Lucene search
K

9844 matches found

EUVD
EUVD
added 2026/06/29 9:30 a.m.6 views

EUVD-2026-40058

A vulnerability was found in itsourcecode Online Hotel Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/modusers/controller.php?action=add. The manipulation of the argument Name results in sql injection. The attack can be launched remotely. The exploi...

7.5CVSS6.9AI score0.00412EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/29 8:30 a.m.36 views

CVE-2026-13551 itsourcecode Baptism Information Management System editBaptism.php sql injection

A security vulnerability has been detected in itsourcecode Baptism Information Management System 1.0. This affects an unknown function of the file /editBaptism.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed...

7.5CVSS0.00263EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/29 8:30 a.m.7 views

EUVD-2026-40057

A security vulnerability has been detected in itsourcecode Baptism Information Management System 1.0. This affects an unknown function of the file /editBaptism.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed...

7.5CVSS6.8AI score0.00263EPSS
Exploits0References6
CVE
CVE
added 2026/06/29 8:15 a.m.15 views

CVE-2026-13550

The CVE-2026-13550 entry concerns itsourcecode Baptism Information Management System 1.0. A vulnerability in the file /delbaptism.php allows manipulation of the argument ID to trigger a SQL injection. The weakness can be exploited remotely, and public exploits are available. CVSS metrics indicate...

7.5CVSS7AI score0.00263EPSS
Exploits0References6
NVD
NVD
added 2026/06/29 6:16 a.m.10 views

CVE-2026-13535

A flaw has been found in CodeAstro Human Resource Management System 1.0. This vulnerability affects the function GetFileInfo of the file hrsystem/application/models/Employeemodel.php of the component View Endpoint. Executing a manipulation of the argument ID can lead to sql injection. The attack...

6.5CVSS0.00204EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/29 6:15 a.m.7 views

CVE-2026-13542

A security vulnerability has been detected in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /doctorprofile.php. The manipulation of the argument doctorname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2026/06/29 4:16 a.m.7 views

CVE-2026-13531

A security flaw has been discovered in itsourcecode Hospital Management System 1.0. Affected is an unknown function of the file /department.php. The manipulation of the argument editid results in sql injection. The attack may be performed from remote. The exploit has been released to the public a...

6.5CVSS0.002EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/29 3:15 a.m.37 views

CVE-2026-13530 itsourcecode Hospital Management System Appointment appointmentdetail.php sql injection

A vulnerability was identified in itsourcecode Hospital Management System 1.0. This impacts an unknown function of the file /appointmentdetail.php of the component Appointment Handler. The manipulation of the argument editid leads to sql injection. The attack is possible to be carried out remotel...

6.5CVSS0.002EPSS
Exploits0References6
CVE
CVE
added 2026/06/29 3:15 a.m.16 views

CVE-2026-13530

The vulnerability CVE-2026-13530 affects itsourcecode Hospital Management System 1.0, specifically the Appointment Handler component through the file /appointmentdetail.php. The issue arises from manipulating the argument editid, leading to an SQL injection. Evidence indicates the attack can be c...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/29 2:15 a.m.36 views

CVE-2026-13526 SourceCodester Class and Exam Timetabling System edit_class.php sql injection

A flaw has been found in SourceCodester Class and Exam Timetabling System 1.0. Impacted is an unknown function of the file /editclass.php. This manipulation of the argument ID causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

7.5CVSS0.00263EPSS
Exploits0References6
CVE
CVE
added 2026/06/29 1:0 a.m.16 views

CVE-2026-13521

The CVE concerns SourceCodester Class and Exam Timetabling System (1.0/5.php). The vulnerability is a SQL injection in an unknown function of /preview5.php, triggered by manipulating the course_year_section parameter. This is a network-accessible issue with a public exploit and PoC; impact is des...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6
CVE
CVE
added 2026/06/29 12:45 a.m.16 views

CVE-2026-13520

The CVE describes a SQL injection in itsourcecode Hospital Management System v1.0, affecting the file /appointmentapproval.php (component: Appointment Handler). The vulnerability is triggered by manipulating the editid parameter, enabling remote exploitation. Exploit evidence is indicated as publ...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6
CVE
CVE
added 2026/06/28 12:30 p.m.13 views

CVE-2026-13496

CVE-2026-13496 affects itsourcecode Hospital Management System 1.0. The vulnerability is a SQL injection in the /ajaxmedicine.php file, triggered by manipulating the medicineid parameter. This can be exploited remotely, and public exploit code exists. The exact vulnerable function within ajaxmedi...

6.5CVSS6.5AI score0.00204EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/28 10:30 a.m.10 views

CVE-2026-13488

A security flaw has been discovered in SourceCodester Class and Exam Timetabling System 1.0/7.php. Affected by this vulnerability is an unknown functionality of the file /preview7.php. The manipulation of the argument courseyearsection results in sql injection. The attack may be launched remotely...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/06/28 9:15 a.m.9 views

EUVD-2026-39985

A vulnerability was found in SourceCodester Class and Exam Timetabling System 1.0. This affects an unknown function of the file /preview.php. Performing a manipulation of the argument courseyearsection results in sql injection. The attack can be initiated remotely. The exploit has been made publi...

7.5CVSS6.9AI score0.00412EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/28 12:0 a.m.15 views

PT-2026-53099

Name of the Vulnerable Software and Affected Versions SourceCodester Class and Exam Timetabling System version 1.0 Description An SQL injection issue exists in the /preview6.php endpoint. A remote attacker can exploit this by manipulating the course year section variable, allowing for the executi...

7.5CVSS7.3AI score0.00412EPSS
Exploits0References12
Cvelist
Cvelist
added 2026/06/27 1:27 a.m.32 views

CVE-2026-13333 Groundhogg <= 4.5.5 - Authenticated (Sales Rep+) SQL Injection via 'query[select]' Parameter

The Groundhogg — CRM, Newsletters, and Marketing Automation plugin for WordPress is vulnerable to generic SQL Injection via 'queryselect' Parameter in all versions up to, and including, 4.5.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...

6.5CVSS0.00344EPSS
Exploits0References6
NVD
NVD
added 2026/06/26 8:17 p.m.7 views

CVE-2026-52785

OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, there is a SQL injection in timestamps functionality. OpenProject baseline comparison allows callers to request historic work-package attributes using the timestamps parameter. This vulnerability is fix...

9.9CVSS0.00221EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/26 2:53 p.m.7 views

CVE-2026-57663

Contributor SQL Injection in Recipe Maker For Your Food Blog from Zip Recipes = 8.2.7 versions...

8.5CVSS5.8AI score0.00211EPSS
Exploits0References2
CVE
CVE
added 2026/06/26 2:53 p.m.15 views

CVE-2026-57663

CVE-2026-57663 describes a SQL Injection vulnerability in the WordPress plugin Zip Recipes (Recipe Maker For Your Food Blog) versions

8.5CVSS5.8AI score0.00211EPSS
Exploits0References1
Rows per page
Query Builder