Unauthenticated requests to the root path of ZTE ZXHN H188A V6 firmware can reach pre-login wizard handlers and disclose WLAN PSKs, SSIDs, and PPPo...
A single unauthenticated HTTP GET to /getpage.lua?pid=1000ÐCheat=1 on ZTE H298A or H108N routers returns the live administrator password OBJUSER...
Multiple vulnerabilities in Sparx Pro Cloud Server PCS versions 6.1 and below and Sparx Enterprise Architect versions 17.1 and below allow a remote...
The CGILua post.lua parser used in ZTE ZXHN routers does not enforce an upper bound on the body size of application/x-www-form-urlencoded POST requ...
This Metasploit module exploits CVE-2022-28368, a remote code execution vulnerability in dompdf versions prior to 1.2.1. The vulnerability exists b...
Cockpit versions 357 through 359 suffer from a remote code execution vulnerability...
Lenovo LegionSpace version 1.7.11.2 suffers from an unquoted service path vulnerability...
BookStack version 25.12.1 suffers from a denial of service vulnerability...
FUXA versions 1.2.9 and below suffers from an unauthenticated path traversal vulnerability that leads to arbitrary file write that enables remote c...
ZTE ZXHN H168N version 3.5 suffers from a password leak vulnerability that leads to full administrative compromise...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
