CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9679 matches found

CVE•added 2026/06/01 1:30 p.m.•11 views

CVE-2026-10261

CVE-2026-10261 affects CodeAstro Online Job Portal 1.0. A flaw in /users/application_status.php allows manipulation of the ID argument to cause SQL injection. This can be exploited remotely; exploitation details have been published.

7.5CVSS6.9AI score0.00263EPSS

Exploits0References6

NVD•added 2026/06/01 1:16 p.m.•11 views

CVE-2026-10257

A security flaw has been discovered in itsourcecode Content Management System 1.0. This issue affects some unknown processing of the file /admin/updatessimg.php. The manipulation of the argument topicid results in sql injection. The attack can be executed remotely. The exploit has been released t...

6.5CVSS0.00319EPSS

Exploits0References6

NVD•added 2026/06/01 1:16 p.m.•10 views

CVE-2026-10258

A weakness has been identified in itsourcecode Content Management System 1.0. Impacted is an unknown function of the file /admin/addsubtopic.php. This manipulation of the argument topicid causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available ...

6.5CVSS0.00319EPSS

Exploits0References6

NVD•added 2026/06/01 1:16 p.m.•11 views

CVE-2026-10252

A security vulnerability has been detected in itsourcecode Online House Rental System 1.0. This affects an unknown function of the file /managetenant.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

7.5CVSS0.00263EPSS

Exploits0References6

EUVD•added 2026/06/01 1:15 p.m.•11 views

EUVD-2026-33639

A vulnerability was detected in CodeAstro Online Job Portal 1.0. The impacted element is an unknown function of the file /admin/jobs-admins/delete-jobs.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit is now...

7.5CVSS7AI score0.00263EPSS

Exploits0References6

Vulnrichment•added 2026/06/01 12:30 p.m.•9 views

CVE-2026-10257 itsourcecode Content Management System update_ss_img.php sql injection

6.5CVSS6.5AI score0.00319EPSS

Exploits0References6

Vulnrichment•added 2026/06/01 11:30 a.m.•8 views

CVE-2026-10253 itsourcecode Online House Rental System manage_payment.php sql injection

A vulnerability was detected in itsourcecode Online House Rental System 1.0. This impacts an unknown function of the file /managepayment.php. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used...

7.5CVSS5.7AI score0.00263EPSS

Exploits0References6

ATTACKERKB•added 2026/06/01 11:30 a.m.•5 views

CVE-2026-10253

7.5CVSS7AI score0.00263EPSS

Exploits0References6Affected Software1

NVD•added 2026/06/01 11:16 a.m.•11 views

CVE-2026-10249

A vulnerability was identified in itsourcecode Online Blood Bank Management System 1.0. Impacted is an unknown function of the file /admin/viewrequest.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might...

7.5CVSS0.00269EPSS

Exploits0References6

CVE•added 2026/06/01 11:15 a.m.•12 views

CVE-2026-10252

The CVE-2026-10252 entry concerns itsourcecode Online House Rental System 1.0. A vulnerability exists in an unknown function of /manage_tenant.php where manipulation of the ID parameter leads to SQL injection. Attacks can be initiated remotely, and the exploit has been publicly disclosed and may ...

7.5CVSS6.9AI score0.00263EPSS

Exploits0References6

Vulnrichment•added 2026/06/01 11:0 a.m.•8 views

CVE-2026-10251 itsourcecode Online House Rental System ajax.php login sql injection

A weakness has been identified in itsourcecode Online House Rental System 1.0. The impacted element is an unknown function of the file /ajax.php?action=login. Executing a manipulation of the argument Username can lead to sql injection. The attack may be performed from remote. The exploit has been...

7.5CVSS6.9AI score0.00263EPSS

Exploits0References6

EUVD•added 2026/06/01 11:0 a.m.•9 views

EUVD-2026-33626

7.5CVSS6.9AI score0.00263EPSS

Exploits0References6

EUVD•added 2026/06/01 10:45 a.m.•9 views

EUVD-2026-33625

A security flaw has been discovered in itsourcecode Online Blood Bank Management System 1.0. The affected element is an unknown function of the file /admin/campsdetails.php. Performing a manipulation of the argument hospital results in sql injection. The attack is possible to be carried out...

7.5CVSS5.7AI score0.00263EPSS

Exploits0References6

NVD•added 2026/06/01 9:16 a.m.•12 views

CVE-2026-10237

A vulnerability was found in SourceCodester Water Billing Management System 1.0. Impacted is an unknown function of the file /admin/?page=user/manageuser of the component User Management Module. Performing a manipulation of the argument ID results in sql injection. Remote exploitation of the atta...

5.8CVSS0.00262EPSS

Exploits0References6

Vulnrichment•added 2026/06/01 8:45 a.m.•7 views

CVE-2026-10242 itsourcecode Content Management System instructions.php sql injection

A weakness has been identified in itsourcecode Content Management System 1.0. This impacts an unknown function of the file /instructions.php. This manipulation of the argument topicid causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to the...

6.5CVSS5.7AI score0.0025EPSS

Exploits0References6

Cvelist•added 2026/06/01 5:15 a.m.•41 views

CVE-2026-10227 raisulislamg4 student_management_system_by_php User Creation add_user_check.php sql injection

A vulnerability has been found in raisulislamg4 studentmanagementsystembyphp up to 310d950e09013d5133c6b9210aff9444382d16d1. The affected element is an unknown function of the file addusercheck.php of the component User Creation Handler. The manipulation of the argument role leads to sql injectio...

7.5CVSS0.00263EPSS

Exploits0References6

Positive Technologies•added 2026/06/01 12:0 a.m.•15 views

PT-2026-45402

A vulnerability was detected in itsourcecode Online House Rental System 1.0. This impacts an unknown function of the file /manage payment.php. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used...

7.5CVSS5.7AI score0.00263EPSS

Exploits0References7

CNNVD•added 2026/06/01 12:0 a.m.•9 views

student_management_system_by_php SQL注入漏洞

studentmanagementsystembyphp is a student information management tool developed by Raisul Islam, based on PHP. studentmanagementsystembyphp has a SQL injection vulnerability, which stems from the incorrect handling of the Username parameter in the Login component of the logincheck.php file,...

7.5CVSS7.5AI score0.00263EPSS

Exploits0References6

Positive Technologies•added 2026/06/01 12:0 a.m.•11 views

PT-2026-45240

A flaw has been found in code-projects Online Hospital Management System 1.php. This impacts the function login user of the file login 1.php. Executing a manipulation of the argument Username can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be...

7.5CVSS6.9AI score0.00263EPSS

Exploits0References7

Positive Technologies•added 2026/06/01 12:0 a.m.•11 views

PT-2026-45605

A weakness has been identified in code-projects Hotel and Tourism Reservation System 1.0. The affected element is an unknown function of the file tour.php of the component GET Parameter Handler. Executing a manipulation of the argument tour can lead to sql injection. The attack can be launched...

7.5CVSS5.7AI score0.00318EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by