CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/06/05 7:48 p.m.•8 views

CVE-2026-10302

A flaw has been found in itsourcecode Fees Management System 1.0. The impacted element is an unknown function of the file /managefee.php. Executing a manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used...

6.5CVSS6.5AI score0.002EPSS

Exploits0References1

CNNVD•added 2026/06/02 12:0 a.m.•4 views

itsourcecode Fees Management System SQL注入漏洞

itsourcecode Fees Management System is an open-source charging management system developed by itsourcecode. Version 1.0 of the itsourcecode Fees Management System has a SQL injection vulnerability. This vulnerability arises from manipulating the parameter ID in the file /managefee.php, which may...

6.5CVSS5.7AI score0.002EPSS

CVE•added 2026/06/01 11:30 p.m.•19 views

CVE-2026-10302

The CVE-2026-10302 entry concerns itsourcecode Fees Management System 1.0. The vulnerability lies in an unknown function within the file /manage_fee.php, where manipulating the ID parameter can lead to SQL injection. This allows remote exploitation, and the exploit has been published. The CVSS me...

6.5CVSS5.7AI score0.002EPSS

Vulnrichment•added 2026/06/01 11:30 p.m.•8 views

CVE-2026-10302 itsourcecode Fees Management System manage_fee.php sql injection

6.5CVSS6.5AI score0.002EPSS

OSSF Malicious Packages•added 2026/05/12 7:42 a.m.•8 views

Malicious code in @2oolkit/hyperliquid-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c3af30011dcf54950f270463028270d732fce20b5cd5da44342a0748922e6df The package is advertised as a neutral CLI/MCP wrapper for Hyperliquid, but its distributed code silently routes value from the installer to an...

5.9AI score

Exploits0References2

OSV•added 2026/05/12 7:42 a.m.•4 views

MAL-2026-3679 Malicious code in @2oolkit/hyperliquid-cli (npm)

5.9AI score

Exploits0References2

Github Security Blog•added 2026/03/29 3:20 p.m.•9 views

mpp has multiple payment bypass and griefing vulnerabilities

Impact Multiple vulnerabilities were discovered which allowed for undesirable behaviors, including: - Performing free tempo/charge requests - Replaying existing tempo/charge requests - Performing free tempo/session requests - Piggybacking off existing tempo/session channels - Griefing existing...

5.9AI score

Exploits0References3Affected Software1

OSV•added 2026/03/29 3:20 p.m.•2 views

GHSA-FXC9-7J2W-VX54 mpp has multiple payment bypass and griefing vulnerabilities

9.3CVSS5.9AI score

Exploits0References3

RedhatCVE•added 2026/03/26 11:3 p.m.•3 views

CVE-2026-32120

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0.3, an Insecure Direct Object Reference IDOR vulnerability in the fee sheet product save logic library/FeeSheet.class.php allows any authenticated user with fee sheet ACL...

NVD•added 2026/03/25 11:17 p.m.•4 views

Exploits1References1

CVE-2026-32120

6.5CVSS0.00254EPSS

Cvelist•added 2026/03/25 10:27 p.m.•19 views

CVE-2026-32120 OpenEMR has IDOR in Fee Sheet Product Save

6.5CVSS0.00254EPSS

ATTACKERKB•added 2026/03/25 10:27 p.m.•4 views

CVE-2026-32120

Exploits1References4Affected Software1

Vulnrichment•added 2026/03/25 10:27 p.m.•2 views

CVE-2026-32120 OpenEMR has IDOR in Fee Sheet Product Save

CVE•added 2026/03/25 10:27 p.m.•9 views

CVE-2026-32120

OpenEMR prior to version 8.0.0.3 contains an Insecure Direct Object Reference (IDOR) in the fee sheet product save logic. The vulnerability, located in library/FeeSheet.class.php, lets any authenticated user with fee sheet ACL access delete, modify, or read drug_sales records for other patients b...

Exploits1References3Affected Software1

EUVD•added 2026/03/25 10:27 p.m.•3 views

EUVD-2026-16010