6.1

CVSS3.1

CVE-2025-65465 -

A reflected Cross-Site Scripting (XSS) vulnerability in the RaiseError function of Skrol29 TbsZip version 2.17 and earlier allows remote attackers to execute arbitrary web script or HTML via a crafted payload in a filename parameter (e.g., to the FileRead function). This occurs because the error me…

πŸ“… Published: March 2, 2026, midnight πŸ”„ Last Modified: March 2, 2026, 2:10 p.m.

0.0

CVE-2026-24109 -

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by controlling the value of `picName`. When this value is used in `sprintf` without validating variable sizes, it could lead to a buffer overflow vulnerability.

πŸ“… Published: March 2, 2026, midnight πŸ”„ Last Modified: March 2, 2026, 2:32 p.m.

0.0

CVE-2026-26697 -

code-projects Simple Student Alumni System code-projects v1.0 is vulnerable to SQL Injection in /TracerStudy/recordteacher_view.php?teacherID=.

πŸ“… Published: March 2, 2026, midnight πŸ”„ Last Modified: March 2, 2026, 1:57 p.m.

0.0

CVE-2026-24115 -

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Failure to validate the sizes of `gstup` and `gstdwn` before concatenating them into `gstruleQos` may lead to buffer overflow.

πŸ“… Published: March 2, 2026, midnight πŸ”„ Last Modified: March 2, 2026, 2:23 p.m.

0.0

CVE-2026-24107 -

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Failure to validate the value of `usbPartitionName`, which is directly used in `doSystemCmd`, may lead to critical command injection vulnerabilities.

πŸ“… Published: March 2, 2026, midnight πŸ”„ Last Modified: March 2, 2026, 2:19 p.m.

0.0

CVE-2026-24108 -

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by controlling the value of `nptr`. When this value is passed into the `getMibPrefix` function and concatenated using `sprintf` without proper size validation, it could lead to a buffer overflow vulnera…

πŸ“… Published: March 2, 2026, midnight πŸ”„ Last Modified: March 2, 2026, 2:15 p.m.

0.0

CVE-2026-26696 -

code-projects Simple Student Alumni System code-projects v1.0 is vulnerable to SQL Injection in /TracerStudy/recordteacher_edit.php.

πŸ“… Published: March 2, 2026, midnight πŸ”„ Last Modified: March 2, 2026, 2:44 p.m.

0.0

CVE-2026-26698 -

code-projects Simple Student Alumni System v1.0 is vulnerable to SQL Injection in /TracerStudy/modal_edit.php.

πŸ“… Published: March 2, 2026, midnight πŸ”„ Last Modified: March 2, 2026, 1:55 p.m.

0.0

CVE-2026-24114 -

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Failure to validate `pPortMapIndex` may lead to buffer overflows when using `strcpy`.

πŸ“… Published: March 2, 2026, midnight πŸ”„ Last Modified: March 2, 2026, 2:28 p.m.

0.0

CVE-2026-24113 -

An issue was discovered in Tenda W20E V4.0br_V15.11.0.6. Attackers may exploit the vulnerability by controlling the value of `nptr`. When this value is passed into the `getMibPrefix` function and concatenated using `sprintf` without proper size validation, it could lead to a buffer overflow vulnera…

πŸ“… Published: March 2, 2026, midnight πŸ”„ Last Modified: March 2, 2026, 2:43 p.m.
Total resulsts: 335300
Page 9 of 33,530
Β« previous page Β» next page
Filters