Latest CVE Feed
-
6.3
CVSS31CVE-2025-7615
A vulnerability classified as critical was found in TOTOLINK T6 4.1.5cu.748. Affected by this vulnerability is the function clearPairCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ip leads... Read more
Affected Products : t6_firmware- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
6.3
CVSS31CVE-2025-7563
A vulnerability classified as critical was found in PHPGurukul Online Fire Reporting System 1.2. Affected by this vulnerability is an unknown functionality of the file /admin/completed-requests.php. The manipulation of the argument teamid leads to sql inj... Read more
Affected Products : online_fire_reporting_system- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
6.3
CVSS31CVE-2025-7562
A vulnerability classified as critical has been found in PHPGurukul Online Fire Reporting System 1.2. Affected is an unknown function of the file /admin/new-requests.php. The manipulation of the argument teamid leads to sql injection. It is possible to la... Read more
Affected Products : online_fire_reporting_system- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025
-
8.8
CVSS31CVE-2025-7548
A vulnerability has been found in Tenda FH1201 1.2.0.14(408) and classified as critical. This vulnerability affects the function formSafeEmailFilter of the file /goform/SafeEmailFilter. The manipulation of the argument page leads to stack-based buffer ove... Read more
Affected Products : fh1201_firmware- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7547
A vulnerability, which was classified as critical, was found in Campcodes Online Movie Theater Seat Reservation System 1.0. This affects the function save_movie of the file /admin/admin_class.php. The manipulation of the argument cover leads to unrestrict... Read more
Affected Products :- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
5.3
CVSS31CVE-2025-7546
A vulnerability, which was classified as problematic, has been found in GNU Binutils 2.45. Affected by this issue is the function bfd_elf_set_group_contents of the file bfd/elf.c. The manipulation leads to out-of-bounds write. It is possible to launch the... Read more
Affected Products : binutils- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7538
A vulnerability classified as critical was found in Campcodes Sales and Inventory System 1.0. This vulnerability affects unknown code of the file /pages/product_update.php. The manipulation of the argument image leads to unrestricted upload. The attack ca... Read more
Affected Products : sales_and_inventory_system- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7537
A vulnerability classified as critical has been found in Campcodes Sales and Inventory System 1.0. This affects an unknown part of the file /pages/product_update.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate t... Read more
Affected Products : sales_and_inventory_system- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7536
A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /pages/receipt_credit.php. The manipulation of the argument sid leads to sql injection. ... Read more
Affected Products : sales_and_inventory_system- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7535
A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /pages/reprint_cash.php. The manipulation of the argument sid leads to sql inje... Read more
Affected Products : sales_and_inventory_system- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7534
A vulnerability was found in PHPGurukul Student Result Management System 2.0. It has been classified as critical. Affected is an unknown function of the file /notice-details.php of the component GET Parameter Handler. The manipulation of the argument nid ... Read more
Affected Products : student_result_management_system- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7533
A vulnerability was found in code-projects Job Diary 1.0 and classified as critical. This issue affects some unknown processing of the file /view-details.php. The manipulation of the argument job_id leads to sql injection. The attack may be initiated remo... Read more
Affected Products :- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
8.8
CVSS31CVE-2025-7532
A vulnerability has been found in Tenda FH1202 1.2.0.14(408) and classified as critical. This vulnerability affects the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. The manipulation of the argument page leads to stack-based ... Read more
Affected Products : fh1202_firmware- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
8.8
CVSS31CVE-2025-7531
A vulnerability, which was classified as critical, was found in Tenda FH1202 1.2.0.14(408). This affects the function fromPptpUserSetting of the file /goform/PPTPUserSetting. The manipulation of the argument delno leads to stack-based buffer overflow. It ... Read more
Affected Products : fh1202_firmware- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
8.8
CVSS31CVE-2025-7530
A vulnerability, which was classified as critical, has been found in Tenda FH1202 1.2.0.14(408). Affected by this issue is the function fromPptpUserAdd of the file /goform/PPTPDClient. The manipulation of the argument Username leads to stack-based buffer ... Read more
Affected Products : fh1202_firmware- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
8.8
CVSS31CVE-2025-7529
A vulnerability classified as critical was found in Tenda FH1202 1.2.0.14(408). Affected by this vulnerability is the function fromNatlimit of the file /goform/Natlimit. The manipulation of the argument page leads to stack-based buffer overflow. The attac... Read more
Affected Products : fh1202_firmware- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7517
A vulnerability, which was classified as critical, has been found in code-projects Online Appointment Booking System 1.0. This issue affects some unknown processing of the file /getDay.php. The manipulation of the argument cidval leads to sql injection. T... Read more
Affected Products :- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
7.3
CVSS31CVE-2025-7516
A vulnerability classified as critical was found in code-projects Online Appointment Booking System 1.0. This vulnerability affects unknown code of the file /cancelbookingpatient.php. The manipulation of the argument appointment leads to sql injection. Th... Read more
Affected Products :- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
5.9
CVSS31CVE-2025-6491
In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 when parsing XML data in SOAP extensions, overly large (>2Gb) XML namespace prefix may lead to null pointer dereference. This may lead to crashes and affect... Read more
Affected Products : php- Published: Jul. 13, 2025
- Modified: Jul. 14, 2025
-
8.8
CVSS31CVE-2025-53689
Blind XXE Vulnerabilities in jackrabbit-spi-commons and jackrabbit-core in Apache Jackrabbit < 2.23.2 due to usage of an unsecured document build to load privileges. Users are recommended to upgrade to versions 2.20.17 (Java 8), 2.22.1 (Java 11) or 2.23.... Read more
Affected Products :- Published: Jul. 14, 2025
- Modified: Jul. 14, 2025