum_form.php. The manipulation of the argument itr_no leads to sql injection. The attack can be launched remotely. The eβ¦
6.9
CVE-2025-5626 - Campcodes Online Teacher Record Management System edit-subjects-detail.php sql injection
A vulnerability classified as critical has been found in Campcodes Online Teacher Record Management System 1.0. Affected is an unknown function of the file /admin/edit-subjects-detail.php. The manipulation of the argument editid leads to sql injection. It is possible to launch the attack remotely. β¦