CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

323 matches found

CVE-2026-11465

A security flaw has been discovered in songquanpeng one-api up to 0.6.11-preview.7. Affected by this issue is the function Redeem of the file model/redemption.go of the component Redemption Code Top-Up Endpoint. The manipulation results in business logic errors. The attack may be launched remotel...

3.1CVSS

Exploits0References7

ATTACKERKB•added yesterday•3 views

CVE-2026-11465

3.1CVSS4.6AI score

Exploits0References7

RedhatCVE•added 3 days ago•5 views

CVE-2026-5812

A security flaw has been discovered in SourceCodester Pharmacy Product Management System 1.0. This affects an unknown part of the file add-sales.php of the component POST Parameter Handler. Performing a manipulation of the argument txtqty results in business logic errors. It is possible to initia...

5.5CVSS5.6AI score0.00051EPSS

Exploits0References1

NVD•added 2026/05/17 8:16 a.m.•8 views

CVE-2026-8738

A security vulnerability has been detected in Sanluan PublicCMS 5.202506.d. Impacted is the function TradeOrderController.pay/TradePaymentController.pay/AccountGatewayComponent.pay of the file publiccms-trade/src/main/java/com/publiccms/controller/web/trade/TradeOrderController.java of the...

6.9CVSS0.00051EPSS

Exploits0References4

EUVD•added 2026/05/17 7:30 a.m.•8 views

EUVD-2026-30688

6.9CVSS6.1AI score0.00051EPSS

Exploits0References4

Tenable Nessus•added 2026/05/14 12:0 a.m.•6 views

GitLab 16.0 < 18.9.7 / 18.10 < 18.10.6 / 18.11 < 18.11.3 (CVE-2026-1322)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Business Logic Errors in GitLab CVE-2026-1322 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenabl...

8.1CVSS5.8AI score0.00011EPSS

Exploits0References5

EUVD•added 2026/04/09 12:32 a.m.•0 views

EUVD-2026-20803

5.5CVSS5.6AI score0.00051EPSS

Exploits0References6

ATTACKERKB•added 2026/04/08 10:15 p.m.•1 views

CVE-2026-5811

A vulnerability was identified in SourceCodester Online Food Ordering System 1.0. Affected by this issue is the function saveproduct of the file /Actions.php of the component POST Parameter Handler. Such manipulation of the argument price leads to business logic errors. The attack may be performe...

5.5CVSS5.8AI score0.00051EPSS

Exploits0References5Affected Software1

Positive Technologies•added 2026/04/08 12:0 a.m.•1 views

PT-2026-31550

Name of the Vulnerable Software and Affected Versions SourceCodester Pharmacy Product Management System version 1.0 Description A security flaw exists in SourceCodester Pharmacy Product Management System 1.0. The issue is located in an unknown part of the add-sales.php file within the POST...

5.5CVSS5.9AI score0.00051EPSS

Exploits0References8

Positive Technologies•added 2026/03/22 12:0 a.m.•3 views

PT-2026-27009

A security vulnerability has been detected in mickasmt next-saas-stripe-starter 1.0.0. Affected is the function generateUserStripe of the file actions/generate-user-stripe.ts of the component Checkout Handler. The manipulation of the argument priceId leads to business logic errors. The attack may...

5.3CVSS5.5AI score0.00038EPSS

Exploits0References5

RedhatCVE•added 2026/01/30 9:23 p.m.•7 views

CVE-2026-1600

A vulnerability was identified in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The impacted element is an unknown function of the file /hungry/addtocart of the component Add-to-Cart Submission Endpoint. The manipulation of the argument price/allprice leads to business log...

5.3CVSS5.5AI score0.00068EPSS

Exploits1References1

RedhatCVE•added 2026/01/30 9:23 p.m.•3 views

CVE-2026-1599

A vulnerability was determined in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The affected element is an unknown function of the file /hungry/placeorder of the component Checkout. Executing a manipulation of the argument orggrandTotal/vat/servicecharge/grandtotal can lea...

5.3CVSS5.5AI score0.00019EPSS

Exploits1References1

NVD•added 2026/01/29 6:16 p.m.•2 views

CVE-2026-1599

5.3CVSS0.00019EPSS

Exploits1References5

Vulnrichment•added 2026/01/29 6:2 p.m.•5 views

CVE-2026-1600 Bdtask Bhojon All-In-One Restaurant Management System Add-to-Cart Submission Endpoint addtocart logic error

5.3CVSS5.5AI score0.00068EPSS

Exploits1References5

ATTACKERKB•added 2026/01/29 6:2 p.m.•6 views

CVE-2026-1600

5.3CVSS5.5AI score0.00068EPSS

Exploits1References4Affected Software1

EUVD•added 2026/01/29 6:2 p.m.•5 views

EUVD-2026-4965

5.3CVSS5.5AI score0.00068EPSS

Exploits1References5

CVE•added 2026/01/29 5:32 p.m.•14 views

CVE-2026-1599

Bdtask Bhojon All-In-One Restaurant Management System (up to 20260116) is affected by CVE-2026-1599 in the Checkout/placeorder flow. The vulnerability involves an unknown function in /hungry/placeorder where manipulating arguments such as orggrandTotal, vat, service_charge, or grandtotal can trig...

5.3CVSS5.5AI score0.00019EPSS

Exploits1References5Affected Software1

Positive Technologies•added 2026/01/29 12:0 a.m.•6 views

PT-2026-5325

5.3CVSS5.5AI score0.00068EPSS

Exploits1References6

CNNVD•added 2026/01/29 12:0 a.m.•2 views

Bdtask Bhojon All-In-One Restaurant Management System has security vulnerabilities.

Bdtask Bhojon All-In-One Restaurant Management System is a restaurant management system developed by the Bangladeshi company Bdtask. Versions of the Bdtask Bhojon All-In-One Restaurant Management System prior to version 20260116 contained security vulnerabilities. These vulnerabilities were cause...

5.3CVSS5.8AI score0.00019EPSS

Exploits1References6

RedhatCVE•added 2026/01/09 9:12 a.m.•6 views

CVE-2022-0524

Business Logic Errors in GitHub repository publify/publify prior to 9.2.7...

7.5CVSS6.8AI score0.00314EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by