Vulnerabilidades CVE
Base de datos de vulnerabilidades CVE enriquecida con datos de CISA KEV y NVD
| CVE ID | CVSS | Severidad | KEV | Avistamientos |
|---|---|---|---|---|
| CVE-2022-45995 There is an unauthorized buffer overflow vulnerability in Tenda AX12 v22.03.01.21 _ cn. This vulnerability can cause the web service not to restart or even execute arbitrary code. It is a different vu... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-22916 RE11S v1.11 was discovered to contain a stack overflow via the pppUserName parameter in the formPPPoESetup function. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-22913 RE11S v1.11 was discovered to contain a stack overflow via the rootAPmac parameter in the formStaDrvSetup function. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-22912 RE11S v1.11 was discovered to contain a command injection vulnerability via the component /goform/formAccept. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-22907 RE11S v1.11 was discovered to contain a stack overflow via the selSSID parameter in the formWlSiteSurvey function. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-47544 An issue was discovered in Siren Investigate before 12.1.7. Script variable whitelisting is insufficiently sandboxed. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-22906 RE11S v1.11 was discovered to contain a command injection vulnerability via the L2TPUserName parameter at /goform/setWAN. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-22671 Ghidra/RuntimeScripts/Linux/support/launch.sh in NSA Ghidra through 10.2.2 passes user-provided input into eval, leading to command injection when calling analyzeHeadless with untrusted input. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-22905 RE11S v1.11 was discovered to contain a command injection vulnerability via the command parameter at /goform/mp. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-22904 RE11S v1.11 was discovered to contain a stack overflow via the pptpUserName parameter in the setWAN function. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-39073 There is a command injection vulnerability in ZTE MF286R, Due to insufficient validation of the input parameters, an attacker could use the vulnerability to execute arbitrary commands. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-30367 WeGIA is a Web manager for charitable institutions. A SQL Injection vulnerability was identified in versions prior to 3.2.6 in the nextPage parameter of the /WeGIA/controle/control.php endpoint. This ... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-55028 A template injection vulnerability in the Dashboard of NASA Fprime v3.4.3 allows attackers to execute arbitrary code via uploading a crafted Vue file. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-30858 netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_fire_wall.php. | 9.8 | CRITICAL | β | 0 |
| CVE-2020-6627 The web-management application on Seagate Central NAS STCG2000300, STCG3000300, and STCG4000300 devices allows OS command injection via mv_backend_launch in cirrus/application/helpers/mv_backend_helpe... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-46383 RackN Digital Rebar through 4.6.14, 4.7 through 4.7.22, 4.8 through 4.8.5, 4.9 through 4.9.12, and 4.10 through 4.10.8 has exposed a privileged token via a public API endpoint (Incorrect Access Contro... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-33153 J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the commentList() function. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-22088 Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote | 9.8 | CRITICAL | β | 0 |
| CVE-2024-33155 J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the getDeptList() function. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-33164 J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the authUserList() function. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-25508 RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id parameter at /bulletin/bulletin_template_show.aspx. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-22081 An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. Unauthenticated memory corruption can occur in the HTTP header parsing mechanism. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-48818 An issue in IIT Bombay, Mumbai, India Bodhitree of cs101 version allows a remote attacker to execute arbitrary code. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-47790 Sourcecodester Dynamic Transaction Queuing System v1.0 is vulnerable to SQL Injection via /queuing/index.php?page=display&id=. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-57483 Tenda i24 V2.0.0.5 is vulnerable to Buffer Overflow in the addWifiMacFilter function. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-22080 An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. Unauthenticated memory corruption can occur during XML body parsing. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-30868 netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/add_getlogin.php. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-45025 Markdown Preview Enhanced v0.6.5 and v0.19.6 for VSCode and Atom was discovered to contain a command injection vulnerability via the PDF file import function. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-45026 An issue in Markdown Preview Enhanced v0.6.5 and v0.19.6 for VSCode and Atom allows attackers to execute arbitrary commands during the GFM export process. | 9.8 | CRITICAL | β | 0 |
| CVE-2017-20166 Ecto 2.2.0 lacks a certain protection mechanism associated with the interaction between is_nil and raise. | 9.8 | CRITICAL | β | 0 |
| CVE-2023-22903 api/views/user.py in LibrePhotos before e19e539 has incorrect access control. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-57225 Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the devname parameter in the reset_wifi function. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-57224 Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_do_enr_pin_wps function. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-57223 Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the ifname parameter in the apcli_wps_gen_pincode function. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-48252 The jokob-sk/Pi.Alert fork (before 22.12.20) of Pi.Alert allows Remote Code Execution via nmap_scan.php (scan parameter) OS Command Injection. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-48253 nhttpd in Nostromo before 2.1 is vulnerable to a path traversal that may allow an attacker to execute arbitrary commands on the remote server. The vulnerability occurs when the homedirs option is used... | 9.8 | CRITICAL | β | 0 |
| CVE-2025-22949 Tenda ac9 v1.0 firmware v15.03.05.19 is vulnerable to command injection in /goform/SetSambaCfg, which may lead to remote arbitrary code execution. | 9.8 | CRITICAL | β | 0 |
| CVE-2025-22946 Tenda ac9 v1.0 firmware v15.03.05.19 contains a stack overflow vulnerability in /goform/SetOnlineDevName, which may lead to remote arbitrary code execution. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-57687 An OS Command Injection vulnerability was found in /landrecordsys/admin/dashboard.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the "Cookie" GE... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-57686 A Cross Site Scripting (XSS) vulnerability was found in /landrecordsys/admin/contactus.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the "paget... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-25894 All versions of the package com.bstek.uflo:uflo-core are vulnerable to Remote Code Execution (RCE) in the ExpressionContextImpl class via jexl.createExpression(expression).evaluate(context); functiona... | 9.8 | CRITICAL | β | 0 |
| CVE-2024-25510 RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id parameter at /AddressBook/address_public_show.aspx. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-31704 The vRealize Log Insight contains a broken access control vulnerability. An unauthenticated malicious actor can remotely inject code into sensitive files of an impacted appliance which can result in r... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-31706 The vRealize Log Insight contains a Directory Traversal Vulnerability. An unauthenticated, malicious actor can inject files into the operating system of an impacted appliance which can result in remot... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-44297 SiteServer CMS 7.1.3 has a SQL injection vulnerability the background. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-33835 Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the remoteIp parameter from formSetSafeWanWebMan function. | 9.8 | CRITICAL | β | 0 |
| CVE-2022-42458 Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and earlier allows a remote unauthenticated attacker to upload an arbitrary file. As a result, an arb... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-40037 An issue discovered in Rawchen blog-ssm v1.0 allows remote attacker to escalate privileges and execute arbitrary commands via the component /upFile. | 9.8 | CRITICAL | β | 0 |
| CVE-2024-56828 File Upload vulnerability in ChestnutCMS through 1.5.0. Based on the code analysis, it was determined that the /api/member/avatar API endpoint receives a base64 string as input. This string is then pa... | 9.8 | CRITICAL | β | 0 |
| CVE-2022-44371 hope-boot 1.0.0 has a deserialization vulnerability that can cause Remote Code Execution (RCE). | 9.8 | CRITICAL | β | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.