|
5131
|
6.2 |
MEDIUM
Local
|
-
|
-
|
Bome Restorator 1793 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can create a ma…
|
CWE-120
Classic Buffer Overflow
|
CVE-2018-25292
|
2026-04-28 03:53 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5132
|
6.2 |
MEDIUM
Local
|
-
|
-
|
Prime95 29.4b7 contains a buffer overflow vulnerability in the PrimeNet connection dialog that allows local attackers to crash the application by supplying an excessively long string in the optional …
|
CWE-120
Classic Buffer Overflow
|
CVE-2018-25293
|
2026-04-28 03:53 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5133
|
7.5 |
HIGH
Network
|
-
|
-
|
CEWE Photoshow 6.3.4 contains a buffer overflow vulnerability in the login dialog that allows attackers to crash the application by submitting oversized input. Attackers can inject 4000 bytes of data…
|
CWE-120
Classic Buffer Overflow
|
CVE-2018-25294
|
2026-04-28 03:53 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5134
|
6.2 |
MEDIUM
Local
|
-
|
-
|
ObserverIP Scan Tool 1.4.0.1 contains a denial of service vulnerability that allows local attackers to crash the application by submitting an excessively long string in the IP input field. Attackers …
|
CWE-789
Memory Allocation with Excessive Size Value
|
CVE-2018-25295
|
2026-04-28 03:53 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5135
|
5.5 |
MEDIUM
Local
|
-
|
-
|
P10 Central Management Software 1.4.13 contains a buffer overflow vulnerability in the login password field that allows local attackers to crash the application by submitting an oversized input strin…
|
CWE-120
Classic Buffer Overflow
|
CVE-2018-25296
|
2026-04-28 03:53 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5136
|
9.8 |
CRITICAL
Network
|
-
|
-
|
A security flaw has been discovered in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function setVpnPassCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulat…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-7037
|
2026-04-28 03:50 |
2026-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5137
|
3.3 |
LOW
Local
|
-
|
-
|
A weakness has been identified in tufantunc ssh-mcp up to 1.5.0. Impacted is an unknown function of the file src/index.ts of the component Command Line Handler. This manipulation causes insufficientl…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2026-7038
|
2026-04-28 03:50 |
2026-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5138
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in 666ghj MiroFish up to 0.1.2. This affects the function get_simulation_posts of the file backend/app/api/simulation.py of the component Query Parameter Handler. Performing…
|
CWE-22
Path Traversal
|
CVE-2026-7059
|
2026-04-28 03:50 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5139
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in baomidou dynamic-datasource 2.5.0. Affected by this vulnerability is the function DsSpelExpressionProcessor#doDetermineDatasource of the file dynamic-datasource-spri…
|
CWE-74
CWE-707
Injection
Improper Enforcement of Message or Data Structure
|
CVE-2026-7045
|
2026-04-28 03:50 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5140
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was determined in KLiK SocialMediaWebsite up to 1.0.1. This vulnerability affects unknown code of the file /includes/get_message_ajax.php of the component Private Message Handler. Exe…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7002
|
2026-04-28 03:46 |
2026-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
