9.8

CVSS3.1

CVE-2025-28039 -

TOTOLINK EX1200T V4.1.2cu.5232_B20210713 was found to contain a pre-auth remote command execution vulnerability in the setUpgradeFW function through the FileName parameter.

๐Ÿ“… Published: April 22, 2025, midnight ๐Ÿ”„ Last Modified: April 29, 2025, 4:01 p.m.

9.8

CVSS3.1

CVE-2025-28036 -

TOTOLINK A950RG V4.1.2cu.5161_B20200903 was found to contain a pre-auth remote command execution vulnerability in the setNoticeCfg function through the NoticeUrl parameter.

๐Ÿ“… Published: April 22, 2025, midnight ๐Ÿ”„ Last Modified: April 29, 2025, 4:13 p.m.

9.8

CVSS3.1

CVE-2025-28034 -

TOTOLINK A800R V4.1.2cu.5137_B20200730, A810R V4.1.2cu.5182_B20201026, A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a pre-auth remote command execution vulnerability in the NTPSyncWithHost functโ€ฆ

๐Ÿ“… Published: April 22, 2025, midnight ๐Ÿ”„ Last Modified: April 29, 2025, 4:18 p.m.

7.3

CVSS3.1

CVE-2025-28033 -

TOTOLINK A800R V4.1.2cu.5137_B20200730, A810R V4.1.2cu.5182_B20201026, A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a pre-auth buffer overflow vulnerability in the setNoticeCfg function through โ€ฆ

๐Ÿ“… Published: April 22, 2025, midnight ๐Ÿ”„ Last Modified: April 29, 2025, 4:19 p.m.

7.3

CVSS3.1

CVE-2025-28029 -

TOTOLINK A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a buffer overflow vulnerability in cstecgi.cgi

๐Ÿ“… Published: April 22, 2025, midnight ๐Ÿ”„ Last Modified: May 7, 2025, 4:28 p.m.

5.4

CVSS3.1

CVE-2024-53569 -

A stored cross-site scripting (XSS) vulnerability in the New Goal Creation section of Volmarg Personal Management System v1.4.65 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the description parameter.

๐Ÿ“… Published: April 22, 2025, midnight ๐Ÿ”„ Last Modified: April 23, 2025, 2:08 p.m.

9.8

CVSS3.1

CVE-2023-43958 -

An arbitrary file upload vulnerability in the component /jquery-file-upload/server/php/index.php of Hospital Management System v4.0 allows an unauthenticated attacker to upload any file to the server and execute arbitrary code.

๐Ÿ“… Published: April 22, 2025, midnight ๐Ÿ”„ Last Modified: May 14, 2025, 1:14 p.m.

6.5

CVSS3.1

CVE-2025-29743 -

D-Link DIR-816 A2V1.1.0B05 was found to contain a command injection in /goform/delRouting.

๐Ÿ“… Published: April 22, 2025, midnight ๐Ÿ”„ Last Modified: April 30, 2025, 1:54 p.m.

9.8

CVSS3.1

CVE-2025-43949 -

MuM (aka Mensch und Maschine) MapEdit (aka mapedit-web) 24.2.3 is vulnerable to SQL Injection that allows an attacker to execute malicious SQL statements that control a web application's database server.

๐Ÿ“… Published: April 22, 2025, midnight ๐Ÿ”„ Last Modified: April 23, 2025, 2:15 p.m.

7.3

CVSS3.1

CVE-2024-40445 -

A directory traversal vulnerability in forkosh Mime TeX before version 1.77 allows attackers on Windows systems to read or append arbitrary files by manipulating crafted input paths.

๐Ÿ“… Published: April 22, 2025, midnight ๐Ÿ”„ Last Modified: June 23, 2025, 6:33 p.m.
Total resulsts: 343926
Page 5179 of 34,393
ยซ previous page ยป next page
Filters