Lucene search
K

216979 matches found

NVD
NVD
added 9 hours ago7 views

CVE-2026-14799

A security flaw has been discovered in CodeAstro Ecommerce Website 1.0. Impacted is an unknown function of the file /customer/myaccount.php?mywishlist. The manipulation of the argument deletewishlist results in sql injection. The attack can be launched remotely. The exploit has been released to t...

6.5CVSS
Exploits0References6
CVE
CVE
added 10 hours ago6 views

CVE-2026-14799

CodeAstro Ecommerce Website 1.0 is affected by CVE-2026-14799 due to a SQL injection in /customer/my_account.php?my_wishlist when manipulating the delete_wishlist argument. The issue is exploitable remotely with a low-privilege, no-user-interaction path (network vector, low complexity; exploit ma...

6.5CVSS6.5AI score
Exploits0References6
ATTACKERKB
ATTACKERKB
added 10 hours ago3 views

CVE-2026-14799

A security flaw has been discovered in CodeAstro Ecommerce Website 1.0. Impacted is an unknown function of the file /customer/myaccount.php?mywishlist. The manipulation of the argument deletewishlist results in sql injection. The attack can be launched remotely. The exploit has been released to t...

6.5CVSS6.5AI score
Exploits0References6Affected Software1
NVD
NVD
added 10 hours ago5 views

CVE-2026-14795

A vulnerability has been found in CodeAstro Apartment Visitor Management System 1.0. Affected by this issue is some unknown functionality of the file /apartment-visitor/action-visitor.php. Such manipulation of the argument remark leads to sql injection. The attack may be performed from remote. Th...

6.5CVSS
Exploits0References6
NVD
NVD
added 10 hours ago7 views

CVE-2026-14796

A vulnerability was found in CodeAstro Apartment Visitor Management System 1.0. This affects an unknown part of the file /apartment-visitor/report.php. Performing a manipulation of the argument fromdate results in sql injection. It is possible to initiate the attack remotely. The exploit has been...

6.5CVSS
Exploits0References6
CVE
CVE
added 10 hours ago6 views

CVE-2026-14798

CVE-2026-14798 affects CodeAstro Apartment Visitor Management System 1.0. The issue arises from processing the parameter visname in the file /apartment-visitor/visitor-entry.php, which can lead to a SQL injection. The vulnerability is exploitable remotely, with a publicly available exploit. The s...

6.5CVSS6.6AI score
Exploits0References6
ATTACKERKB
ATTACKERKB
added 10 hours ago2 views

CVE-2026-14798

A vulnerability was identified in CodeAstro Apartment Visitor Management System 1.0. This issue affects some unknown processing of the file /apartment-visitor/visitor-entry.php. The manipulation of the argument visname leads to sql injection. The attack can be initiated remotely. The exploit is...

6.5CVSS6.6AI score
Exploits0References6Affected Software1
Cvelist
Cvelist
added 11 hours ago7 views

CVE-2026-14797 CodeAstro Apartment Visitor Management System edit-apartment.php sql injection

A vulnerability was determined in CodeAstro Apartment Visitor Management System 1.0. This vulnerability affects unknown code of the file /apartment-visitor/edit-apartment.php. Executing a manipulation of the argument editid can lead to sql injection. It is possible to launch the attack remotely...

6.5CVSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 11 hours ago3 views

CVE-2026-14797

A vulnerability was determined in CodeAstro Apartment Visitor Management System 1.0. This vulnerability affects unknown code of the file /apartment-visitor/edit-apartment.php. Executing a manipulation of the argument editid can lead to sql injection. It is possible to launch the attack remotely...

6.5CVSS6.6AI score
Exploits0References6Affected Software1
CVE
CVE
added 11 hours ago4 views

CVE-2026-14797

CodeAstro Apartment Visitor Management System 1.0 contains a SQL injection in /apartment-visitor/edit-apartment.php via manipulated editid. The vulnerability is remotely exploitable and affects unknown code paths in the file. Publicly disclosed exploits exist. The CVSS metrics indicate a network-...

6.5CVSS6.6AI score
Exploits0References6
ATTACKERKB
ATTACKERKB
added 11 hours ago4 views

CVE-2026-14796

A vulnerability was found in CodeAstro Apartment Visitor Management System 1.0. This affects an unknown part of the file /apartment-visitor/report.php. Performing a manipulation of the argument fromdate results in sql injection. It is possible to initiate the attack remotely. The exploit has been...

6.5CVSS6.5AI score
Exploits0References6Affected Software1
CVE
CVE
added 11 hours ago7 views

CVE-2026-14796

CVE-2026-14796 affects CodeAstro Apartment Visitor Management System 1.0. Affected component: /apartment-visitor/report.php; vulnerability: SQL injection triggered by manipulating the fromdate parameter. Attackable remotely over network with no user interaction; attacker privileges required: LOW....

6.5CVSS6.5AI score
Exploits0References6
EUVD
EUVD
added 11 hours ago7 views

EUVD-2026-41807

A vulnerability was found in CodeAstro Apartment Visitor Management System 1.0. This affects an unknown part of the file /apartment-visitor/report.php. Performing a manipulation of the argument fromdate results in sql injection. It is possible to initiate the attack remotely. The exploit has been...

6.5CVSS5.8AI score
Exploits0References6
Cvelist
Cvelist
added 11 hours ago6 views

CVE-2026-14796 CodeAstro Apartment Visitor Management System report.php sql injection

A vulnerability was found in CodeAstro Apartment Visitor Management System 1.0. This affects an unknown part of the file /apartment-visitor/report.php. Performing a manipulation of the argument fromdate results in sql injection. It is possible to initiate the attack remotely. The exploit has been...

6.5CVSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 11 hours ago5 views

CVE-2026-14795

A vulnerability has been found in CodeAstro Apartment Visitor Management System 1.0. Affected by this issue is some unknown functionality of the file /apartment-visitor/action-visitor.php. Such manipulation of the argument remark leads to sql injection. The attack may be performed from remote. Th...

6.5CVSS6.4AI score
Exploits0References6Affected Software1
CVE
CVE
added 11 hours ago5 views

CVE-2026-14795

CodeAstro Apartment Visitor Management System 1.0 contains a SQL injection vulnerability in the file /apartment-visitor/action-visitor.php, triggered via the remark parameter. The flaw allows remote attackers to manipulate SQL queries and may be exploited without user interaction. The exploitatio...

6.5CVSS6.4AI score
Exploits0References6
Cvelist
Cvelist
added 11 hours ago5 views

CVE-2026-14795 CodeAstro Apartment Visitor Management System action-visitor.php sql injection

A vulnerability has been found in CodeAstro Apartment Visitor Management System 1.0. Affected by this issue is some unknown functionality of the file /apartment-visitor/action-visitor.php. Such manipulation of the argument remark leads to sql injection. The attack may be performed from remote. Th...

6.5CVSS
Exploits0References6
Nuclei
Nuclei
added 12 hours ago34 views

Hongjing e-HR 2020 - SQL Injection

A vulnerability, which was classified as critical, has been found in Hongjing e-HR 2020. Affected by this issue is some unknown functionality of the file /wselfservice/oauthservlet/%2e./.%2e/general/inform/org/loadhistroyorgtree of the component Login Interface. The manipulation of the argument...

9.8CVSS6.6AI score0.03766EPSS
Exploits1References2
Nuclei
Nuclei
added 12 hours ago79 views

PrestaShop Theme Volty CMS Blog - SQL Injection

In the module 'Theme Volty CMS Blog' tvcmsblog up to versions 4.0.1 from Theme Volty for PrestaShop, a guest can perform SQL injection in affected versions. id: CVE-2023-39650 info: name: PrestaShop Theme Volty CMS Blog - SQL Injection author: mastercho severity: critical description: | In the...

9.8CVSS7.2AI score0.03631EPSS
Exploits1References2
Nuclei
Nuclei
added 12 hours ago19 views

PrestaShop lgcookieslaw - SQL Injection

The EU Cookie Law GDPR Banner + Blocker PrestaShop module before 2.1.3 allows blind SQL injection via the lglaw or lgcookieslaw cookie used to store user consent choices. id: CVE-2022-44727 info: name: PrestaShop lgcookieslaw - SQL Injection author: mastercho severity: critical description: | The...

9.1CVSS7.2AI score0.02397EPSS
Exploits1References3
Rows per page
Query Builder