8.7
CVE-2025-6163 - TOTOLINK A3002RU HTTP POST Request formMultiAP buffer overflow
A vulnerability was found in TOTOLINK A3002RU 3.0.0-B20230809.1615 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formMultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The aโฆ
8.7
CVE-2025-6162 - TOTOLINK EX1200T HTTP POST Request formMultiAP buffer overflow
A vulnerability has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /boafrm/formMultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer ovโฆ
6.9
CVE-2025-6161 - SourceCodester Simple Food Ordering System editproduct.php unrestricted upload
A vulnerability, which was classified as critical, was found in SourceCodester Simple Food Ordering System 1.0. Affected is an unknown function of the file /editproduct.php. The manipulation of the argument photo leads to unrestricted upload. It is possible to launch the attack remotely. The exploiโฆ
6.9
CVE-2025-6160 - SourceCodester Client Database Management System user_customer_create_order.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Client Database Management System 1.0. This issue affects some unknown processing of the file /user_customer_create_order.php. The manipulation of the argument user_id leads to sql injection. The attack may be initiโฆ
6.9
CVE-2025-6159 - code-projects Hostel Management System allocate_room.php sql injection
A vulnerability classified as critical was found in code-projects Hostel Management System 1.0. This vulnerability affects unknown code of the file /allocate_room.php. The manipulation of the argument search_box leads to sql injection. The attack can be initiated remotely. The exploit has been discโฆ
8.7
CVE-2025-6158 - D-Link DIR-665 HTTP POST Request sub_AC78 stack-based overflow
A vulnerability classified as critical has been found in D-Link DIR-665 1.00. This affects the function sub_AC78 of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the pโฆ
6.9
CVE-2025-6157 - PHPGurukul Nipah Virus Testing Management System registered-user-testing.php sql injection
A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /registered-user-testing.php. The manipulation of the argument testtype leads to sql injection. The attack may be launchโฆ
5.3
CVE-2025-6156 - PHPGurukul Nipah Virus Testing Management System bwdates-report-ds.php sql injection
A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /bwdates-report-ds.php. The manipulation of the argument testtype leads to sql injection. The attack can be lauโฆ
6.9
CVE-2025-6155 - PHPGurukul Hostel Management System login-hm.inc.php sql injection
A vulnerability was found in PHPGurukul Hostel Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /includes/login-hm.inc.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploโฆ
6.9
CVE-2025-6154 - PHPGurukul Hostel Management System login.inc.php sql injection
A vulnerability was found in PHPGurukul Hostel Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /includes/login.inc.php. The manipulation of the argument student_roll_no leads to sql injection. The attack may be initiated remotely. The exploitโฆ