CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

41081 matches found

EUVD•added 2026/04/13 9:31 a.m.•4 views

EUVD-2026-21889

A security vulnerability has been detected in code-projects Vehicle Showroom Management System 1.0. This issue affects some unknown processing of the file /util/UpdateVehicleFunction.php. The manipulation of the argument VEHICLEID leads to sql injection. The attack may be initiated remotely. The...

7.5CVSS6.9AI score0.00254EPSS

Exploits0References6

EUVD•added 2026/04/13 9:31 a.m.•6 views

EUVD-2026-21893

A flaw has been found in TOTOLINK A7000R up to 9.1.0u.6115. The affected element is the function setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi. This manipulation of the argument ssid5g causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been...

9CVSS7.7AI score0.00575EPSS

Exploits0References6

Cvelist•added 2026/04/13 9:30 a.m.•26 views

CVE-2025-15632 1Panel-dev MaxKB MdPreview chat.ts cross site scripting

A vulnerability has been found in 1Panel-dev MaxKB up to 2.4.2. Impacted is an unknown function of the file ui/src/chat.ts of the component MdPreview. Such manipulation leads to cross site scripting. The attack can be executed remotely. The exploit has been disclosed to the public and may be used...

5.1CVSS0.00266EPSS

Exploits0References8

Vulnrichment•added 2026/04/13 9:30 a.m.•0 views

CVE-2025-15632 1Panel-dev MaxKB MdPreview chat.ts cross site scripting

5.1CVSS4AI score0.00266EPSS

Exploits0References8

NVD•added 2026/04/13 7:16 a.m.•3 views

CVE-2026-6167

A vulnerability was detected in code-projects Faculty Management System 1.0. Impacted is an unknown function of the file /subject-print.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit is now public and may be used...

7.5CVSS0.00254EPSS

Exploits0References5

NVD•added 2026/04/13 7:16 a.m.•11 views

CVE-2026-6168

9CVSS0.00575EPSS

Exploits0References5

EUVD•added 2026/04/13 6:30 a.m.•4 views

EUVD-2026-21852

A vulnerability has been found in code-projects Simple ChatBox up to 1.0. Affected by this vulnerability is an unknown functionality of the file /chatbox/insert.php of the component Endpoint. Such manipulation of the argument msg leads to cross site scripting. The attack may be performed from...

5.3CVSS4.1AI score0.00269EPSS

Exploits0References6

EUVD•added 2026/04/13 6:30 a.m.•6 views

EUVD-2026-21874

A vulnerability was identified in code-projects Lost and Found Thing Management 1.0. Affected by this issue is some unknown functionality of the file /catageory.php. Such manipulation of the argument cat leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly...

7.5CVSS7AI score0.00318EPSS

Exploits0References6

EUVD•added 2026/04/13 6:30 a.m.•4 views

EUVD-2026-21854

A vulnerability was determined in code-projects Simple ChatBox up to 1.0. This affects an unknown part of the file /chatbox/insert.php of the component Endpoint. Executing a manipulation of the argument msg can lead to sql injection. It is possible to launch the attack remotely. The exploit has...

7.5CVSS5.6AI score0.00254EPSS

Exploits0References6

EUVD•added 2026/04/13 6:30 a.m.•4 views

EUVD-2026-21853

A vulnerability was found in code-projects Simple ChatBox 1.0. Affected by this issue is the function SimpleChatboxPHP of the file chatbox.sql of the component Endpoint. Performing a manipulation results in file and directory information exposure. It is possible to initiate the attack remotely. T...

6.9CVSS5.5AI score0.00308EPSS

Exploits0References6

EUVD•added 2026/04/13 6:30 a.m.•6 views

EUVD-2026-21876

A weakness has been identified in code-projects Vehicle Showroom Management System 1.0. This vulnerability affects unknown code of the file /util/Logincheck.php. Executing a manipulation of the argument ID can lead to sql injection. The attack can be launched remotely. The exploit has been made...

7.5CVSS7AI score0.00254EPSS

Exploits0References6

EUVD•added 2026/04/13 6:30 a.m.•2 views

EUVD-2026-21810

A weakness has been identified in Totolink A7100RU 7.4cu.2313. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument pppoeServiceName can lead to os command injection. The attack may be launched...

10CVSS5.6AI score0.01803EPSS

Exploits0References6

EUVD•added 2026/04/13 6:30 a.m.•1 views

EUVD-2026-21808

A security flaw has been discovered in Totolink A7100RU 7.4cu.2313b20191024. The affected element is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument wizard results in os command injection. The attack may be initiat...

10CVSS5.6AI score0.01823EPSS

Exploits0References6

EUVD•added 2026/04/13 6:30 a.m.•5 views

EUVD-2026-21806

A vulnerability was identified in code-projects Vehicle Showroom Management System 1.0. Impacted is an unknown function of the file /util/StaffDetailsFunction.php. Such manipulation of the argument STAFFID leads to sql injection. The attack can be launched remotely. The exploit is publicly...

7.5CVSS5.7AI score0.00318EPSS

Exploits0References6

Cvelist•added 2026/04/13 6:30 a.m.•30 views

CVE-2026-6168 TOTOLINK A7000R cstecgi.cgi setWiFiEasyGuestCfg stack-based overflow

9CVSS0.00575EPSS

Exploits0References5

NVD•added 2026/04/13 6:16 a.m.•2 views

CVE-2026-6165

7.5CVSS0.00254EPSS

Exploits0References5

CVE•added 2026/04/13 6:15 a.m.•6 views

CVE-2026-6167

The CVE-2026-6167 entry concerns code-projects Faculty Management System 1.0. A vulnerability exists in an unknown function of the file /subject-print.php where manipulating the argument ID leads to SQL injection. The attack is described as remote, with the exploit publicly available. The connect...

7.5CVSS6.9AI score0.00254EPSS

Exploits0References5

Cvelist•added 2026/04/13 6:15 a.m.•34 views

CVE-2026-6167 code-projects Faculty Management System subject-print.php sql injection

7.5CVSS0.00254EPSS

Exploits0References5