Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

220572 matches found

CVE
CVEadded 2026/06/05 5:15 p.m.25 views

CVE-2026-11344

CVE-2026-11344 affects the code-projects Vehicle Management System 1.0, specifically the New Driver Registration Form’s file handling in newdriver.php. The vulnerability arises from manipulating the argument photo, leading to an unrestricted upload condition. The flaw is exploitable remotely and ...

7.5CVSS6.8AI score0.00366EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/06/05 5:15 p.m.7 views

CVE-2026-11344

A vulnerability was found in code-projects Vehicle Management System 1.0. This impacts an unknown function of the file newdriver.php of the component New Driver Registration Form. Performing a manipulation of the argument photo results in unrestricted upload. The attack may be initiated remotely...

7.5CVSS6.8AI score0.00366EPSS
Exploits0References6Affected Software1
EUVD
EUVDadded 2026/06/05 5:15 p.m.10 views

EUVD-2026-34865

A vulnerability was found in code-projects Vehicle Management System 1.0. This impacts an unknown function of the file newdriver.php of the component New Driver Registration Form. Performing a manipulation of the argument photo results in unrestricted upload. The attack may be initiated remotely...

7.5CVSS6.8AI score0.00366EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/06/05 5:0 p.m.28 views

CVE-2026-11342 code-projects Hotel and Tourism Reservation System details.php sql injection

A vulnerability has been found in code-projects Hotel and Tourism Reservation System 1.0. This affects an unknown function of the file /details.php. Such manipulation of the argument room leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and...

7.5CVSS0.00263EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/06/05 5:0 p.m.7 views

CVE-2026-11342 code-projects Hotel and Tourism Reservation System details.php sql injection

A vulnerability has been found in code-projects Hotel and Tourism Reservation System 1.0. This affects an unknown function of the file /details.php. Such manipulation of the argument room leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and...

7.5CVSS7AI score0.00263EPSS
Exploits0References6
CVE
CVEadded 2026/06/05 5:0 p.m.16 views

CVE-2026-11342

Vulnerability : In code-projects Hotel and Tourism Reservation System 1.0, the file /details.php is susceptible to SQL injection via the room parameter. Root cause : unsanitized input in the argument dispatched to an SQL query. Impact : exploitation can be performed remotely; CVSS metrics in sour...

7.5CVSS7AI score0.00263EPSS
Exploits0References6
GithubExploit
GithubExploitadded 2026/06/05 4:52 p.m.86 views

Exploit for CVE-2026-25860

CVE-2...

5.4AI score0.00293EPSS
Exploits1
ATTACKERKB
ATTACKERKBadded 2026/06/05 4:45 p.m.6 views

CVE-2026-11341

A flaw has been found in D-Link DWR-M920 up to 1.1.50. The impacted element is the function sub412DA0 of the file /boafrm/formIMEISetup. This manipulation of the argument IMEIvalue causes os command injection. The attack can be initiated remotely. The exploit has been published and may be used...

6.5CVSS6.3AI score0.01044EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichmentadded 2026/06/05 4:30 p.m.6 views

CVE-2026-11339 D-Link DWR-M920 formUSSDSetup sub_41CF20 command injection

A vulnerability was detected in D-Link DWR-M920 up to 1.1.50. The affected element is the function sub41CF20 of the file /boafrm/formUSSDSetup. The manipulation of the argument ussdValue results in command injection. It is possible to launch the attack remotely. The exploit is now public and may ...

6.5CVSS6.4AI score0.03133EPSS
Exploits1References6
CVE
CVEadded 2026/06/05 4:30 p.m.25 views

CVE-2026-11339

A vulnerability affects D-Link DWR-M920 firmware up to version 1.1.50 . The flaw is located in the function sub_41CF20 within the file /boafrm/formUSSDSetup ; manipulating the argument ussdValue enables command injection . It can be exploited remotely, and multiple sources note that the exploit i...

8.8CVSS6.4AI score0.03133EPSS
Exploits1References6Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/06/05 4:15 p.m.7 views

CVE-2026-11338

A security vulnerability has been detected in SourceCodester Ship Ferry Ticket Reservation System 1.0. Impacted is an unknown function of the file /admin/?page=user/manageuser. The manipulation of the argument Username leads to cross site scripting. It is possible to initiate the attack remotely...

4.8CVSS3.6AI score0.0021EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2026/06/05 4:15 p.m.42 views

CVE-2026-11338 SourceCodester Ship Ferry Ticket Reservation System manage_user cross site scripting

A security vulnerability has been detected in SourceCodester Ship Ferry Ticket Reservation System 1.0. Impacted is an unknown function of the file /admin/?page=user/manageuser. The manipulation of the argument Username leads to cross site scripting. It is possible to initiate the attack remotely...

4.8CVSS0.0021EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/06/05 4:15 p.m.8 views

CVE-2026-11338 SourceCodester Ship Ferry Ticket Reservation System manage_user cross site scripting

A security vulnerability has been detected in SourceCodester Ship Ferry Ticket Reservation System 1.0. Impacted is an unknown function of the file /admin/?page=user/manageuser. The manipulation of the argument Username leads to cross site scripting. It is possible to initiate the attack remotely...

4.8CVSS3.6AI score0.0021EPSS
Exploits0References6
CVE
CVEadded 2026/06/05 4:15 p.m.20 views

CVE-2026-11338

SourceCodester Ship Ferry Ticket Reservation System 1.0 contains a cross-site scripting vulnerability in the /admin/?page=user/manage_user handler, triggered by manipulating the Username parameter. The issue is exploitable remotely and has had exploits publicly disclosed. Affected component: the ...

4.8CVSS3.7AI score0.0021EPSS
Exploits0References6
EUVD
EUVDadded 2026/06/05 4:15 p.m.12 views

EUVD-2026-34856

A security vulnerability has been detected in SourceCodester Ship Ferry Ticket Reservation System 1.0. Impacted is an unknown function of the file /admin/?page=user/manageuser. The manipulation of the argument Username leads to cross site scripting. It is possible to initiate the attack remotely...

4.8CVSS3.8AI score0.0021EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/06/05 3:45 p.m.5 views

CVE-2026-11337

A vulnerability was found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. Affected by this vulnerability is an unknown functionality of the file /dashboardpage/forms/fetch.php. The manipulation of the argument...

5.3CVSS4AI score0.00273EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/06/05 3:45 p.m.40 views

CVE-2026-11337 tittuvarghese CollegeManagementSystem fetch.php cross site scripting

A vulnerability was found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. Affected by this vulnerability is an unknown functionality of the file /dashboardpage/forms/fetch.php. The manipulation of the argument...

5.3CVSS0.00273EPSS
Exploits0References6
CVE
CVEadded 2026/06/05 3:45 p.m.20 views

CVE-2026-11337

The CVE-2026-11337 entry concerns tittuvarghese CollegeManagementSystem and affects an unknown functionality in /dashboard_page/forms/fetch.php where manipulating the department_name argument triggers cross-site scripting. The description indicates remote exploitation and that an exploit has been...

5.3CVSS4AI score0.00273EPSS
Exploits0References6
OSV
OSVadded 2026/06/05 3:18 p.m.6 views

JLSEC-2026-567

A vulnerability classified as problematic was found in OpenCV wechatqrcode Module up to 4.7.0. Affected by this vulnerability is the function DecodedBitStreamParser::decodeByteSegment of the file qrcode/decoder/decodedbitstreamparser.cpp. The manipulation leads to null pointer dereference. The...

7.5CVSS4.4AI score0.01356EPSS
Exploits0References9
OSV
OSVadded 2026/06/05 3:18 p.m.5 views

JLSEC-2026-568

A vulnerability, which was classified as problematic, has been found in OpenCV wechatqrcode Module up to 4.7.0. Affected by this issue is the function DecodedBitStreamParser::decodeHanziSegment of the file qrcode/decoder/decodedbitstreamparser.cpp. The manipulation leads to memory leak. The attac...

7.5CVSS4.6AI score0.01303EPSS
Exploits0References8
Rows per page
Query Builder