Lucene search
K

48 matches found

CVE
CVE
added 2026/04/09 3:45 a.m.8 views

CVE-2026-5839

The CVE-2026-5839 entry affects PHPGurukul News Portal Project 4.1, where the SQL injection arises from unsafely processing the sucatdescription parameter in /admin/add-subcategory.php. The vulnerability is triggered remotely and is associated with a publicly available exploit. The provided docum...

5.8CVSS5.8AI score0.00202EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/09 3:15 a.m.34 views

CVE-2026-5837 PHPGurukul News Portal Project news-details.php sql injection

A vulnerability was found in PHPGurukul News Portal Project 4.1. This affects an unknown part of the file /news-details.php. The manipulation of the argument Comment results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

7.5CVSS0.00259EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.10 views

PHPGurukul News Portal Project SQL注入漏洞

PHPGurukul News Portal Project is a news portal project of PHPGurukul Corporation. Version 4.1 of the PHPGurukul News Portal Project has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter sadminusername in the file admin/add-subadmins.php, which may...

5.8CVSS5.8AI score0.00202EPSS
Exploits0References5
OSV
OSV
added 2026/02/25 6:16 a.m.2 views

CVE-2026-3164

A vulnerability was found in itsourcecode News Portal Project 1.0. This issue affects some unknown processing of the file /admin/contactus.php. The manipulation of the argument pagetitle results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and...

9.8CVSS5.7AI score0.00371EPSS
Exploits1References5
NVD
NVD
added 2026/02/25 6:16 a.m.18 views

CVE-2026-3164

A vulnerability was found in itsourcecode News Portal Project 1.0. This issue affects some unknown processing of the file /admin/contactus.php. The manipulation of the argument pagetitle results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and...

9.8CVSS0.00371EPSS
Exploits1References5
CVE
CVE
added 2026/02/25 6:2 a.m.33 views

CVE-2026-3164

The CVE-2026-3164 issue affects itsourcecode News Portal Project 1.0. The vulnerability is an SQL injection in the /admin/contactus.php processing, triggered by manipulating the pagetitle argument. It is exploitable remotely, and public exploits have been published. Affected component: itsourceco...

9.8CVSS5.4AI score0.00371EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/25 6:2 a.m.5 views

CVE-2026-3164

A vulnerability was found in itsourcecode News Portal Project 1.0. This issue affects some unknown processing of the file /admin/contactus.php. The manipulation of the argument pagetitle results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and...

9.8CVSS5.4AI score0.00371EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/25 6:2 a.m.6 views

CVE-2026-3164 itsourcecode News Portal Project contactus.php sql injection

A vulnerability was found in itsourcecode News Portal Project 1.0. This issue affects some unknown processing of the file /admin/contactus.php. The manipulation of the argument pagetitle results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and...

7.5CVSS5.4AI score0.00371EPSS
Exploits1References5
OSV
OSV
added 2026/02/25 1:16 a.m.7 views

CVE-2026-3135

A weakness has been identified in itsourcecode News Portal Project 1.0. The impacted element is an unknown function of the file /admin/add-category.php. This manipulation of the argument Category causes sql injection. It is possible to initiate the attack remotely. The exploit has been made...

9.8CVSS5.8AI score0.00333EPSS
Exploits1References5
NVD
NVD
added 2026/02/25 12:16 a.m.9 views

CVE-2026-3134

A security flaw has been discovered in itsourcecode News Portal Project 1.0. The affected element is an unknown function of the file /newsportal/admin/edit-category.php. The manipulation of the argument Category results in sql injection. The attack may be performed from remote. The exploit has be...

9.8CVSS0.00326EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.13 views

itsourcecode News Portal Project SQL注入漏洞

itsourcecode News Portal Project is an open-source news portal project developed by itsourcecode. Version 1.0 of the itsourcecode News Portal Project contains a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter pagetitle in the file admin/contactus.ph...

9.8CVSS7.2AI score0.00371EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.14 views

PT-2026-21877

Name of the Vulnerable Software and Affected Versions itsourcecode News Portal Project version 1.0 Description A SQL injection issue exists due to the improper handling of the pagetitle argument in the processing of the /admin/contactus.php file. This allows for remote attacks. The exploit has be...

9.8CVSS7AI score0.00371EPSS
Exploits1References11
Cvelist
Cvelist
added 2026/02/24 11:32 p.m.28 views

CVE-2026-3134 itsourcecode News Portal Project edit-category.php sql injection

A security flaw has been discovered in itsourcecode News Portal Project 1.0. The affected element is an unknown function of the file /newsportal/admin/edit-category.php. The manipulation of the argument Category results in sql injection. The attack may be performed from remote. The exploit has be...

7.5CVSS0.00326EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/02/24 11:32 p.m.4 views

CVE-2026-3134 itsourcecode News Portal Project edit-category.php sql injection

A security flaw has been discovered in itsourcecode News Portal Project 1.0. The affected element is an unknown function of the file /newsportal/admin/edit-category.php. The manipulation of the argument Category results in sql injection. The attack may be performed from remote. The exploit has be...

7.5CVSS6.8AI score0.00326EPSS
Exploits1References5
CVE
CVE
added 2026/02/24 11:32 p.m.25 views

CVE-2026-3134

CVE-2026-3134 affects itsourcecode News Portal Project 1.0. The vulnerability is an SQL injection in the admin/edit-category.php file triggered by manipulating the Category argument, allowing remote exploitation. Multiple connected documents corroborate the flaw and the publicly released exploit....

9.8CVSS5.3AI score0.00326EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/10 1:23 p.m.7 views

CVE-2026-2225

A flaw has been found in itsourcecode News Portal Project 1.0. This vulnerability affects unknown code of the file /admin/index.php of the component Administrator Login. This manipulation of the argument email causes sql injection. The attack can be initiated remotely. The exploit has been...

9.8CVSS5.4AI score0.00416EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/09 7:23 p.m.3 views

CVE-2026-2162

A vulnerability was determined in itsourcecode News Portal Project 1.0. This affects an unknown part of the file /admin/aboutus.php. This manipulation of the argument pagetitle causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized...

7.2CVSS5.5AI score0.00318EPSS
Exploits1References1
OSV
OSV
added 2026/02/09 9:16 a.m.7 views

CVE-2026-2225

A flaw has been found in itsourcecode News Portal Project 1.0. This vulnerability affects unknown code of the file /admin/index.php of the component Administrator Login. This manipulation of the argument email causes sql injection. The attack can be initiated remotely. The exploit has been...

9.8CVSS5.7AI score0.00416EPSS
Exploits1References6
NVD
NVD
added 2026/02/09 9:16 a.m.8 views

CVE-2026-2225

A flaw has been found in itsourcecode News Portal Project 1.0. This vulnerability affects unknown code of the file /admin/index.php of the component Administrator Login. This manipulation of the argument email causes sql injection. The attack can be initiated remotely. The exploit has been...

9.8CVSS0.00416EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/02/09 9:2 a.m.36 views

CVE-2026-2225 itsourcecode News Portal Project Administrator Login index.php sql injection

A flaw has been found in itsourcecode News Portal Project 1.0. This vulnerability affects unknown code of the file /admin/index.php of the component Administrator Login. This manipulation of the argument email causes sql injection. The attack can be initiated remotely. The exploit has been...

7.5CVSS0.00416EPSS
Exploits1References6
Rows per page
Query Builder