CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

36535 matches found

CNNVD•added 2026/03/09 12:0 a.m.•5 views

SourceCodester Payroll Management System 代码注入漏洞

SourceCodester Payroll Management System is an open-source payroll management system developed by SourceCodester. Version 1.0 of the SourceCodester Payroll Management System has a code injection vulnerability. This vulnerability stems from incorrect handling of parameter IDs in the file...

6.1CVSS5.7AI score0.0027EPSS

Exploits1References6

CNNVD•added 2026/03/09 12:0 a.m.•4 views

SourceCodester Resort Reservation System 代码注入漏洞

The SourceCodester Resort Reservation System is an open-source resort reservation system developed by SourceCodester. Version 1.0 of the SourceCodester Resort Reservation System contains a code injection vulnerability. This vulnerability arises from incorrect handling of parameter IDs in the...

5.4CVSS5.7AI score0.00257EPSS

Exploits1References6

OSV•added 2026/03/08 12:0 p.m.•2 views

RUSTSEC-2026-0038 RustSec Advisory

Impact Vulnerability Type: Improper Control of Generation of Code 'Code Injection' CWE-94 / Improper Check for Unusual or Exceptional Conditions CWE-754 / Improper Input Validation CWE-20 / Use of Low-Level Functionality CWE-695 / Improper Privilege Management CWE-269 / External Control of System...

9.4CVSS5.9AI score0.0021EPSS

Exploits0References3

RustSec•added 2026/03/08 12:0 p.m.•29 views

RustSec Advisory

9.4CVSS5.9AI score0.0021EPSS

Exploits0Affected Software1

RedhatCVE•added 2026/03/08 1:44 a.m.•7 views

CVE-2026-3352

The Easy PHP Settings plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 1.0.4 via the updatewpmemoryconstants method. This is due to insufficient input validation on the wpmemorylimit and wpmaxmemorylimit settings before writing them to wp-config.php...

7.2CVSS6.1AI score0.00374EPSS

Exploits0References1

Positive Technologies•added 2026/03/08 12:0 a.m.•7 views

PT-2026-24192

Name of the Vulnerable Software and Affected Versions rssn versions prior to 0.2.9 Description The rssn scientific computing library for Rust has an issue in its JIT Just-In-Time compilation engine, which is exposed through the CFFI Foreign Function Interface. Insufficient input validation and...

9.4CVSS6AI score0.0021EPSS

Exploits0References15

CNNVD•added 2026/03/08 12:0 a.m.•3 views

Yifang CMS 代码注入漏洞

Yifang CMS is a PHP enterprise website development and management system provided by Yifang Corporation. Version 2.0.5 of Yifang CMS has a code injection vulnerability. This vulnerability stems from the handling of the parameter “Name” in the file “singlePageGroup.php”, which may lead to cross-si...

5.4CVSS5.7AI score0.00196EPSS

Exploits1References5

CNNVD•added 2026/03/08 12:0 a.m.•3 views

smart-admin 代码注入漏洞

Smart-Admin is a rapid development platform developed by individual developers of 1024-lab. Versions of Smart-Admin prior to 3.29 contained a code injection vulnerability. This vulnerability stemmed from incorrect handling of the file...

5.4CVSS5.7AI score0.00221EPSS

Exploits1References5

CNNVD•added 2026/03/08 12:0 a.m.•7 views

Code-Projects Simple Flight Ticket Booking System 代码注入漏洞

Code-Projects Simple Flight Ticket Booking System is a simple airline ticket booking system developed by Code-Projects. Version 1.0 of the code-projects Simple Flight Ticket Booking System contains a code injection vulnerability. This vulnerability stems from incorrect operations on the...

6.1CVSS5.7AI score0.00305EPSS

Exploits1References6

CNNVD•added 2026/03/08 12:0 a.m.•4 views

smart-admin 代码注入漏洞

5.4CVSS5.7AI score0.0027EPSS

Exploits1References5

CNNVD•added 2026/03/08 12:0 a.m.•4 views

SourceCodester Web-based Pharmacy Product Management System 代码注入漏洞

SourceCodester Web-based Pharmacy Product Management System is an open-source web-based pharmacy product management system developed by SourceCodester. Version 1.0 of the SourceCodester Web-based Pharmacy Product Management System contains a code injection vulnerability. This vulnerability stems...

5.4CVSS5.7AI score0.0021EPSS

Exploits1References5

CNNVD•added 2026/03/08 12:0 a.m.•5 views

Wavlink WL-WN579X3-C 代码注入漏洞

Wavlink WL-WN579X3-C is a wireless network extender produced by Wavlink Corporation. The Wavlink WL-WN579X3-C 231124 version has a code injection vulnerability. This vulnerability stems from incorrect handling of the parameter Hostname in the file/cgi-bin/adm.cgi, which may lead to cross-site...

4.8CVSS5.7AI score0.00228EPSS

Exploits1References6

CNNVD•added 2026/03/08 12:0 a.m.•5 views

Yifang CMS 代码注入漏洞

Yifang CMS is a PHP enterprise website development and management system provided by Yifang Corporation. Version 2.0.5 of Yifang CMS has a code injection vulnerability, which stems from the handling of the Title parameter in the singlePage.php file. This vulnerability may lead to cross-site...

5.4CVSS5.7AI score0.00196EPSS

Exploits1References5

CNNVD•added 2026/03/08 12:0 a.m.•4 views

Yifang CMS 代码注入漏洞

Yifang CMS is a PHP enterprise website development and management system provided by Yifang Corporation. Version 2.0.5 of Yifang CMS has a code injection vulnerability. This vulnerability stems from the handling of the parameter linkName in the file DfriendLink.php, which may lead to cross-site...

5.4CVSS5.7AI score0.00196EPSS

Exploits1References5

CNNVD•added 2026/03/08 12:0 a.m.•5 views

SourceCodester Loan Management System 代码注入漏洞

The SourceCodester Loan Management System is an open-source loan management system developed by SourceCodester. Version 1.0 of the SourceCodester Loan Management System has a code injection vulnerability. This vulnerability stems from incorrect handling of parameters in the file/index.php, which...

6.1CVSS5.7AI score0.00305EPSS

Exploits1References6