CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/06/05 7:47 p.m.•11 views

CVE-2026-6007

A vulnerability was found in itsourcecode Construction Management System 1.0. This affects an unknown function of the file /del.php. The manipulation of the argument equipname results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

6.5CVSS6.4AI score0.00196EPSS

RedhatCVE•added 2026/06/05 7:39 p.m.•9 views

CVE-2026-7075

A vulnerability was found in itsourcecode Construction Management System 1.0. This issue affects some unknown processing of the file /locations.php. Performing a manipulation of the argument address results in sql injection. It is possible to initiate the attack remotely. The exploit has been mad...

7.5CVSS7AI score0.00254EPSS

RedhatCVE•added 2026/06/05 7:39 p.m.•6 views

CVE-2026-7074

A vulnerability has been found in itsourcecode Construction Management System 1.0. This vulnerability affects unknown code of the file /execute1.php. Such manipulation of the argument code leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the publi...

7.5CVSS6.9AI score0.00254EPSS

NVD•added 2026/04/27 2:16 a.m.•7 views

CVE-2026-7074

Vulnrichment•added 2026/04/27 1:30 a.m.•2 views

CVE-2026-7075 itsourcecode Construction Management System locations.php sql injection

Cvelist•added 2026/04/27 1:30 a.m.•34 views

CVE-2026-7075 itsourcecode Construction Management System locations.php sql injection

CVE•added 2026/04/27 1:30 a.m.•13 views

CVE-2026-7075

CVE-2026-7075 affects itsourcecode Construction Management System 1.0. The issue is a SQL injection in /locations.php caused by manipulation of the address parameter, exploitable remotely. Public exploit exist; no remediation details are provided in the supplied documents. Affected component: the...

7.5CVSS7.3AI score0.00254EPSS

NVD•added 2026/04/27 1:16 a.m.•6 views

CVE-2026-7073

A flaw has been found in itsourcecode Construction Management System 1.0. This affects an unknown part of the file /execute.php. This manipulation of the argument code causes sql injection. The attack is possible to be carried out remotely. The exploit has been published and may be used...

Cvelist•added 2026/04/27 1:15 a.m.•32 views

CVE-2026-7074 itsourcecode Construction Management System execute1.php sql injection

CVE•added 2026/04/27 1:15 a.m.•9 views

CVE-2026-7074

The CVE-2026-7074 entry concerns itsourcecode Construction Management System 1.0, with SQL injection in the file /execute1.php. The vulnerability arises from manipulation of an argument, enabling remote exploitation. Sources indicate the exploit is publicly disclosed and there is PoC-like activit...

EUVD•added 2026/04/27 1:15 a.m.•4 views

EUVD-2026-25751

ATTACKERKB•added 2026/04/27 1:15 a.m.•3 views

CVE-2026-7074

7.5CVSS7.1AI score0.00254EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2026/04/27 1:15 a.m.•2 views

CVE-2026-7074 itsourcecode Construction Management System execute1.php sql injection

ATTACKERKB•added 2026/04/27 1:0 a.m.•3 views

CVE-2026-7073

Exploits0References5Affected Software1

EUVD•added 2026/04/27 1:0 a.m.•4 views

EUVD-2026-25749

Cvelist•added 2026/04/27 1:0 a.m.•36 views

CVE-2026-7073 itsourcecode Construction Management System execute.php sql injection

Vulnrichment•added 2026/04/27 1:0 a.m.•4 views

CVE-2026-7073 itsourcecode Construction Management System execute.php sql injection

Positive Technologies•added 2026/04/27 12:0 a.m.•7 views

PT-2026-35336

7.5CVSS7.1AI score0.00254EPSS

Exploits0References6

CNNVD•added 2026/04/27 12:0 a.m.•7 views

itsourcecode Construction Management System 注入漏洞

itsourcecode Construction Management System is an open-source construction management system developed by itsourcecode. Version 1.0 of the itsourcecode Construction Management System has a vulnerability related to parameter handling in the file/execute.php, which may lead to SQL injection attacks...