Aggregator

Submit #836452 / VDB-369141

A vulnerability described as critical has been identified in UTT HiPER 2610G up to 3.0.0-171107. This impacts the function strcpy of the file /goform/formConfigDnsFilterGlobal. Executing a manipulation of the argument GroupName can lead to buffer overflow. This vulnerability is handled as CVE-2026-11517. The attack can be executed remotely. Additionally, an exploit exists.

A vulnerability marked as critical has been reported in UTT HiPER 2610G up to 3.0.0-171107. This affects the function strcpy of the file /goform/formNatStaticMap. Performing a manipulation of the argument NatBinds results in buffer overflow. This vulnerability is known as CVE-2026-11516. Access to the local network is required for this attack. Furthermore, an exploit is available.

Submit #836393 / VDB-369140

Submit #836392 / VDB-369139

Submit #836289 / VDB-369138

这次倒是不拼细心了，真拼智商。

A vulnerability labeled as critical has been found in SourceCodester Barangay Resident Profiling and Information Management System 1.0. The impacted element is an unknown function of the file passsword_reset.php of the component Password Reset Handler. Such manipulation of the argument new_password with the input password123 leads to use of hard-coded password. This vulnerability is traded as CVE-2026-11515. The attack may be launched remotely. Furthermore, there is an exploit available.

顶会论文图表复现绘制Skills by ourren

更多最新文章，请访问SecWiki

Submit #836278 / VDB-369137

Submit #836275 / VDB-369136

A vulnerability identified as critical has been detected in itsourcecode Hospital Management System 1.0. The affected element is an unknown function of the file /addpatient.php. This manipulation of the argument admissiontme causes sql injection. This vulnerability appears as CVE-2026-11514. The attack may be initiated remotely. In addition, an exploit is available.

A vulnerability categorized as critical has been discovered in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminaccount.php. The manipulation of the argument Date results in sql injection. This vulnerability is reported as CVE-2026-11513. The attack can be launched remotely. Moreover, an exploit is present.

A vulnerability was found in itsourcecode Hospital Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /billing.php. The manipulation of the argument patientid leads to cross site scripting. This vulnerability is documented as CVE-2026-11512. The attack can be initiated remotely. Additionally, an exploit exists.

Submit #836238 / VDB-369135

A vulnerability was found in Bolt CMS up to 3.7.5. It has been declared as problematic. This vulnerability affects unknown code of the file src/Storage/Field/Type/TextType.php of the component HTML Attribute Handler. Executing a manipulation of the argument style can lead to HTML injection. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is registered as CVE-2026-11511. It is possible to launch the attack remotely. Furthermore, an exploit is available. The GitHub repository was archived by the owner and is now read-only.

Submit #836163 / VDB-369134

Submit #836162 / VDB-369133

Submit #836161 / VDB-369132

Submit #836106 / VDB-369131