PT-2026-35978

Name of the Vulnerable Software and Affected Versions SourceCodester CET Automated Grading System with AI Predictive Analytics version 1.0 Description A cross-site scripting issue exists in the Registration component. A remote attacker can execute this by manipulating the student id, full name,...

CVE-2026-4014

A security flaw has been discovered in itsourcecode Cafe Reservation System 1.0. This impacts an unknown function of the file /curvus2/signup.php of the component Registration. Performing a manipulation of the argument Username results in sql injection. Remote exploitation of the attack is...

CVE-2026-4014 itsourcecode Cafe Reservation System Registration signup.php sql injection

A security flaw has been discovered in itsourcecode Cafe Reservation System 1.0. This impacts an unknown function of the file /curvus2/signup.php of the component Registration. Performing a manipulation of the argument Username results in sql injection. Remote exploitation of the attack is...

CVE-2026-4014

The CVE-2026-4014 entry affects itsourcecode Cafe Reservation System 1.0, specifically the Registration module’s signup.php file. A manipulation of the Username argument enables SQL injection, allowing remote exploitation. Multiple sources (NVD, Red Hat, EUVD, CVE lists, and security trackers) af...

itsourcecode Cafe Reservation System SQL注入漏洞

itsourcecode Cafe Reservation System is an open-source coffee reservation system developed by itsourcecode. Version 1.0 of the system has a SQL injection vulnerability. This vulnerability stems from incorrect handling of the Username parameter in the /curvus2/signup.php file within the Registrati...

CVE-2026-2848

A flaw has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected by this vulnerability is an unknown functionality of the file /classes/Master.php?f=register of the component Registration. This manipulation of the argument Username causes sql injection. The attack may be...

PT-2026-21246

Name of the Vulnerable Software and Affected Versions SourceCodester Simple Responsive Tourism Website version 1.0 Description A flaw exists in SourceCodester Simple Responsive Tourism Website that allows for SQL injection. This issue is related to the manipulation of the Username argument within...

CVE-2026-2159

A flaw has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected is an unknown function of the file /tourism/classes/Master.php?f=register of the component Registration. Executing a manipulation of the argument firstname/lastname/username can lead to cross site scripting. I...

org.keycloak/keycloak-services: WebAuthn Attestation Statement Verification Bypass

A flaw was found in Keycloak’s WebAuthn registration component. This vulnerability allows an attacker to bypass the configured attestation policy and register untrusted or forged authenticators via submission of an attestation object with fmt: "none", even when the realm is configured to require...

PT-2025-43207

Name of the Vulnerable Software and Affected Versions Cynob IT Consultancy Auto Login After Registration versions through 1.0.0 Description The Auto Login After Registration component contains a flaw related to improper input handling during web page generation, which allows for Reflected...

EUVD-2013-6511

Malware in sbrugna...

EUVD-2023-50785

Malicious code in bioql PyPI...

EUVD-2025-28864

Malicious code in bioql PyPI...

EUVD-2025-8714

Malicious code in bioql PyPI...

CVE-2025-9514 macrozheng mall Registration weak password

A vulnerability has been found in macrozheng mall up to 1.0.3. This impacts an unknown function of the component Registration. Such manipulation leads to weak password requirements. The attack can be executed remotely. Attacks of this nature are highly complex. The exploitability is said to be...

mall 安全漏洞

mall is an e-commerce system for macro individual developers, including the front-end mall system and back-end management system. A security vulnerability exists in mall 1.0.3 and earlier versions, which stems from an insufficient password requirement for the registration component and could lead...

WebServer 注入漏洞

WebServer is a C++ Linux WebServer server by MARK Individual Developers. An injection vulnerability exists in WebServer version 1.0, which originates from SQL injection due to manipulation of the username/password parameters by the Registration component in file code/http/httprequest.cpp...

PT-2025-17468

Name of the Vulnerable Software and Affected Versions markparticle WebServer version 1.0 Description A critical issue was found in the Registration component of markparticle WebServer, affecting an unknown functionality of the file code/http/httprequest.cpp. The manipulation of the...

CVE-2025-2979

A vulnerability classified as problematic has been found in WCMS 11. This affects an unknown part of the file /index.php?anonymous/setregister of the component Registration. The manipulation of the argument Username leads to cross site scripting. It is possible to initiate the attack remotely. Th...

Vehicle Booking System Cross-Site Scripting Vulnerability

Vehicle Booking System is a vehicle booking system by Martin Mbithi Nzilani, an individual developer. A cross-site scripting vulnerability exists in Vehicle Booking System version 1.0, which originates in the usr/usr-register.php in the component User Registration, which contains unknown code tha...