A vulnerability was found in Jan Syski MegaBIP up to 5.14. It has been declared as problematic. This vulnerability affects unknown code of the file edytor/index.php?id=7,7,0. The manipulation leads to cross-site request forgery.
This vulnerability was…
My bank’s online services, as a second factor, use a "memorable phrase". Upon login, I am prompted to enter three characters from that phrase, at specified indexes – say, 3rd, 7th, 10th character. Login is denied if this does not…
A vulnerability was found in TOTOLINK A6000R 1.0.1-B20201211.2000. It has been classified as critical. This affects the function action_reboot. The manipulation of the argument opmode leads to command injection.
This vulnerability is uniquely identifi…
A vulnerability was found in TOTOLINK A6000R 1.0.1-B20201211.2000 and classified as critical. Affected by this issue is the function reset_wifi. The manipulation of the argument devname leads to command injection.
This vulnerability is handled as CVE-…
A vulnerability has been found in TOTOLINK A6000R 1.0.1-B20201211.2000 and classified as critical. Affected by this vulnerability is the function enable_wsh. The manipulation of the argument modifyOne leads to command injection.
This vulnerability is …
A vulnerability, which was classified as critical, was found in Guangzhou Huayi Intelligent Technology Jeewms up to 20241229. Affected is the function datagridGraph of the file /graphReportController.do. The manipulation of the argument store_code lead…
A vulnerability, which was classified as critical, has been found in Guangzhou Huayi Intelligent Technology Jeewms up to 20241229. This issue affects the function saveOrUpdate of the file org/jeecgframework/web/cgform/controller/build/CgFormBuildContro…
A vulnerability classified as critical was found in Guangzhou Huayi Intelligent Technology Jeewms up to 20241229. This vulnerability affects unknown code of the file /wmOmNoticeHController.do. The manipulation leads to path traversal: ‘../filedir’.
This vulnerability was named CVE-2025-0390. The attack can be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
A vulnerability classified as problematic has been found in CP Plus CP-VNR-3104 B3223P22C02424. This affects an unknown part of the component RSA Private Key Handler. The manipulation leads to channel accessible by non-endpoint.
This vulnerability is …
A vulnerability was found in CP Plus CP-VNR-3104 B3223P22C02424. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Diffie-Hellmann. The manipulation leads to channel accessible by non-endpoint.
Thi…
