Aggregator

政治叙事中的逻辑跳跃

Submit #799545 / VDB-359650

Submit #799544 / VDB-359649

Submit #799543 / VDB-359648

Submit #799482 / VDB-359647

A vulnerability classified as problematic has been found in CodeAstro Online Job Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /users/user-cvs/. The manipulation leads to file and directory information exposure. This vulnerability is referenced as CVE-2026-7071. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

A vulnerability described as critical has been identified in code-projects Inventory Management System 1.0. Affected is an unknown function of the component Login. Executing a manipulation of the argument Username can lead to sql injection. The identification of this vulnerability is CVE-2026-7070. The attack may be launched remotely. Furthermore, there is an exploit available.

Submit #799236 / VDB-359646

Submit #798696 / VDB-359645

A vulnerability marked as critical has been reported in D-Link DIR-825 up to 3.00b32. This impacts the function AddPortMapping of the file upnpsoap.c of the component miniupnpd. Performing a manipulation of the argument NewPortMappingDescription results in buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability was named CVE-2026-7069. The attack needs to be approached within the local network. In addition, an exploit is available.

A vulnerability labeled as critical has been found in D-Link DIR-825 3.00b32. This affects the function NMBD_process of the file sserver.c of the component nmbd. Such manipulation leads to buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is uniquely identified as CVE-2026-7068. The attack can only be initiated within the local network. Moreover, an exploit is present.

A vulnerability identified as critical has been detected in D-Link DIR-822 A_101. The impacted element is the function system of the file /udhcpcd/dhcpd.c of the component udhcpd DHCP Service. This manipulation of the argument Hostname causes command injection. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is handled as CVE-2026-7067. The attack can be initiated remotely. Additionally, an exploit exists.

Submit #798700 / VDB-352377

Submit #798695 / VDB-348425

Submit #798694 / VDB-356563

Submit #798651 / VDB-273548

Submit #798647 / VDB-359644

Submit #798646 / VDB-359643

A vulnerability identified as critical has been detected in D-Link DIR-822 A_101. The impacted element is the function system of the file /udhcpcd/dhcpd.c of the component udhcpd DHCP Service. This manipulation of the argument Hostname causes command injection. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is handled as CVE-2026-7067. The attack can be initiated remotely. Additionally, an exploit exists.

Submit #798645 / VDB-359642