CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/03/02 12:0 a.m.•2 views

Code-Projects Simple Student Alumni System 安全漏洞

Code-Projects Simple Student Alumni System is an open-source student alumni system developed by Code-Projects. Version 1.0 of the code-projects Simple Student Alumni System contains a security vulnerability, which stems from an SQL injection vulnerability in the /TracerStudy/recordteacher edit.ph...

9.8CVSS5.9AI score0.00049EPSS

Cvelist•added 2026/03/02 12:0 a.m.•22 views

CVE-2026-26697

code-projects Simple Student Alumni System v1.0 is vulnerable to SQL Injection in /TracerStudy/recordteacherview.php?teacherID=...

0.00038EPSS

CNNVD•added 2026/03/02 12:0 a.m.•2 views

Code-Projects Simple Student Alumni System 安全漏洞

Code-Projects Simple Student Alumni System is an open-source student alumni system developed by Code-Projects. Version 1.0 of the Code-Projects Simple Student Alumni System has a security vulnerability, which stems from an SQL injection vulnerability in the /TracerStudy/recordstudent edit.php fil...

9.8CVSS5.8AI score0.00049EPSS

EUVD•added 2026/03/02 12:0 a.m.•1 views

EUVD-2026-9189

code-projects Simple Student Alumni System code-projects v1.0 is vulnerable to SQL Injection in /TracerStudy/recordstudentedit.php...

6AI score0.00049EPSS

CNNVD•added 2026/03/02 12:0 a.m.•2 views

Code-Projects Simple Gym Management System 安全漏洞

Code-Projects Simple Gym Management System is an open-source gym management system developed by Code-Projects. Version 1.0 of the Code-Projects Simple Gym Management System contains a security vulnerability, which stems from an SQL injection vulnerability in the file /gym/trainersearch.php...

9.8CVSS5.8AI score0.00049EPSS

Vulnrichment•added 2026/02/22 3:32 a.m.•3 views

CVE-2026-2912 code-projects Online Reviewer System studentresult-view.php sql injection

A vulnerability was found in code-projects Online Reviewer System 1.0. Impacted is an unknown function of the file /system/system/students/assessments/results/studentresult-view.php. The manipulation of the argument testid results in sql injection. It is possible to launch the attack remotely. Th...

7.5CVSS7.2AI score0.00037EPSS

CVE•added 2026/02/22 3:32 a.m.•8 views

CVE-2026-2912

CVE-2026-2912 affects code-projects Online Reviewer System v1.0. The vulnerability is in /system/system/students/assessments/results/studentresult-view.php, where manipulating the test_id argument triggers SQL injection. Exploitation is remote, and public exploitation has been reported. Multiple ...

9.8CVSS7.2AI score0.00037EPSS

Exploits1References5Affected Software1

Cvelist•added 2026/02/22 3:32 a.m.•23 views

CVE-2026-2912 code-projects Online Reviewer System studentresult-view.php sql injection

7.5CVSS0.00037EPSS

RedhatCVE•added 2026/02/20 7:22 a.m.•4 views

CVE-2026-2706

A flaw has been found in code-projects Patient Record Management System 1.0. This affects an unknown function of the file /fecalysisnot.php. This manipulation of the argument compid causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used...

7.5CVSS5.5AI score0.00012EPSS

Vulnrichment•added 2026/02/19 6:2 a.m.•3 views

CVE-2026-2706 code-projects Patient Record Management System fecalysis_not.php sql injection

6.5CVSS5.4AI score0.00012EPSS

Cvelist•added 2026/02/19 6:2 a.m.•31 views

CVE-2026-2706 code-projects Patient Record Management System fecalysis_not.php sql injection

6.5CVSS0.00012EPSS

CNNVD•added 2026/02/19 12:0 a.m.•3 views

Code-Projects Patient Record Management System 安全漏洞

The Code-Projects Patient Record Management System is an open-source medical record management system developed by Code-Projects. Version 1.0 of the Code-Projects Patient Record Management System contains a security vulnerability. This vulnerability stems from incorrect handling of the compid...

7.5CVSS6.7AI score0.00012EPSS

Vulnrichment•added 2026/02/18 12:0 a.m.•2 views

CVE-2025-70152

code-projects Community Project Scholars Tracking System 1.0 is vulnerable to SQL Injection in the admin user management endpoints /admin/saveuser.php and /admin/updateuser.php. These endpoints lack authentication checks and directly concatenate user-supplied POST parameters firstname, lastname,...

9.8CVSS6AI score0.00161EPSS

RedhatCVE•added 2026/02/10 1:23 p.m.•5 views

CVE-2026-2224

A vulnerability was detected in code-projects Online Reviewer System 1.0. This affects an unknown part of the file /system/system/admins/manage/users/btnfunctions.php. The manipulation of the argument firstname results in cross site scripting. It is possible to launch the attack remotely. The...

5.4CVSS4AI score0.00034EPSS

RedhatCVE•added 2026/02/10 7:33 a.m.•4 views

CVE-2026-2214

A weakness has been identified in code-projects for Plugin 1.0. This affects an unknown part of the file /Administrator/PHP/AdminAddAlbum.php. This manipulation of the argument txtalbum causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been made availabl...

4.8CVSS4AI score0.0004EPSS

RedhatCVE•added 2026/02/10 1:23 a.m.•4 views

CVE-2026-2199

A security flaw has been discovered in code-projects Online Reviewer System 1.0. The impacted element is an unknown function of the file /reviewer/system/system/admins/manage/users/user-delete.php. Performing a manipulation of the argument ID results in sql injection. The attack can be initiated...

9.8CVSS5.5AI score0.00037EPSS