Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

397 matches found

RedhatCVE
RedhatCVEadded last week8 views

CVE-2026-9470

A security vulnerability has been detected in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This affects the function confirmloggedin of the file studenttrans.php. Such manipulation of the argument FIRSTNAME/LastName/EMAIL leads to sql injection. It is possibl...

7.5CVSS6.9AI score0.00039EPSS
Exploits0References1
NVD
NVDadded 2026/05/25 5:16 p.m.5 views

CVE-2026-9474

A vulnerability was found in yashpokharna2555 StudentManagementSystem up to cb2f558ddf8d19396de0f92abf2d224d46a0a203. Affected by this issue is the function confirmloggedin of the file /studentdel.php. The manipulation of the argument ID results in sql injection. The attack may be launched...

7.5CVSS0.00039EPSS
Exploits0References5
EUVD
EUVDadded 2026/05/25 4:30 p.m.7 views

EUVD-2026-31707

A vulnerability was found in yashpokharna2555 StudentManagementSystem up to cb2f558ddf8d19396de0f92abf2d224d46a0a203. Affected by this issue is the function confirmloggedin of the file /studentdel.php. The manipulation of the argument ID results in sql injection. The attack may be launched...

7.5CVSS6.8AI score0.00039EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/05/25 4:30 p.m.16 views

CVE-2026-9474 yashpokharna2555 StudentManagementSystem studentdel.php confirm_logged_in sql injection

A vulnerability was found in yashpokharna2555 StudentManagementSystem up to cb2f558ddf8d19396de0f92abf2d224d46a0a203. Affected by this issue is the function confirmloggedin of the file /studentdel.php. The manipulation of the argument ID results in sql injection. The attack may be launched...

7.5CVSS0.00039EPSS
Exploits0References5
CVE
CVEadded 2026/05/25 4:30 p.m.10 views

CVE-2026-9474

The CVE-2026-9474 entry concerns yashpokharna2555’s StudentManagementSystem. It states that the function confirm_logged_in in /studentdel.php is vulnerable to SQL injection via a manipulated ID parameter, with remote launch possible and a public exploit. Affected versions are not clearly specifie...

7.5CVSS6.8AI score0.00039EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/05/25 3:30 p.m.2 views

CVE-2026-9470 yashpokharna2555 StudentManagementSystem student_trans.php confirm_logged_in sql injection

A security vulnerability has been detected in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This affects the function confirmloggedin of the file studenttrans.php. Such manipulation of the argument FIRSTNAME/LastName/EMAIL leads to sql injection. It is possibl...

7.5CVSS6.9AI score0.00039EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/25 3:30 p.m.5 views

CVE-2026-9470

A security vulnerability has been detected in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This affects the function confirmloggedin of the file studenttrans.php. Such manipulation of the argument FIRSTNAME/LastName/EMAIL leads to sql injection. It is possibl...

7.5CVSS5.7AI score0.00039EPSS
Exploits0References5
CVE
CVEadded 2026/05/25 3:30 p.m.11 views

CVE-2026-9470

The CVE-2026-9470 entry concerns the yashpokharna2555 StudentManagementSystem. A SQL injection vulnerability affects the file student_trans.php, in the function confirm_logged_in, resulting from manipulation of the FIRST_NAME/Last_Name/EMAIL arguments. Attacks can be launched remotely. Public dis...

7.5CVSS6.9AI score0.00039EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/25 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-39833

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The in-memory keyring returned by NewKeyring silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any...

9.1CVSS5.8AI score0.00042EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/05/25 12:0 a.m.4 views

PT-2026-43089

A vulnerability was found in yashpokharna2555 StudentManagementSystem up to cb2f558ddf8d19396de0f92abf2d224d46a0a203. Affected by this issue is the function confirm logged in of the file /studentdel.php. The manipulation of the argument ID results in sql injection. The attack may be launched...

7.5CVSS6.8AI score0.00039EPSS
Exploits0References5
CNNVD
CNNVDadded 2026/05/25 12:0 a.m.4 views

SB Admin SQL注入漏洞

SB Admin is a Bootstrap based open source admin backend template by Yash Pokharna individual developer. SB Admin has a SQL injection vulnerability that originates from the parameter FIRSTNAME/LastName/EMAIL operation of the function confirmloggedin in the file studenttrans.php, which could lead t...

7.5CVSS7.2AI score0.00039EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 2026/05/23 1:29 a.m.8 views

SUSE CVE-2026-39833

The in-memory keyring returned by NewKeyring silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring now returns an error when...

7.7CVSS5.8AI score0.00042EPSS
Exploits0References3
Snyk
Snykadded 2026/05/22 5:32 a.m.3 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization due to the NewKeyring function not enforcing the ConfirmBeforeUse constraint. An attacker can perform unauthorized signing operations by adding keys with constraints that are silently ignored. Remediation Upgrade...

9.1CVSS5.8AI score0.00042EPSS
Exploits0References2
NVD
NVDadded 2026/05/22 4:16 a.m.7 views

CVE-2026-39833

The in-memory keyring returned by NewKeyring silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring now returns an error when...

9.1CVSS0.00042EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/22 2:31 a.m.3 views

CVE-2026-39833

The in-memory keyring returned by NewKeyring silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring now returns an error when...

5.8AI score0.00042EPSS
Exploits0References6
EUVD
EUVDadded 2026/05/22 2:31 a.m.2 views

EUVD-2026-31389

The in-memory keyring returned by NewKeyring silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring now returns an error when...

9.1CVSS5.8AI score0.00042EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/05/22 2:31 a.m.30 views

CVE-2026-39833 Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent

The in-memory keyring returned by NewKeyring silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring now returns an error when...

0.00042EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/05/22 2:31 a.m.1 views

CVE-2026-39833 Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent

The in-memory keyring returned by NewKeyring silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring now returns an error when...

5.8AI score0.00042EPSS
Exploits0References5
CVE
CVEadded 2026/05/22 2:31 a.m.6 views

CVE-2026-39833

The CVE-2026-39833 issue affects the in-memory keyring used by golang.org/x/crypto/ssh/agent. The ConfirmBeforeUse constraint was silently accepted but not enforced by NewKeyring(), allowing keys to sign without a required confirmation prompt and without notifying the caller. The patch fixes this...

9.1CVSS5.8AI score0.00042EPSS
Exploits0References5Affected Software1
OSV
OSVadded 2026/05/22 2:8 a.m.1 views

GO-2026-5005 Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent

The in-memory keyring returned by NewKeyring silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring now returns an error when...

9.1CVSS5.8AI score0.00042EPSS
Exploits0References4
Rows per page
Query Builder