CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

487 matches found

RedhatCVE•added 2026/06/05 7:50 p.m.•6 views

CVE-2026-7716

A vulnerability was found in code-projects Gym Management System In PHP and Windows NT 1.0. This vulnerability affects unknown code of the file /index.php. Performing a manipulation of the argument day results in sql injection. The attack can be initiated remotely. The exploit has been made publi...

6.5CVSS6.5AI score0.00192EPSS

Exploits0References1

NVD•added 2026/05/04 1:16 a.m.•7 views

CVE-2026-7716

6.5CVSS0.00192EPSS

Exploits0References5

Vulnrichment•added 2026/05/04 12:45 a.m.•4 views

CVE-2026-7716 code-projects Gym Management System In PHP/Windows NT index.php sql injection

6.5CVSS6.5AI score0.00192EPSS

Exploits0References5

ATTACKERKB•added 2026/05/04 12:45 a.m.•1 views

CVE-2026-7716

6.5CVSS6.5AI score0.00192EPSS

Exploits0References5Affected Software2

CVE•added 2026/05/04 12:45 a.m.•13 views

CVE-2026-7716

CVE-2026-7716 describes an SQL injection in the Gym Management System (code-projects) for PHP on Windows NT 1.0, via manipulation of the day parameter in /index.php. The exact vulnerable component and file are /index.php; the root cause is improper handling of user input leading to SQL injection....

6.5CVSS6.5AI score0.00192EPSS

Exploits0References5

EUVD•added 2026/05/04 12:45 a.m.•4 views

EUVD-2026-26867

6.5CVSS6.5AI score0.00192EPSS

Exploits0References5

Positive Technologies•added 2026/05/04 12:0 a.m.•12 views

PT-2026-36744

Name of the Vulnerable Software and Affected Versions Gym Management System In PHP and Windows NT 1.0 affected versions not specified Description A remote SQL injection can be triggered through the manipulation of the day argument in the '/index.php' endpoint. SQL injection is a type of flaw that...

6.5CVSS6.6AI score0.00192EPSS

Exploits0References7

NVD•added 2026/05/01 5:16 a.m.•2 views

CVE-2026-7553

A vulnerability was found in code-projects Gym Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/editexercises.php. The manipulation of the argument editexercise results in sql injection. It is possible to launch the attack remotely. The exploit...

5.8CVSS0.00206EPSS

Exploits0References5

CVE•added 2026/05/01 4:0 a.m.•6 views

CVE-2026-7553

CVE-2026-7553 affects code-projects Gym Management System 1.0. The vulnerability resides in the file /admin/edit_exercises.php where manipulation of the argument edit_exercise enables a SQL injection. The issue is exploitable remotely and an exploit has been made public (Exploit maturity: PROOF-O...

5.8CVSS5.2AI score0.00206EPSS

Exploits0References5

Cvelist•added 2026/05/01 4:0 a.m.•25 views

CVE-2026-7553 code-projects Gym Management System edit_exercises.php sql injection

5.8CVSS0.00206EPSS

Exploits0References5

ATTACKERKB•added 2026/05/01 4:0 a.m.•1 views

CVE-2026-7553

5.8CVSS5.4AI score0.00206EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2026/05/01 4:0 a.m.•2 views

CVE-2026-7553 code-projects Gym Management System edit_exercises.php sql injection

5.8CVSS5.7AI score0.00206EPSS

Exploits0References5

EUVD•added 2026/05/01 4:0 a.m.•5 views

EUVD-2026-26478

5.8CVSS5.4AI score0.00206EPSS

Exploits0References5

Positive Technologies•added 2026/05/01 12:0 a.m.•4 views

PT-2026-36298

A vulnerability was found in code-projects Gym Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/edit exercises.php. The manipulation of the argument edit exercise results in sql injection. It is possible to launch the attack remotely. The exploi...

5.8CVSS5.7AI score0.00206EPSS

Exploits0References6

NVD•added 2026/03/31 6:16 p.m.•3 views

CVE-2026-5206

A security vulnerability has been detected in code-projects Simple Gym Management System 1.0. This vulnerability affects unknown code of the component Payment Handler. The manipulation of the argument Paymentid/Amount/customerid/paymenttype/customername leads to sql injection. Remote exploitation...

6.5CVSS0.00192EPSS

Exploits0References5

Vulnrichment•added 2026/03/31 5:30 p.m.•4 views

CVE-2026-5206 code-projects Simple Gym Management System Payment sql injection

6.5CVSS6.5AI score0.00192EPSS

Exploits0References5

CVE•added 2026/03/31 5:30 p.m.•5 views

CVE-2026-5206

CVE-2026-5206 affects: code-projects Simple Gym Management System 1.0, specifically the unknown code in the Payment Handler . The issue is a SQL injection caused by manipulation of the arguments Payment_id, Amount, customer_id, payment_type, and customer_name. The vulnerability allows remote expl...

6.5CVSS6.4AI score0.00192EPSS

Exploits0References5

Positive Technologies•added 2026/03/31 12:0 a.m.•4 views

PT-2026-29321

A security vulnerability has been detected in code-projects Simple Gym Management System 1.0. This vulnerability affects unknown code of the component Payment Handler. The manipulation of the argument Payment id/Amount/customer id/payment type/customer name leads to sql injection. Remote...

6.5CVSS5.7AI score0.00192EPSS

Exploits0References6

RedhatCVE•added 2026/03/26 3:14 p.m.•4 views

CVE-2026-4550

A vulnerability has been found in code-projects Simple Gym Management System up to 1.0. This affects an unknown part of the file /gym/func.php. Such manipulation of the argument Trainerid/fname leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the publ...

5.8CVSS5.8AI score0.00263EPSS

Exploits0References1

EUVD•added 2026/03/22 3:31 p.m.•3 views

EUVD-2026-14310

5.8CVSS5.8AI score0.00263EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by