CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/06/08 4:45 p.m.•7 views

CVE-2026-11534

5.1CVSS4AI score0.00199EPSS

Exploits0References6

CNNVD•added 2026/06/08 12:0 a.m.•9 views

student_management_system 跨站脚本漏洞

studentmanagementsystem is a student information management tool personally developed by Vivek Singh. studentmanagementsystem has a cross-site scripting vulnerability. This vulnerability stems from improper handling of parameters such as name, address, and fname by an unknown function in the...

5.1CVSS4.5AI score0.00199EPSS

Exploits0References2

RedhatCVE•added 2026/06/05 7:47 p.m.•5 views

CVE-2026-6033

A vulnerability was determined in CodeAstro Online Classroom 1.0. Affected is an unknown function of the file /updatedetailsfromstudent.php?eno=146891650. Executing a manipulation of the argument fname can lead to sql injection. The attack may be performed from remote. The exploit has been public...

6.5CVSS6.4AI score0.00205EPSS

RedhatCVE•added 2026/05/27 8:14 p.m.•17 views

CVE-2026-9527

A vulnerability was determined in itsourcecode Electronic Judging System 1.0. This issue affects some unknown processing of the file /admin/judges.php. This manipulation of the argument fname causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been publicly...

NVD•added 2026/05/26 5:16 a.m.•13 views

CVE-2026-9527

5.3CVSS0.00336EPSS

ATTACKERKB•added 2026/05/26 3:45 a.m.•5 views

CVE-2026-9527

Exploits0References5Affected Software1

EUVD•added 2026/05/26 3:45 a.m.•8 views

EUVD-2026-31787

CVE•added 2026/05/26 3:45 a.m.•15 views

CVE-2026-9527

CVE-2026-9527 affects itsourcecode Electronic Judging System 1.0. The vulnerability resides in /admin/judges.php where manipulating the fname parameter triggers cross-site scripting. Remote exploitation is possible, and the exploit has been publicly disclosed (POC). Metrics indicate CVSS v3.1 bas...

CNNVD•added 2026/05/26 12:0 a.m.•7 views

itsourcecode Electronic Judging System 代码注入漏洞

itsourcecode Electronic Judging System is an open-source electronic judging system developed by itsourcecode. Version 1.0 of the itsourcecode Electronic Judging System contains a code injection vulnerability. This vulnerability arises from improper handling of the fname parameter in the...

5.3CVSS5.7AI score0.00336EPSS

Exploits0References6

Positive Technologies•added 2026/05/26 12:0 a.m.•11 views

PT-2026-43184

RedhatCVE•added 2026/05/05 8:21 p.m.•6 views

CVE-2026-7744

A vulnerability was found in CodeAstro Online Classroom 1.0. This affects an unknown function of the file /OnlineClassroom/addnewstudent. The manipulation of the argument fname results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

6.5CVSS6.3AI score0.00192EPSS

EUVD•added 2026/05/04 7:30 a.m.•5 views

EUVD-2026-26931

6.5CVSS5.6AI score0.00192EPSS

Cvelist•added 2026/05/04 7:30 a.m.•29 views

CVE-2026-7744 CodeAstro Online Classroom addnewstudent sql injection

6.5CVSS0.00192EPSS

CNNVD•added 2026/05/04 12:0 a.m.•7 views

CodeAstro Online Classroom 注入漏洞

CodeAstro Online Classroom is an online classroom platform provided by CodeAstro Inc. Version 1.0 of CodeAstro Online Classroom has a SQL injection vulnerability. This vulnerability arises from unknown functions in the file/OnlineClassroom/addnewstudent that manipulate the parameter fname, allowi...

6.5CVSS6.7AI score0.00192EPSS

Exploits0References2

Positive Technologies•added 2026/05/04 12:0 a.m.•4 views

PT-2026-36787

6.5CVSS6.3AI score0.00192EPSS

Exploits0References6

EUVD•added 2026/04/27 6:30 p.m.•4 views

EUVD-2026-25907

A flaw has been found in CodeAstro Online Classroom 1.0. This affects an unknown part of the file /addnewfaculty. Executing a manipulation of the argument fname can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be used...

6.5CVSS6.4AI score0.00241EPSS

Vulnrichment•added 2026/04/27 6:30 p.m.•2 views

CVE-2026-7148 CodeAstro Online Classroom addnewfaculty sql injection

6.5CVSS6.4AI score0.00241EPSS

Cvelist•added 2026/04/27 6:30 p.m.•26 views

CVE-2026-7148 CodeAstro Online Classroom addnewfaculty sql injection

6.5CVSS0.00241EPSS

CVE•added 2026/04/27 6:30 p.m.•13 views

CVE-2026-7148

CVE-2026-7148 affects CodeAstro Online Classroom 1.0 and a vulnerability in the unknown part of the file /addnewfaculty. A manipulation of the argument fname can lead to SQL injection performed remotely. The published exploit indicates the issue is actionable (exploitation maturity: PROOF-OF-CONC...

6.5CVSS6.5AI score0.00241EPSS