Lucene search
K

573 matches found

NVD
NVD
added 6 days ago6 views

CVE-2026-13558

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. This issue affects some unknown processing of the file /report/addreport of the component Report Handler. Performing a manipulation of the argument Report Title results in cross site scripting. Remote exploitation o...

5.1CVSS0.00328EPSS
Exploits0References6
EUVD
EUVD
added 6 days ago6 views

EUVD-2026-40067

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. This issue affects some unknown processing of the file /report/addreport of the component Report Handler. Performing a manipulation of the argument Report Title results in cross site scripting. Remote exploitation o...

5.1CVSS4.5AI score0.00328EPSS
Exploits0References6
Cvelist
Cvelist
added 6 days ago32 views

CVE-2026-13558 CodeAstro Complaint Management System Report addreport cross site scripting

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. This issue affects some unknown processing of the file /report/addreport of the component Report Handler. Performing a manipulation of the argument Report Title results in cross site scripting. Remote exploitation o...

5.1CVSS0.00328EPSS
Exploits0References6
CVE
CVE
added 6 days ago9 views

CVE-2026-13558

CVE-2026-13558 concerns CodeAstro Complaint Management System 1.0. The flaw is in the Report Handler’s /report/addreport flow, where manipulating the Report Title argument enables cross-site scripting (XSS). Exploitation is possible remotely and the exploit has been publicly released. The availab...

5.1CVSS4.5AI score0.00328EPSS
Exploits0References6
NVD
NVD
added 6 days ago10 views

CVE-2026-13549

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected element is the function deletereport of the file application/controllers/Report.php of the component Report Endpoint. The manipulation results in authorization bypass. The attack can be executed remotel...

6.4CVSS0.00293EPSS
Exploits0References6
EUVD
EUVD
added 6 days ago6 views

EUVD-2026-40051

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected element is the function deletereport of the file application/controllers/Report.php of the component Report Endpoint. The manipulation results in authorization bypass. The attack can be executed remotel...

6.4CVSS5.8AI score0.00293EPSS
Exploits0References6
Cvelist
Cvelist
added 6 days ago35 views

CVE-2026-13549 CodeAstro Complaint Management System Report Endpoint Report.php deletereport authorization

A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected element is the function deletereport of the file application/controllers/Report.php of the component Report Endpoint. The manipulation results in authorization bypass. The attack can be executed remotel...

6.4CVSS0.00293EPSS
Exploits0References6
CVE
CVE
added 6 days ago13 views

CVE-2026-13549

CodeAstro Complaint Management System 1.0 has a vulnerability in the Report Endpoint, specifically the deletereport function in application/controllers/Report.php. The manipulation of this function results in authorization bypass and can be exploited remotely; evidence indicates the exploit is pu...

6.4CVSS5.8AI score0.00293EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/05 7:50 p.m.10 views

CVE-2026-7222

A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...

5.1CVSS3.9AI score0.00232EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2026/04/29 12:0 a.m.71 views

📄 Coaching Management System 1.0 Cross Site Scripting

Coaching Management System version 1.0 suffers from a persistent cross site scripting vulnerability. Stored Cross-Site Scripting XSS in Coaching Management System Leads to Account Takeover --- Product Coaching Management System in PHP Code-Projects.org...

5.1CVSS4.3AI score0.00232EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2026/04/28 5:30 a.m.5 views

CVE-2026-7229 code-projects Coaching Management System POST reply.php sql injection

A vulnerability was found in code-projects Coaching Management System 1.0. This affects an unknown function of the file /cims/modules/admin/reply.php of the component POST Handler. Performing a manipulation of the argument complaintreply results in sql injection. It is possible to initiate the...

6.5CVSS6.4AI score0.00233EPSS
Exploits0References5
NVD
NVD
added 2026/04/28 4:16 a.m.5 views

CVE-2026-7222

A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...

5.1CVSS0.00232EPSS
Exploits1References5
EUVD
EUVD
added 2026/04/28 3:45 a.m.5 views

EUVD-2026-25979

A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...

5.1CVSS3.6AI score0.00232EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/04/28 3:45 a.m.29 views

CVE-2026-7222 code-projects Coaching Management System Complaint Form complaint.php cross site scripting

A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...

5.1CVSS0.00232EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/28 3:45 a.m.5 views

CVE-2026-7222

A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...

5.1CVSS3.9AI score0.00232EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2026/04/28 3:45 a.m.11 views

CVE-2026-7222

The CVE-2026-7222 entry affects code-projects Coaching Management System 1.0, specifically the Complaint Form Page component at /cims/modules/student/complaint.php. The issue is a cross-site scripting vulnerability caused by manipulation of the Complaint argument, allowing remote exploitation. Pu...

5.1CVSS3.9AI score0.00232EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/04/28 12:0 a.m.6 views

PT-2026-35669

A vulnerability was found in code-projects Coaching Management System 1.0. This affects an unknown function of the file /cims/modules/admin/reply.php of the component POST Handler. Performing a manipulation of the argument complaintreply results in sql injection. It is possible to initiate the...

6.5CVSS6.5AI score0.00233EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/28 12:0 a.m.10 views

Code-Projects Coaching Management System 跨站脚本漏洞

The Code-Projects Coaching Management System is an open-source coaching management system developed by Code-Projects. Version 1.0 of the Code-Projects Coaching Management System contains a cross-site scripting vulnerability. This vulnerability stems from the Complaint Parameter in the Complaint...

5.1CVSS5.7AI score0.00232EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/28 12:0 a.m.6 views

PT-2026-35654

A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the component Complaint Form Page. This manipulation of the argument Complaint causes cross site scripting...

5.1CVSS3.7AI score0.00232EPSS
Exploits1References8
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.7 views

Code-Projects Online FIR System 安全漏洞

Code-Projects Online FIR System is an open-source online FIR system developed by Code-Projects. Version 1.0 of the code-projects Online FIR System contains a security vulnerability. This vulnerability stems from the unsafe storage of the/complaints.sql file in the SQL database backup processing...

6.9CVSS6.1AI score0.00302EPSS
Exploits0References5
Rows per page
Query Builder