CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16073 matches found

Cvelist•added 2026/02/25 4:2 a.m.•23 views

CVE-2026-3148 SourceCodester Simple and Nice Shopping Cart Script signup.php sql injection

A vulnerability was determined in SourceCodester Simple and Nice Shopping Cart Script 1.0. This impacts an unknown function of the file /signup.php. This manipulation of the argument Username causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and m...

7.5CVSS0.00399EPSS

Exploits1References5

Positive Technologies•added 2026/02/25 12:0 a.m.•7 views

PT-2026-21874

A vulnerability has been found in SourceCodester Website Link Extractor 1.0. This vulnerability affects the function file get contents of the component URL Handler. The manipulation leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit has been disclose...

6.5CVSS5.1AI score0.00275EPSS

Exploits1References6

CNNVD•added 2026/02/25 12:0 a.m.•6 views

SourceCodester Simple and Nice Shopping Cart Script SQL注入漏洞

SourceCodester Simple and Nice Shopping Cart Script is an open-source shopping cart script developed by SourceCodester. Version 1.0 of the SourceCodester Simple and Nice Shopping Cart Script contains a SQL injection vulnerability. This vulnerability arises from incorrect handling of the Username...

9.8CVSS7.2AI score0.00399EPSS

Exploits1References5

Positive Technologies•added 2026/02/25 12:0 a.m.•7 views

PT-2026-21868

Name of the Vulnerable Software and Affected Versions SourceCodester Simple and Nice Shopping Cart Script version 1.0 Description A SQL injection issue exists in SourceCodester Simple and Nice Shopping Cart Script 1.0. The issue is located in an unknown function within the /signup.php file...

9.8CVSS7AI score0.00399EPSS

Exploits1References12

CNNVD•added 2026/02/25 12:0 a.m.•8 views

SourceCodester Website Link Extractor 代码问题漏洞

SourceCodester Website Link Extractor is an open-source website link extractor developed by SourceCodester. Version 1.0 of SourceCodester Website Link Extractor has code-related vulnerabilities; these vulnerabilities stem from issues with the filegetcontents function in the URL Handler component,...

7.5CVSS6.6AI score0.00275EPSS

Exploits1References5

CNNVD•added 2026/02/25 12:0 a.m.•7 views

SourceCodester Mvuma Patients Waiting Area Queue Management System 代码注入漏洞

SourceCodester Mvuma Patients Waiting Area Queue Management System is an open-source system for patient waiting area queue management developed by SourceCodester. Version 1.0 of the SourceCodester Mvuma Patients Waiting Area Queue Management System contains a code injection vulnerability. This...

5.4CVSS5.7AI score0.00215EPSS

Exploits1References4

Positive Technologies•added 2026/02/25 12:0 a.m.•6 views

PT-2026-21891

A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /queue.php. This manipulation of the argument firstname/lastname causes cross site scripting. The attack is possible to b...

5.1CVSS4AI score0.00215EPSS

Exploits1References5

RedhatCVE•added 2026/02/24 1:34 p.m.•5 views

CVE-2026-2984

A vulnerability was identified in SourceCodester Student Result Management System 1.0. This affects an unknown function of the file /admin/core/dropuser.php. Such manipulation of the argument ID leads to denial of service. The attack can be executed remotely. The exploit is publicly available and...

6.9CVSS5.3AI score0.0049EPSS

Exploits1References1

OSV•added 2026/02/24 5:17 a.m.•3 views

CVE-2026-3070

A vulnerability was detected in SourceCodester Modern Image Gallery App 1.0. Affected by this vulnerability is an unknown functionality of the file upload.php. The manipulation of the argument filename results in cross site scripting. The attack may be launched remotely. The exploit is now public...

6.1CVSS4.2AI score

Exploits0References5

Vulnrichment•added 2026/02/24 4:32 a.m.•5 views

CVE-2026-3070 SourceCodester Modern Image Gallery App upload.php cross site scripting

5.3CVSS4AI score0.00264EPSS

Exploits1References5

CVE•added 2026/02/24 4:32 a.m.•23 views

CVE-2026-3070

CVE-2026-3070 affects SourceCodester Modern Image Gallery App 1.0. The vulnerability is located in an unknown functionality of the file upload.php where manipulation of the filename argument leads to cross-site scripting (XSS) . The attack can be launched remotely and, per the description, the ex...

6.1CVSS3.8AI score0.00264EPSS

Exploits1References5Affected Software1

EUVD•added 2026/02/24 4:32 a.m.•7 views

EUVD-2026-7393

6.1CVSS4AI score0.00264EPSS

Exploits1References5

CNNVD•added 2026/02/24 12:0 a.m.•6 views

SourceCodester Modern Image Gallery App 代码注入漏洞

SourceCodester Modern Image Gallery App is an open-source modern image gallery application developed by SourceCodester. Version 1.0 of the SourceCodester Modern Image Gallery App contains a code injection vulnerability, which stems from incorrect handling of the parameter filename in the upload.p...

6.1CVSS5.7AI score0.00264EPSS

Exploits1References5

Positive Technologies•added 2026/02/24 12:0 a.m.•8 views

PT-2026-21663

5.3CVSS3.8AI score0.00264EPSS

Exploits1References6

NVD•added 2026/02/23 11:16 a.m.•9 views

CVE-2026-2984

6.9CVSS0.0049EPSS

Exploits1References5

OSV•added 2026/02/23 11:16 a.m.•2 views

CVE-2026-2984

6.5CVSS5.6AI score0.0049EPSS

Exploits1References5

NVD•added 2026/02/23 10:16 a.m.•6 views

CVE-2026-2983

A vulnerability was determined in SourceCodester Student Result Management System 1.0. The impacted element is an unknown function of the file /admin/core/importusers.php of the component Bulk Import. This manipulation of the argument File causes improper access controls. Remote exploitation of t...

9.8CVSS0.00412EPSS

Exploits1References5

OSV•added 2026/02/23 10:16 a.m.•1 views

CVE-2026-2983

9.8CVSS5.5AI score0.00412EPSS

Exploits1References5