CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16073 matches found

OSV•added 2026/01/05 8:15 a.m.•5 views

CVE-2026-0580

A vulnerability was found in SourceCodester API Key Manager App 1.0. Affected by this vulnerability is an unknown functionality of the component Import Key Handler. Performing a manipulation results in cross site scripting. The attack can be initiated remotely...

6.1CVSS4.2AI score0.00189EPSS

Exploits0References5

NVD•added 2026/01/05 8:15 a.m.•5 views

CVE-2026-0580

6.1CVSS0.00189EPSS

Exploits0References5

Cvelist•added 2026/01/05 7:32 a.m.•30 views

CVE-2026-0580 SourceCodester API Key Manager App Import Key cross site scripting

5.1CVSS0.00189EPSS

Exploits0References5

EUVD•added 2026/01/05 7:32 a.m.•3 views

EUVD-2026-0904

5.1CVSS3.7AI score0.00189EPSS

Exploits0References7

CVE•added 2026/01/05 7:32 a.m.•12 views

CVE-2026-0580

CVE-2026-0580 affects the SourceCodester API Key Manager App 1.0. The vulnerability is in the Import Key Handler component, where manipulating an unknown functionality leads to Cross-Site Scripting (XSS). The issue is exploitable remotely; attack vectors are not fully detailed in the provided doc...

6.1CVSS3.9AI score0.00189EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2026/01/05 7:32 a.m.•7 views

CVE-2026-0580 SourceCodester API Key Manager App Import Key cross site scripting

5.1CVSS5.5AI score0.00189EPSS

Exploits0References5

CNNVD•added 2026/01/05 12:0 a.m.•3 views

SourceCodester API Key Manager App 代码注入漏洞

SourceCodester API Key Manager App is a SourceCodester open source api key manager application. A code injection vulnerability exists in SourceCodester API Key Manager App version 1.0, which stems from an incorrect operation of the component Import Key Handler and could lead to a cross-site...

6.1CVSS4.9AI score0.00189EPSS

Exploits0References6

Positive Technologies•added 2026/01/05 12:0 a.m.•7 views

PT-2026-1224

Name of the Vulnerable Software and Affected Versions SourceCodester API Key Manager App version 1.0 Description A flaw exists within the Import Key Handler component that allows for cross site scripting. This issue can be triggered remotely through manipulation of an unknown functionality...

5.1CVSS5.4AI score0.00189EPSS

Exploits0References8

Cvelist•added 2025/12/18 6:32 p.m.•25 views

CVE-2025-14885 SourceCodester Client Database Management System Leads Generation user_leads.php unrestricted upload

A flaw has been found in SourceCodester Client Database Management System 1.0. This affects an unknown part of the file /userleads.php of the component Leads Generation Module. Executing manipulation can lead to unrestricted upload. The attack can be launched remotely. The exploit has been...

6.5CVSS0.00299EPSS

Exploits1References5

Vulnrichment•added 2025/12/18 6:32 p.m.•3 views

CVE-2025-14885 SourceCodester Client Database Management System Leads Generation user_leads.php unrestricted upload

6.5CVSS6.3AI score0.00299EPSS

Exploits1References5

CVE•added 2025/12/18 6:32 p.m.•8 views

CVE-2025-14885

The CVE-2025-14885 entry concerns SourceCodester Client Database Management System 1.0, specifically the Leads Generation Module. The vulnerability is in an unknown part of the file /user_leads.php, where manipulation can cause unrestricted file upload and can be exploited remotely. Exploit publi...

8.8CVSS6.3AI score0.00299EPSS

Exploits1References5Affected Software1

CNNVD•added 2025/12/18 12:0 a.m.•2 views

SourceCodester Client Database Management System 安全漏洞

SourceCodester Client Database Management System is a SourceCodester open source client database management system. A security vulnerability exists in SourceCodester Client Database Management System version 1.0, which originates from an unrestricted upload of the file /userleads.php...

8.8CVSS6.6AI score0.00299EPSS

Exploits1References5

Positive Technologies•added 2025/12/18 12:0 a.m.•5 views

PT-2025-52279

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0 Description A flaw exists in SourceCodester Client Database Management System 1.0 within the Leads Generation Module. The issue affects the file /user leads.php and allows for...

8.8CVSS6.3AI score0.00299EPSS

Exploits1References8

GithubExploit•added 2025/12/13 1:47 p.m.•162 views

Exploit for Cross-site Scripting in Oretnom23 Banking_System

Description 1. CVE-2025-14221 2. Discoverer: Fatma Trabelsi 3...

5.4CVSS5.6AI score0.00208EPSS

Exploits2

RedhatCVE•added 2025/12/12 6:12 p.m.•4 views

CVE-2025-14530

A vulnerability has been found in SourceCodester Real Estate Property Listing App 1.0. The impacted element is an unknown function of the file /admin/property.php. Such manipulation of the argument image leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has...

7.2CVSS6.8AI score0.00384EPSS

Exploits1References1

NVD•added 2025/12/11 6:16 p.m.•10 views

CVE-2025-14530

7.2CVSS0.00384EPSS

Exploits1References5

OSV•added 2025/12/11 6:16 p.m.•2 views

CVE-2025-14530

7.2CVSS5.5AI score0.00384EPSS

Exploits1References5

Cvelist•added 2025/12/11 5:32 p.m.•45 views

CVE-2025-14530 SourceCodester Real Estate Property Listing App property.php unrestricted upload