An unauthenticated command injection vulnerability exists in the cookie handling process of the lighttpd web server on D-Link DSP-W110A1 firmware version 1.05B01. This occurs when specially crafted cookie values are processed, allowing remote attackers to execute arbitrary commands on the underlying Linux operating system. Successful exploitation enables full system compromise.

CVE Database V5

Detailed information about CVE-2025-34125: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in D-Link DSP-W110A

CVE-2025-34125: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in D-Link DSP-W110A1 - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-34125: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in D-Link DSP-W110A1

A vulnerability was found in code-projects Online Appointment Booking System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/deletedoctor.php. The manipulation of the argument did leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Detailed information about CVE-2025-7752: SQL Injection in code-projects Online Appointment Booking System affecting code-projects Online Appointment Booking Sy

CVE-2025-7752: SQL Injection in code-projects Online Appointment Booking System - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-7752: SQL Injection in code-projects Online Appointment Booking System

NVIDIA Container Toolkit for all platforms contains a vulnerability in the update-ldcache hook, where an attacker could cause a link following by using a specially crafted container image. A successful exploit of this vulnerability might lead to data tampering and denial of service.

Detailed information about CVE-2025-23267: CWE-59: Improper Link Resolution Before File Access ('Link Following') in NVIDIA Container Toolkit affecting NVIDIA C

CVE-2025-23267: CWE-59: Improper Link Resolution Before File Access ('Link Following') in NVIDIA Container Toolkit - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-23267: CWE-59: Improper Link Resolution Before File Access ('Link Following') in NVIDIA Container Toolkit

A buffer overflow vulnerability exists in Heroes of Might and Magic III Complete 4.0.0.0, HD Mod 3.808 build 9, and Demo 1.0.0.0 via malicious .h3m map files that exploit object sprite name parsing logic. The vulnerability occurs during in-game map loading when a crafted object name causes a buffer overflow, potentially allowing arbitrary code execution. Exploitation requires the victim to open a malicious map file within the game.

Detailed information about CVE-2025-34124: CWE-121  Stack-based Buffer Overflow in The 3DO Company Heroes of Might and Magic III affecting The 3DO Company Heroe

CVE-2025-34124: CWE-121  Stack-based Buffer Overflow in The 3DO Company Heroes of Might and Magic III - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2025-34124: CWE-121  Stack-based Buffer Overflow in The 3DO Company Heroes of Might and Magic III

GoldenDict 1.5.0 and 1.5.1 has an exposed dangerous method that allows reading and modifying files when a user adds a crafted dictionary and then searches for any term included in that dictionary.

Detailed information about CVE-2025-53964: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2025-53964: n/a

CVE-2025-53964: n/a

Description

Technical Details

Related Threats

CVE-2025-34125: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in D-Link DSP-W110A1

CVE-2025-7752: SQL Injection in code-projects Online Appointment Booking System

CVE-2025-23267: CWE-59: Improper Link Resolution Before File Access ('Link Following') in NVIDIA Container Toolkit

CVE-2025-34124: CWE-121 Stack-based Buffer Overflow in The 3DO Company Heroes of Might and Magic III

CVE-2025-6249: CWE-602: Client-Side Enforcement of Server-Side Security in Lenovo FileZ Client

Actions

External Links

Need enhanced features?

Latest Threats

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility