Lucene search
K

435 matches found

nvd
nvd
added 2026/03/08 6:16 a.m.6 views

CVE-2026-3710

A security vulnerability has been detected in code-projects Simple Flight Ticket Booking System 1.0. This impacts an unknown function of the file /Adminadd.php. The manipulation of the argument flightno/airplaneid/departure/dtime/arrival/atime/ec/ep/bc/bp leads to sql injection. Remote exploitati...

7.2CVSS0.00271EPSS
Exploits1References6
attackerkb
attackerkb
added 2026/03/08 5:32 a.m.4 views

CVE-2026-3710

A security vulnerability has been detected in code-projects Simple Flight Ticket Booking System 1.0. This impacts an unknown function of the file /Adminadd.php. The manipulation of the argument flightno/airplaneid/departure/dtime/arrival/atime/ec/ep/bc/bp leads to sql injection. Remote exploitati...

5.8CVSS5.7AI score0.00271EPSS
Exploits1References6Affected Software1
cnnvd
cnnvd
added 2026/03/08 12:0 a.m.6 views

Code-Projects Simple Flight Ticket Booking System SQL注入漏洞

Code-Projects Simple Flight Ticket Booking System is a simple airline ticket booking system developed by Code-Projects. Version 1.0 of the Code-Projects Simple Flight Ticket Booking System has a SQL injection vulnerability. This vulnerability arises from incorrect operations with parameters such ...

7.2CVSS5.9AI score0.00271EPSS
Exploits1References7
ptsecurity
ptsecurity
added 2026/03/08 12:0 a.m.12 views

PT-2026-23919

A security vulnerability has been detected in code-projects Simple Flight Ticket Booking System 1.0. This impacts an unknown function of the file /Adminadd.php. The manipulation of the argument flightno/airplaneid/departure/dtime/arrival/atime/ec/ep/bc/bp leads to sql injection. Remote exploitati...

5.8CVSS5.7AI score0.00271EPSS
Exploits1References7
attackerkb
attackerkb
added 2026/02/25 12:2 a.m.5 views

CVE-2026-3135

A weakness has been identified in itsourcecode News Portal Project 1.0. The impacted element is an unknown function of the file /admin/add-category.php. This manipulation of the argument Category causes sql injection. It is possible to initiate the attack remotely. The exploit has been made...

9.8CVSS5.4AI score0.00333EPSS
Exploits1References5Affected Software1
cvelist
cvelist
added 2026/02/25 12:2 a.m.24 views

CVE-2026-3135 itsourcecode News Portal Project add-category.php sql injection

A weakness has been identified in itsourcecode News Portal Project 1.0. The impacted element is an unknown function of the file /admin/add-category.php. This manipulation of the argument Category causes sql injection. It is possible to initiate the attack remotely. The exploit has been made...

7.5CVSS0.00333EPSS
Exploits1References5
cnnvd
cnnvd
added 2026/02/25 12:0 a.m.9 views

itsourcecode News Portal Project SQL注入漏洞

itsourcecode News Portal Project is an open-source news portal project developed by itsourcecode. Version 1.0 of the itsourcecode News Portal Project contains a SQL injection vulnerability. This vulnerability arises from incorrect handling of the Category parameter in the admin/add-category.php...

9.8CVSS7.2AI score0.00333EPSS
Exploits1References5
osv
osv
added 2026/02/16 12:25 p.m.7 views

CVE-2025-14573 Team Admin Bypass of Invite Permissions via allow_open_invite Field

Mattermost versions 10.11.x = 10.11.9 fail to enforce invite permissions when updating team settings, which allows team administrators without proper permissions to bypass restrictions and add users to their team via API requests. Mattermost Advisory ID: MMSA-2025-00561...

3.8CVSS6AI score0.00157EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/02/10 7:33 a.m.6 views

CVE-2026-2214

A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the file /Administrator/PHP/AdminAddAlbum.php. This manipulation of the argument txtalbum causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made availabl...

4.8CVSS4AI score0.00196EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/02/10 7:33 a.m.7 views

CVE-2026-2213

A security flaw has been discovered in code-projects Online Music Site 1.0. Affected by this issue is some unknown functionality of the file /Administrator/PHP/AdminAddAlbum.php. The manipulation of the argument txtimage results in unrestricted upload. The attack may be performed from remote. The...

7.2CVSS5.2AI score0.00283EPSS
Exploits1References1
nvd
nvd
added 2026/02/09 5:16 a.m.15 views

CVE-2026-2213

A security flaw has been discovered in code-projects Online Music Site 1.0. Affected by this issue is some unknown functionality of the file /Administrator/PHP/AdminAddAlbum.php. The manipulation of the argument txtimage results in unrestricted upload. The attack may be performed from remote. The...

7.2CVSS0.00283EPSS
Exploits1References5
nvd
nvd
added 2026/02/09 5:16 a.m.8 views

CVE-2026-2214

A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the file /Administrator/PHP/AdminAddAlbum.php. This manipulation of the argument txtalbum causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made availabl...

4.8CVSS0.00196EPSS
Exploits1References5
osv
osv
added 2026/02/09 5:16 a.m.3 views

CVE-2026-2214

A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the file /Administrator/PHP/AdminAddAlbum.php. This manipulation of the argument txtalbum causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made availabl...

4.8CVSS4.3AI score0.00196EPSS
Exploits1References5
osv
osv
added 2026/02/09 5:16 a.m.5 views

CVE-2026-2213

A security flaw has been discovered in code-projects Online Music Site 1.0. Affected by this issue is some unknown functionality of the file /Administrator/PHP/AdminAddAlbum.php. The manipulation of the argument txtimage results in unrestricted upload. The attack may be performed from remote. The...

7.2CVSS5.5AI score0.00283EPSS
Exploits1References5
vulnrichment
vulnrichment
added 2026/02/09 4:2 a.m.4 views

CVE-2026-2214 code-projects for Plugin AdminAddAlbum.php cross site scripting

A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the file /Administrator/PHP/AdminAddAlbum.php. This manipulation of the argument txtalbum causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made availabl...

4.8CVSS4AI score0.00196EPSS
Exploits1References5
attackerkb
attackerkb
added 2026/02/09 4:2 a.m.5 views

CVE-2026-2214

A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the file /Administrator/PHP/AdminAddAlbum.php. This manipulation of the argument txtalbum causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made availabl...

4.8CVSS3.6AI score0.00196EPSS
Exploits1References5Affected Software1
cve
cve
added 2026/02/09 4:2 a.m.15 views

CVE-2026-2214

CVE-2026-2214 affects code-projects for Plugin 1.0, with the weakness located in an unknown part of /Administrator/PHP/AdminAddAlbum.php. The issue arises from manipulating the txtalbum argument, enabling a cross-site scripting (XSS) flaw that can be triggered remotely. Multiple connected sources...

4.8CVSS3.6AI score0.00196EPSS
Exploits1References5Affected Software1
vulnrichment
vulnrichment
added 2026/02/09 3:32 a.m.5 views

CVE-2026-2213 code-projects Online Music Site AdminAddAlbum.php unrestricted upload

A security flaw has been discovered in code-projects Online Music Site 1.0. Affected by this issue is some unknown functionality of the file /Administrator/PHP/AdminAddAlbum.php. The manipulation of the argument txtimage results in unrestricted upload. The attack may be performed from remote. The...

5.8CVSS5.2AI score0.00283EPSS
Exploits1References5
cve
cve
added 2026/02/09 3:32 a.m.32 views

CVE-2026-2213

The CVE-2026-2213 entry concerns code-projects Online Music Site 1.0 with an unrestricted upload vulnerability in /Administrator/PHP/AdminAddAlbum.php. The issue stems from manipulating the txtimage argument, enabling remote attackers to upload files without restriction. Multiple connected source...

7.2CVSS5AI score0.00283EPSS
Exploits1References5Affected Software1
cnnvd
cnnvd
added 2026/02/09 12:0 a.m.9 views

Code-Projects Online Music Site 代码问题漏洞

Code-Projects Online Music Site is an online music website developed by Code-Projects as open source. Version 1.0 of Code-Projects Online Music Site has code-related vulnerabilities. These vulnerabilities stem from incorrect handling of the txtimage parameter in the...

7.2CVSS5.9AI score0.00283EPSS
Exploits1References6
Rows per page
Query Builder