Lucene search
K

63 matches found

Cvelist
Cvelist
added 2026/04/06 1:45 p.m.29 views

CVE-2026-5660 itsourcecode Construction Management System Parameter borrowed_equip.php sql injection

A vulnerability was determined in itsourcecode Construction Management System 1.0. The impacted element is an unknown function of the file /borrowedequip.php of the component Parameter Handler. This manipulation of the argument emp causes sql injection. The attack may be initiated remotely. The...

6.5CVSS0.00192EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/06 1:45 p.m.2 views

CVE-2026-5660 itsourcecode Construction Management System Parameter borrowed_equip.php sql injection

A vulnerability was determined in itsourcecode Construction Management System 1.0. The impacted element is an unknown function of the file /borrowedequip.php of the component Parameter Handler. This manipulation of the argument emp causes sql injection. The attack may be initiated remotely. The...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References5
CVE
CVE
added 2026/04/06 1:45 p.m.5 views

CVE-2026-5660

CVE-2026-5660 affects itsourcecode Construction Management System 1.0. The vulnerability is an SQL injection in the Parameter Handler’s unknown function for the file /borrowed_equip.php, triggered by manipulating the emp argument. This may be exploited remotely, with exploit maturity listed as PR...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/06 6:30 a.m.4 views

EUVD-2026-19168

A vulnerability has been found in itsourcecode Construction Management System 1.0. Affected is an unknown function of the file /borrowedequipreport.php of the component Parameter Handler. The manipulation of the argument Home leads to sql injection. It is possible to initiate the attack remotely...

6.5CVSS5.7AI score0.00204EPSS
Exploits0References7
NVD
NVD
added 2026/04/06 5:16 a.m.4 views

CVE-2026-5620

A vulnerability has been found in itsourcecode Construction Management System 1.0. Affected is an unknown function of the file /borrowedequipreport.php of the component Parameter Handler. The manipulation of the argument Home leads to sql injection. It is possible to initiate the attack remotely...

6.5CVSS0.00204EPSS
Exploits0References6
CVE
CVE
added 2026/04/06 4:0 a.m.9 views

CVE-2026-5620

CVE-2026-5620 affects itsourcecode Construction Management System 1.0. The vulnerable element is an unknown function in the file /borrowed_equip_report.php within the Parameter Handler component. Manipulating the argument Home leads to a SQL injection . It can be exploited remotely, and the explo...

6.5CVSS6.5AI score0.00204EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/04/06 4:0 a.m.3 views

CVE-2026-5620

A vulnerability has been found in itsourcecode Construction Management System 1.0. Affected is an unknown function of the file /borrowedequipreport.php of the component Parameter Handler. The manipulation of the argument Home leads to sql injection. It is possible to initiate the attack remotely...

6.5CVSS6.5AI score0.00204EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/06 4:0 a.m.2 views

CVE-2026-5620 itsourcecode Construction Management System Parameter borrowed_equip_report.php sql injection

A vulnerability has been found in itsourcecode Construction Management System 1.0. Affected is an unknown function of the file /borrowedequipreport.php of the component Parameter Handler. The manipulation of the argument Home leads to sql injection. It is possible to initiate the attack remotely...

6.5CVSS6.5AI score0.00204EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.7 views

itsourcecode Construction Management System SQL注入漏洞

itsourcecode Construction Management System is an open-source construction management system developed by itsourcecode. Version 1.0 of the itsourcecode Construction Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of parameters in the file...

6.5CVSS6.6AI score0.00192EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.7 views

itsourcecode Construction Management System SQL注入漏洞

itsourcecode Construction Management System is an open-source construction management system developed by itsourcecode. Version 1.0 of the itsourcecode Construction Management System has a SQL injection vulnerability. This vulnerability arises from improper handling of the parameter “Home” in the...

6.5CVSS6.6AI score0.00204EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.12 views

PT-2026-30696

A vulnerability was found in itsourcecode Construction Management System 1.0. This affects an unknown part of the file /borrowed tool.php of the component Parameter Handler. The manipulation of the argument emp results in sql injection. It is possible to launch the attack remotely. The exploit ha...

6.5CVSS6.4AI score0.00192EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.4 views

PT-2026-30604

A vulnerability was determined in itsourcecode Construction Management System 1.0. The impacted element is an unknown function of the file /borrowed equip.php of the component Parameter Handler. This manipulation of the argument emp causes sql injection. The attack may be initiated remotely. The...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.8 views

PT-2026-30717

A flaw has been found in itsourcecode sanitize or validate this input 1.0. This impacts an unknown function of the file /borrowedequip.php of the component Parameter Handler. This manipulation of the argument emp id causes sql injection. The attack is possible to be carried out remotely. The...

6.5CVSS6.4AI score0.00192EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/11/18 12:10 p.m.5 views

CVE-2025-13278

A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /borrowedbooksearch.php. Such manipulation of the argument datefrom/dateto leads to sql injection. The attack can be launched remotely. The exploit has been disclose...

8.8CVSS6.4AI score0.00313EPSS
Exploits1References1
OSV
OSV
added 2025/11/17 1:15 p.m.4 views

CVE-2025-13278

A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /borrowedbooksearch.php. Such manipulation of the argument datefrom/dateto leads to sql injection. The attack can be launched remotely. The exploit has been disclose...

8.8CVSS5.8AI score0.00313EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/11/17 12:2 p.m.11 views

CVE-2025-13278 projectworlds Advanced Library Management System borrowed_book_search.php sql injection

A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /borrowedbooksearch.php. Such manipulation of the argument datefrom/dateto leads to sql injection. The attack can be launched remotely. The exploit has been disclose...

6.5CVSS0.00313EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/11/17 12:2 p.m.5 views

CVE-2025-13278 projectworlds Advanced Library Management System borrowed_book_search.php sql injection

A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /borrowedbooksearch.php. Such manipulation of the argument datefrom/dateto leads to sql injection. The attack can be launched remotely. The exploit has been disclose...

6.5CVSS6.8AI score0.00313EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.8 views

Projectworlds Advanced Library Management System SQL注入漏洞

Projectworlds Advanced Library Management System is an advanced library management system from Projectworlds India. A SQL injection vulnerability exists in projectworlds Advanced Library Management System version 1.0, which stems from incorrect manipulation of the parameter datefrom/dateto in the...

8.8CVSS7AI score0.00313EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.7 views

PT-2025-47143

Name of the Vulnerable Software and Affected Versions projectworlds Advanced Library Management System version 1.0 Description A SQL injection issue exists in projectworlds Advanced Library Management System version 1.0. The issue is located in the /borrowed book search.php file, within an unknow...

6.5CVSS7.6AI score0.00313EPSS
Exploits1References8
SUSE CVE
SUSE CVE
added 2025/09/17 11:28 p.m.4 views

SUSE CVE-2023-53336

In the Linux kernel, the following vulnerability has been resolved: media: ipu-bridge: Fix null pointer deref on SSDB/PLD parsing warnings When ipubridgeparserotation and ipubridgeparseorientation run sensor-adev is not set yet. So if either of the devwarn calls about unknown values are hit this...

5.5CVSS6.4AI score0.00187EPSS
Exploits0References15
Rows per page
Query Builder