CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

216073 matches found

Vulnrichment•added 2026/06/08 12:30 p.m.•5 views

CVE-2026-11514 itsourcecode Hospital Management System addpatient.php sql injection

A flaw has been found in itsourcecode Hospital Management System 1.0. The affected element is an unknown function of the file /addpatient.php. This manipulation of the argument admissiontme causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

6.5CVSS6.5AI score0.002EPSS

Exploits0References6

NVD•added 2026/06/08 12:16 p.m.•11 views

CVE-2026-11507

A vulnerability was found in CodeAstro Leave Management System 1.0. Affected is an unknown function of the file /admin/deleteleavetype.php. The manipulation of the argument leavetype results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

6.5CVSS0.002EPSS

Exploits0References6

Cvelist•added 2026/06/08 12:15 p.m.•38 views

CVE-2026-11513 itsourcecode Hospital Management System adminaccount.php sql injection

A vulnerability was detected in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminaccount.php. The manipulation of the argument Date results in sql injection. The attack can be launched remotely. The exploit is now public and may be used...

6.5CVSS0.002EPSS

Exploits0References6

EUVD•added 2026/06/08 12:15 p.m.•5 views

EUVD-2026-35055

6.5CVSS6.6AI score0.002EPSS

Exploits0References6

Vulnrichment•added 2026/06/08 12:15 p.m.•4 views

CVE-2026-11513 itsourcecode Hospital Management System adminaccount.php sql injection

6.5CVSS5.5AI score0.002EPSS

Exploits0References6

OSV•added 2026/06/08 11:33 a.m.•6 views

USN-8395-1 netatalk vulnerabilities

Arjun Basnet discovered that Netatalk incorrectly sanitized user input in its MySQL CNID backend. A remote authenticated attacker could possibly use this issue to conduct SQL injection attacks. CVE-2026-44047 Arjun Basnet discovered that Netatalk incorrectly handled UCS-2 character set conversion...

9.9CVSS6.2AI score0.00516EPSS

Exploits0References11

Cvelist•added 2026/06/08 11:30 a.m.•37 views

CVE-2026-11510 CodeAstro Leave Management System add_leave.php sql injection

A security flaw has been discovered in CodeAstro Leave Management System 1.0. This affects an unknown part of the file /admin/addleave.php. Performing a manipulation of the argument typeofleave results in sql injection. It is possible to initiate the attack remotely. The exploit has been released...

6.5CVSS0.002EPSS

Exploits0References6

Vulnrichment•added 2026/06/08 11:30 a.m.•7 views

CVE-2026-11510 CodeAstro Leave Management System add_leave.php sql injection

6.5CVSS6.5AI score0.002EPSS

Exploits0References6

CVE•added 2026/06/08 11:30 a.m.•12 views

CVE-2026-11510

CVE-2026-11510 affects CodeAstro Leave Management System 1.0. The vulnerability resides in an unknown area of the file /admin/add_leave.php, where manipulating the argument type_of_leave leads to an SQL injection. The issue can be exploited remotely, and public exploit activity is noted. The CVSS...

6.5CVSS6.5AI score0.002EPSS

Exploits0References6

ATTACKERKB•added 2026/06/08 11:15 a.m.•3 views

CVE-2026-11509

A vulnerability was identified in CodeAstro Leave Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/searchstaffforupdation.php. Such manipulation of the argument Name leads to sql injection. The attack may be performed from remote...

6.5CVSS6.5AI score0.00192EPSS

Exploits0References6Affected Software1

CVE•added 2026/06/08 11:15 a.m.•15 views

CVE-2026-11509

CodeAstro Leave Management System 1.0 is affected by a SQL injection in /admin/search_staff_for_updation.php triggered by manipulation of the Name parameter. The issue can be exploited remotely; CVE-2026-11509 is identified with multiple CVSS vectors (e.g., 3.1 and 3.0) indicating network access,...

6.5CVSS6.5AI score0.00192EPSS

Exploits0References5

ATTACKERKB•added 2026/06/08 11:0 a.m.•4 views

CVE-2026-11508

A vulnerability was determined in CodeAstro Leave Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/searchstafftoassignpc.php. This manipulation of the argument Name causes sql injection. The attack is possible to be carried out remotely. The...

6.5CVSS6.5AI score0.002EPSS

Exploits0References6Affected Software1

ATTACKERKB•added 2026/06/08 10:45 a.m.•5 views

CVE-2026-11507

6.5CVSS6.4AI score0.002EPSS

Exploits0References6Affected Software1

Cvelist•added 2026/06/08 10:45 a.m.•35 views

CVE-2026-11507 CodeAstro Leave Management System delete_leave_type.php sql injection

6.5CVSS0.002EPSS

Exploits0References6

Vulnrichment•added 2026/06/08 10:45 a.m.•6 views

CVE-2026-11507 CodeAstro Leave Management System delete_leave_type.php sql injection

6.5CVSS6.4AI score0.002EPSS

Exploits0References6

GithubExploit•added 2026/06/08 10:43 a.m.•49 views

OWASP_Top10_Web_Pentest

🔓 Week 04 — Web Application Penetration Testing OWASP Top 10...

5.8AI score

Exploits0

ATTACKERKB•added 2026/06/08 10:30 a.m.•3 views

CVE-2026-11506

A vulnerability has been found in CodeAstro Leave Management System 1.0. This impacts an unknown function of the file /admin/searchstafffordeletion.php. The manipulation of the argument Name leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to t...

6.5CVSS6.4AI score0.002EPSS

Exploits0References6Affected Software1

Cvelist•added 2026/06/08 10:30 a.m.•30 views

CVE-2026-11506 CodeAstro Leave Management System search_staff_for_deletion.php sql injection

6.5CVSS0.002EPSS

Exploits0References6

EUVD•added 2026/06/08 10:30 a.m.•7 views

EUVD-2026-35042

6.5CVSS6.4AI score0.002EPSS

Exploits0References6

Vulnrichment•added 2026/06/08 10:30 a.m.•5 views

CVE-2026-11506 CodeAstro Leave Management System search_staff_for_deletion.php sql injection