Lucene search
K

9778 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/26 9:15 p.m.16 views

CVE-2026-9584

A security vulnerability has been detected in code-projects Project Management System 1.0. Affected is an unknown function of the file chk.php of the component Login. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed publicly a...

7.5CVSS6.8AI score0.00254EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/05/26 9:15 p.m.13 views

EUVD-2026-32004

A security vulnerability has been detected in code-projects Project Management System 1.0. Affected is an unknown function of the file chk.php of the component Login. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed publicly a...

7.5CVSS6.8AI score0.00254EPSS
Exploits0References5
NVD
NVD
added 2026/05/26 8:16 p.m.12 views

CVE-2026-9574

A flaw has been found in itsourcecode Student Transcript Processing System 1.0. This vulnerability affects unknown code of the file /admin/modules/student/trans.php. Executing a manipulation of the argument studentId/cid can lead to sql injection. The attack can be launched remotely. The exploit...

7.5CVSS0.00259EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/26 7:30 p.m.9 views

CVE-2026-9575 itsourcecode Student Transcript Processing System index.php sql injection

A vulnerability has been found in itsourcecode Student Transcript Processing System 1.0. This issue affects some unknown processing of the file /admin/modules/class/index.php?view=view. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit h...

7.5CVSS6.8AI score0.00259EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/26 7:15 p.m.11 views

EUVD-2026-31959

A flaw has been found in itsourcecode Student Transcript Processing System 1.0. This vulnerability affects unknown code of the file /admin/modules/student/trans.php. Executing a manipulation of the argument studentId/cid can lead to sql injection. The attack can be launched remotely. The exploit...

7.5CVSS6.9AI score0.00259EPSS
Exploits0References5
CVE
CVE
added 2026/05/26 7:0 p.m.13 views

CVE-2026-9573

The CVE-2026-9573 entry concerns itsourcecode Student Transcript Processing System 1.0. The vulnerability resides in /admin/modules/student/index.php?view=view, where manipulating the studentId parameter triggers a SQL injection. The issue is exploitable remotely, with exploit code public. Affect...

7.5CVSS7AI score0.00259EPSS
Exploits0References5
NVD
NVD
added 2026/05/26 6:16 p.m.16 views

CVE-2026-44706

Chatwoot is a customer engagement suite. From 2.2.0 to before 4.11.2, a SQL injection vulnerability exists in the conversation and contact filter APIs. When filtering by a custom attribute of type date or number using the isgreaterthan or islessthan operators, user-supplied values in the values...

8.5CVSS0.00227EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/26 1:45 p.m.37 views

CVE-2026-9551 Das Parking Management System 停车场管理系统 API Endpoint ExportParkingRecords xp_cmdshell sql injection

A vulnerability was identified in Das Parking Management System 停车场管理系统 6.2.0. This affects the function xpcmdshell of the file ParkingRecord/ExportParkingRecords of the component API Endpoint. The manipulation of the argument Value leads to sql injection. It is possible to initiate the attack...

7.5CVSS0.00318EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/26 12:45 p.m.7 views

CVE-2026-9544 Shenzhen Sixun Software Sixun Shanghui Group Business Management System PayConfig sql injection

A vulnerability was found in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 10. Affected by this vulnerability is an unknown functionality of the file /api/Dinner/PayConfig. Performing a manipulation of the argument tableno results in sql injection. The attack is possible...

7.5CVSS6.8AI score0.00259EPSS
Exploits0References4
NVD
NVD
added 2026/05/26 4:16 a.m.17 views

CVE-2026-9523

A vulnerability was detected in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2. Affected by this vulnerability is an unknown functionality of the file /SubstationWEBV2/app/..;/calc/getCalcmeterDetailDayListTree. Performing a manipulation of the argument...

7.5CVSS0.0033EPSS
Exploits0References4
CVE
CVE
added 2026/05/26 4:0 a.m.18 views

CVE-2026-9528

The CVE-2026-9528 entry concerns itsourcecode Electronic Judging System 1.0. Affected component: /admin/delete_judge.php; vulnerability arises from manipulation of the judge_id parameter, enabling SQL injection. Attacker can exploit remotely; public exploit is available per the description. No re...

7.5CVSS7AI score0.00319EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/26 3:30 a.m.10 views

CVE-2026-9526 itsourcecode Electronic Judging System edit_team.php sql injection

A vulnerability was found in itsourcecode Electronic Judging System 1.0. This vulnerability affects unknown code of the file /admin/editteam.php. The manipulation of the argument numid results in sql injection. The attack may be launched remotely. The exploit has been made public and could be use...

7.5CVSS6.9AI score0.00319EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/26 3:0 a.m.9 views

CVE-2026-9525

A vulnerability has been found in itsourcecode Electronic Judging System 1.0. This affects an unknown part of the file /admin/editjudge.php. The manipulation of the argument judgeid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may ...

7.5CVSS6.8AI score0.00319EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/05/26 2:30 a.m.12 views

EUVD-2026-31782

A vulnerability was detected in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2. Affected by this vulnerability is an unknown functionality of the file /SubstationWEBV2/app/..;/calc/getCalcmeterDetailDayListTree. Performing a manipulation of the argument...

7.5CVSS6.9AI score0.0033EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/26 2:30 a.m.44 views

CVE-2026-9523 Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform getCalcmeterDetailDayListTree sql injection

A vulnerability was detected in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2. Affected by this vulnerability is an unknown functionality of the file /SubstationWEBV2/app/..;/calc/getCalcmeterDetailDayListTree. Performing a manipulation of the argument...

7.5CVSS0.0033EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/26 12:0 a.m.9 views

itsourcecode Student Transcript Processing System SQL注入漏洞

itsourcecode Student Transcript Processing System is an open-source student transcript processing system developed by itsourcecode. Version 1.0 of the itsourcecode Student Transcript Processing System has a SQL injection vulnerability. This vulnerability arises from improper handling of the...

7.5CVSS7.2AI score0.00259EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/26 12:0 a.m.8 views

itsourcecode Electronic Judging System SQL注入漏洞

itsourcecode Electronic Judging System is an open-source electronic judging system developed by itsourcecode. Version 1.0 of the itsourcecode Electronic Judging System has a SQL injection vulnerability. This vulnerability arises from improper handling of the judgeid parameter by an unknown functi...

7.5CVSS7.1AI score0.00319EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/26 12:0 a.m.9 views

Das Parking Management System SQL注入漏洞

Das Parking Management System is a parking management system developed by Das Real Technology Co., Ltd. Version 6.2.0 of Das Parking Management System has a SQL injection vulnerability. This vulnerability arises from improper handling of parameters during the execution of code in the Search API...

7.5CVSS7.3AI score0.00318EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/26 12:0 a.m.14 views

PT-2026-43426

Name of the Vulnerable Software and Affected Versions code-projects Project Management System version 1.0 Description A SQL injection issue exists within the Login component in the chk.php file. This flaw allows a remote attacker to manipulate an unknown function to execute arbitrary SQL commands...

7.5CVSS7.4AI score0.00254EPSS
Exploits0References7
NVD
NVD
added 2026/05/25 11:16 p.m.15 views

CVE-2026-42773

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in eMagicOne eMagicOne Store Manager allows Blind SQL Injection. This issue affects eMagicOne Store Manager: from n/a through 1.3.2...

9.3CVSS0.00372EPSS
Exploits0References1
Rows per page
Query Builder