Lucene search
+L

197 matches found

redhatcve
redhatcve
added 2026/05/05 8:21 p.m.9 views

CVE-2026-7744

A vulnerability was found in CodeAstro Online Classroom 1.0. This affects an unknown function of the file /OnlineClassroom/addnewstudent. The manipulation of the argument fname results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

6.5CVSS6.3AI score0.00192EPSS
Exploits0References1
euvd
euvd
added 2026/05/04 7:30 a.m.7 views

EUVD-2026-26931

A vulnerability was found in CodeAstro Online Classroom 1.0. This affects an unknown function of the file /OnlineClassroom/addnewstudent. The manipulation of the argument fname results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

6.5CVSS5.6AI score0.00192EPSS
Exploits0References5
cvelist
cvelist
added 2026/05/04 7:30 a.m.39 views

CVE-2026-7744 CodeAstro Online Classroom addnewstudent sql injection

A vulnerability was found in CodeAstro Online Classroom 1.0. This affects an unknown function of the file /OnlineClassroom/addnewstudent. The manipulation of the argument fname results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

6.5CVSS0.00192EPSS
Exploits0References5
cnnvd
cnnvd
added 2026/05/04 12:0 a.m.11 views

CodeAstro Online Classroom 注入漏洞

CodeAstro Online Classroom is an online classroom platform provided by CodeAstro Inc. Version 1.0 of CodeAstro Online Classroom has a SQL injection vulnerability. This vulnerability arises from unknown functions in the file/OnlineClassroom/addnewstudent that manipulate the parameter fname, allowi...

6.5CVSS6.7AI score0.00192EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/05/04 12:0 a.m.15 views

PT-2026-36787

A vulnerability was found in CodeAstro Online Classroom 1.0. This affects an unknown function of the file /OnlineClassroom/addnewstudent. The manipulation of the argument fname results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

6.5CVSS6.3AI score0.00192EPSS
Exploits0References6
vulnrichment
vulnrichment
added 2026/04/27 6:30 p.m.3 views

CVE-2026-7148 CodeAstro Online Classroom addnewfaculty sql injection

A flaw has been found in CodeAstro Online Classroom 1.0. This affects an unknown part of the file /addnewfaculty. Executing a manipulation of the argument fname can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be used...

6.5CVSS6.4AI score0.00241EPSS
Exploits0References5
euvd
euvd
added 2026/04/27 6:30 p.m.6 views

EUVD-2026-25907

A flaw has been found in CodeAstro Online Classroom 1.0. This affects an unknown part of the file /addnewfaculty. Executing a manipulation of the argument fname can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be used...

6.5CVSS6.4AI score0.00241EPSS
Exploits0References5
cve
cve
added 2026/04/27 6:30 p.m.17 views

CVE-2026-7148

CVE-2026-7148 affects CodeAstro Online Classroom 1.0 and a vulnerability in the unknown part of the file /addnewfaculty. A manipulation of the argument fname can lead to SQL injection performed remotely. The published exploit indicates the issue is actionable (exploitation maturity: PROOF-OF-CONC...

6.5CVSS6.5AI score0.00241EPSS
Exploits0References5
cvelist
cvelist
added 2026/04/27 6:30 p.m.31 views

CVE-2026-7148 CodeAstro Online Classroom addnewfaculty sql injection

A flaw has been found in CodeAstro Online Classroom 1.0. This affects an unknown part of the file /addnewfaculty. Executing a manipulation of the argument fname can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be used...

6.5CVSS0.00241EPSS
Exploits0References5
nvd
nvd
added 2026/04/27 6:16 a.m.16 views

CVE-2026-7089

A security vulnerability has been detected in code-projects Home Service System 1.0. The impacted element is an unknown function of the file /booking.php of the component Appointment Booking. The manipulation of the argument fname/lname leads to cross site scripting. The attack may be initiated...

5.3CVSS0.00377EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2026/04/27 5:0 a.m.5 views

CVE-2026-7089 code-projects Home Service System Appointment Booking booking.php cross site scripting

A security vulnerability has been detected in code-projects Home Service System 1.0. The impacted element is an unknown function of the file /booking.php of the component Appointment Booking. The manipulation of the argument fname/lname leads to cross site scripting. The attack may be initiated...

5.3CVSS3.6AI score0.00377EPSS
Exploits0References5
euvd
euvd
added 2026/04/27 5:0 a.m.7 views

EUVD-2026-25773

A security vulnerability has been detected in code-projects Home Service System 1.0. The impacted element is an unknown function of the file /booking.php of the component Appointment Booking. The manipulation of the argument fname/lname leads to cross site scripting. The attack may be initiated...

5.3CVSS3.8AI score0.00377EPSS
Exploits0References5
cnnvd
cnnvd
added 2026/04/27 12:0 a.m.12 views

Code-Projects Home Service System 跨站脚本漏洞

The Code-Projects Home Service System is an open-source door-to-door service system developed by Code-Projects. Version 1.0 of the Code-Projects Home Service System contains a cross-site scripting vulnerability. This vulnerability stems from improper handling of parameters fname and lname in the...

5.3CVSS5.6AI score0.00377EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/04/27 12:0 a.m.10 views

CodeAstro Online Classroom 注入漏洞

CodeAstro Online Classroom is an online classroom platform provided by CodeAstro Inc. Version 1.0 of CodeAstro Online Classroom has a SQL injection vulnerability. This vulnerability arises from improper handling of the parameter fname in the file /addnewfaculty, which may lead to SQL injection...

6.5CVSS6.6AI score0.00241EPSS
Exploits0References1
osv
osv
added 2026/04/21 11:9 a.m.10 views

CLSA-2026-1776769741 rsync: Fix of 3 CVEs

CVE-2017-16548: fix heap overread in receivexattr by enforcing trailing NUL on received xattr names - CVE-2017-17434: sanitize xname in readndxandattrs and check daemon filter against fnamecmp in recvfiles - CVE-2018-5764: prevent client from resetting protectargs during the second parsearguments...

9.8CVSS6.8AI score0.06337EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/04/14 7:22 a.m.14 views

CVE-2026-6003

A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This issue affects some unknown processing of the file /admin/user.php. Such manipulation of the argument fname leads to cross site scripting. The attack may be performed from remote. The exploit has been...

4.8CVSS4.2AI score0.00202EPSS
Exploits0References1
euvd
euvd
added 2026/04/10 9:31 a.m.5 views

EUVD-2026-21336

A vulnerability was determined in CodeAstro Online Classroom 1.0. Affected is an unknown function of the file /updatedetailsfromstudent.php?eno=146891650. Executing a manipulation of the argument fname can lead to sql injection. The attack may be performed from remote. The exploit has been public...

6.5CVSS6.5AI score0.00205EPSS
Exploits0References6
nvd
nvd
added 2026/04/10 8:16 a.m.6 views

CVE-2026-6033

A vulnerability was determined in CodeAstro Online Classroom 1.0. Affected is an unknown function of the file /updatedetailsfromstudent.php?eno=146891650. Executing a manipulation of the argument fname can lead to sql injection. The attack may be performed from remote. The exploit has been public...

6.5CVSS0.00205EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2026/04/10 7:30 a.m.4 views

CVE-2026-6033 CodeAstro Online Classroom updatedetailsfromstudent.php sql injection

A vulnerability was determined in CodeAstro Online Classroom 1.0. Affected is an unknown function of the file /updatedetailsfromstudent.php?eno=146891650. Executing a manipulation of the argument fname can lead to sql injection. The attack may be performed from remote. The exploit has been public...

6.5CVSS6.5AI score0.00205EPSS
Exploits0References5
cve
cve
added 2026/04/10 7:30 a.m.13 views

CVE-2026-6033

CodeAstro Online Classroom 1.0 is affected by a SQL injection in updatedetailsfromstudent.php, triggered by manipulating the fname parameter (eno=146891650). The vulnerability arises from an unknown function in /updatedetailsfromstudent.php and can be exploited remotely. Public disclosure of the ...

6.5CVSS6.5AI score0.00205EPSS
Exploits0References5
Rows per page
Query Builder