An insufficient policy enforcement vulnerability in Google Chromium allows remote attackers to leak cross-origin data via a crafted HTML page.

A buffer overflow vulnerability in the NOOP Command Handler of PCMan FTP Server 2.0.7 allows remote attackers to execute arbitrary code.

An SQL injection vulnerability in /publicposts.php of News-Buzz CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the post parameter.

A stack-based buffer overflow vulnerability in /goform/form2lansetup.cgi of D-Link DIR-816 Router allows remote attackers to execute arbitrary code via the ip parameter.

A buffer overflow vulnerability in /goform/SetPptpServerCfg of Tenda AC10 Router allows remote attackers to execute arbitrary code via the startIp and endIp parameters.

An issue in Django's HTTP response logging allows remote attackers to manipulate log output via crafted URLs, potentially leading to log injection or forgery.

An SQL injection vulnerability in /admin/between-date-complaintreport.php of PHPGurukul Complaint Management System 2.0 allows remote attackers to execute arbitrary SQL commands via the fromdate and todate parameters.

A remote code execution vulnerability in Apache Tomcat due to improper handling of file paths containing internal dots, leading to path equivalence issues.

A vulnerability allowing remote code execution on the Backup Server by an authenticated domain user in Veeam Backup & Replication.

A buffer overflow vulnerability in Ivanti Connect Secure VPN appliances allows remote code execution, allegedly exploited by state-sponsored actors.

A stored Cross-Site Scripting (XSS) vulnerability in VMware NSX Manager UI due to improper input validation.

An insufficient policy enforcement vulnerability in Google Chromium allows remote attackers to leak cross-origin data via a crafted HTML page.

A buffer overflow vulnerability in the NOOP Command Handler of PCMan FTP Server 2.0.7 allows remote attackers to execute arbitrary code.

An SQL injection vulnerability in /publicposts.php of News-Buzz CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the post parameter.

A stack-based buffer overflow vulnerability in /goform/form2lansetup.cgi of D-Link DIR-816 Router allows remote attackers to execute arbitrary code via the ip parameter.

A buffer overflow vulnerability in /goform/SetPptpServerCfg of Tenda AC10 Router allows remote attackers to execute arbitrary code via the startIp and endIp parameters.

An issue in Django's HTTP response logging allows remote attackers to manipulate log output via crafted URLs, potentially leading to log injection or forgery.

An SQL injection vulnerability in /admin/between-date-complaintreport.php of PHPGurukul Complaint Management System 2.0 allows remote attackers to execute arbitrary SQL commands via the fromdate and todate parameters.

A remote code execution vulnerability in Apache Tomcat due to improper handling of file paths containing internal dots, leading to path equivalence issues.

A vulnerability allowing remote code execution on the Backup Server by an authenticated domain user in Veeam Backup & Replication.

A buffer overflow vulnerability in Ivanti Connect Secure VPN appliances allows remote code execution, allegedly exploited by state-sponsored actors.

A stored Cross-Site Scripting (XSS) vulnerability in VMware NSX Manager UI due to improper input validation.