CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

216329 matches found

EUVD•added 2026/05/04 7:30 a.m.•5 views

EUVD-2026-26931

A vulnerability was found in CodeAstro Online Classroom 1.0. This affects an unknown function of the file /OnlineClassroom/addnewstudent. The manipulation of the argument fname results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

6.5CVSS5.6AI score0.00192EPSS

Exploits0References5

Vulnrichment•added 2026/05/04 7:30 a.m.•2 views

CVE-2026-7744 CodeAstro Online Classroom addnewstudent sql injection

6.5CVSS5.6AI score0.00192EPSS

Exploits0References5

CVE•added 2026/05/04 7:30 a.m.•12 views

CVE-2026-7744

CodeAstro Online Classroom 1.0 contains a SQL injection in /OnlineClassroom/addnewstudent triggered by the fname parameter. The vulnerability is exploitable remotely (attack vector: NETWORK) and has been demonstrated at PROOF-OF-CONCEPT maturity. Affected component is the unknown function handlin...

6.5CVSS6.3AI score0.00192EPSS

Exploits0References5

EUVD•added 2026/05/04 7:15 a.m.•21 views

EUVD-2026-26929

A vulnerability has been found in CodeAstro Online Classroom 1.0. The impacted element is an unknown function of the file /OnlineClassroom/studentdetails. The manipulation of the argument deleteid leads to sql injection. The attack is possible to be carried out remotely. The exploit has been...

6.5CVSS5.6AI score0.00241EPSS

Exploits0References5

CVE•added 2026/05/04 7:15 a.m.•16 views

CVE-2026-7743

CVE-2026-7743 affects CodeAstro Online Classroom 1.0. The vulnerability is in an unknown function of /OnlineClassroom/studentdetails where manipulating the argument deleteid triggers an SQL injection. The issue is exploitable remotely and has been disclosed publicly. Connected records confirm the...

6.5CVSS6.4AI score0.00241EPSS

Exploits0References5

EUVD•added 2026/05/04 7:0 a.m.•31 views

EUVD-2026-26928

A flaw has been found in CodeAstro Online Classroom 1.0. The affected element is an unknown function of the file /OnlineClassroom/facultylogin. Executing a manipulation of the argument fid can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be us...

6.5CVSS5.7AI score0.00241EPSS

Exploits0References5

ATTACKERKB•added 2026/05/04 7:0 a.m.•4 views

CVE-2026-7742

6.5CVSS6.5AI score0.00241EPSS

Exploits0References5Affected Software1

Cvelist•added 2026/05/04 7:0 a.m.•74 views

CVE-2026-7742 CodeAstro Online Classroom facultylogin sql injection

6.5CVSS0.00241EPSS

Exploits0References5

CVE•added 2026/05/04 7:0 a.m.•12 views

CVE-2026-7742

CodeAstro Online Classroom 1.0 contains a remotely exploitable SQL Injection in the facultylogin path, caused by manipulation of the fid argument in an unknown function of /OnlineClassroom/facultylogin. An exploit has been published, making the vulnerability actionable.

6.5CVSS6.5AI score0.00241EPSS

Exploits0References5

ATTACKERKB•added 2026/05/04 6:45 a.m.•3 views

CVE-2026-7741

A vulnerability was detected in CodeAstro Online Classroom 1.0. Impacted is an unknown function of the file /OnlineClassroom/studentlogin. Performing a manipulation of the argument sid results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be us...

6.5CVSS6.5AI score0.00192EPSS

Exploits0References5Affected Software1

Cvelist•added 2026/05/04 6:45 a.m.•47 views

CVE-2026-7741 CodeAstro Online Classroom studentlogin sql injection

6.5CVSS0.00192EPSS

Exploits0References5

EUVD•added 2026/05/04 6:45 a.m.•18 views

EUVD-2026-26927

6.5CVSS5.7AI score0.00192EPSS

Exploits0References5

NVD•added 2026/05/04 5:16 a.m.•12 views

CVE-2026-7727

A vulnerability was determined in Shandong Hoteam Software PDM Product Data Management System up to 8.3.9. This affects the function GetQueryMachineGridOnePageData of the file /Base/BaseService.asmx/DataService. This manipulation of the argument SortOrder causes sql injection. The attack can be...

7.5CVSS0.00259EPSS

Exploits0References5

Vulnrichment•added 2026/05/04 4:15 a.m.•3 views

CVE-2026-7731 code-projects BloodBank Managing System get_state.php sql injection

A security vulnerability has been detected in code-projects BloodBank Managing System 1.0. The affected element is an unknown function of the file getstate.php. The manipulation of the argument GSTATEID leads to sql injection. Remote exploitation of the attack is possible. The exploit has been...

6.5CVSS6.4AI score0.00246EPSS

Exploits1References5

EUVD•added 2026/05/04 4:15 a.m.•4 views

EUVD-2026-26908

6.5CVSS6.4AI score0.00246EPSS

Exploits1References5

ATTACKERKB•added 2026/05/04 4:15 a.m.•1 views

CVE-2026-7731

6.5CVSS6.4AI score0.00246EPSS

Exploits1References5Affected Software1

Cvelist•added 2026/05/04 4:15 a.m.•45 views

CVE-2026-7731 code-projects BloodBank Managing System get_state.php sql injection

6.5CVSS0.00246EPSS

Exploits1References5

CVE•added 2026/05/04 3:15 a.m.•27 views

CVE-2026-7727

Technical details about CVE-2026-7727 are not publicly available in the provided documents. Monitor for updates.

7.5CVSS6.9AI score0.00259EPSS

Exploits0References5

Cvelist•added 2026/05/04 3:15 a.m.•48 views

CVE-2026-7727 Shandong Hoteam Software PDM Product Data Management System DataService GetQueryMachineGridOnePageData sql injection

7.5CVSS0.00259EPSS

Exploits0References5

NVD•added 2026/05/04 1:16 a.m.•9 views

CVE-2026-7716

A vulnerability was found in code-projects Gym Management System In PHP and Windows NT 1.0. This vulnerability affects unknown code of the file /index.php. Performing a manipulation of the argument day results in sql injection. The attack can be initiated remotely. The exploit has been made publi...

6.5CVSS0.00192EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by