Lucene search
+L

197 matches found

cvelist
cvelist
added 2026/04/05 4:0 p.m.25 views

CVE-2026-5579 CodeAstro Online Classroom Parameter updatedetailsfromfaculty.php sql injection

A vulnerability was determined in CodeAstro Online Classroom 1.0. This issue affects some unknown processing of the file /OnlineClassroom/updatedetailsfromfaculty.php?myfid=108 of the component Parameter Handler. Executing a manipulation of the argument fname can lead to sql injection. The attack...

6.5CVSS0.00257EPSS
Exploits0References5
cnnvd
cnnvd
added 2026/04/05 12:0 a.m.8 views

CodeAstro Online Classroom SQL注入漏洞

CodeAstro Online Classroom is an online classroom platform provided by CodeAstro Inc. Version 1.0 of CodeAstro Online Classroom has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter fname in the file /OnlineClassroom/updatedetailsfromfaculty.php,...

6.5CVSS6.6AI score0.00257EPSS
Exploits0References6
nvd
nvd
added 2026/03/22 2:16 p.m.8 views

CVE-2026-4550

A vulnerability has been found in code-projects Simple Gym Management System up to 1.0. This affects an unknown part of the file /gym/func.php. Such manipulation of the argument Trainerid/fname leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the publ...

5.8CVSS0.00263EPSS
Exploits0References7
cvelist
cvelist
added 2026/03/22 1:47 p.m.39 views

CVE-2026-4550 code-projects Simple Gym Management System func.php sql injection

A vulnerability has been found in code-projects Simple Gym Management System up to 1.0. This affects an unknown part of the file /gym/func.php. Such manipulation of the argument Trainerid/fname leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the publ...

5.8CVSS0.00263EPSS
Exploits0References7
vulnrichment
vulnrichment
added 2026/03/22 1:47 p.m.1 views

CVE-2026-4550 code-projects Simple Gym Management System func.php sql injection

A vulnerability has been found in code-projects Simple Gym Management System up to 1.0. This affects an unknown part of the file /gym/func.php. Such manipulation of the argument Trainerid/fname leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the publ...

5.8CVSS5.7AI score0.00263EPSS
Exploits0References7
cve
cve
added 2026/03/22 1:47 p.m.19 views

CVE-2026-4550

CVE-2026-4550 affects code-projects’ Simple Gym Management System (

5.8CVSS5.7AI score0.00263EPSS
Exploits0References7
cnnvd
cnnvd
added 2026/03/22 12:0 a.m.9 views

Code-Projects Simple Gym Management System SQL注入漏洞

Code-Projects Simple Gym Management System is an open-source gym management system developed by Code-Projects. Versions of Code-Projects Simple Gym Management System prior to 1.0 contained a SQL injection vulnerability. This vulnerability stemmed from incorrect operations with the parameters...

5.8CVSS5.9AI score0.00263EPSS
Exploits0References7
githubexploit
githubexploit
added 2026/03/16 6:13 a.m.179 views

Exploit for Path Traversal in Apple Safari

CVE-2026-20660 PoC Bundle This folder packages a standalone p...

7.5CVSS5.8AI score0.00775EPSS
Exploits1
redhatcve
redhatcve
added 2026/03/03 7:42 a.m.12 views

CVE-2026-3406

A vulnerability was found in projectworlds Online Art Gallery Shop 1.0. The impacted element is an unknown function of the file /admin/registration.php of the component Registration Handler. The manipulation of the argument fname results in sql injection. It is possible to launch the attack...

9.8CVSS5.7AI score0.00333EPSS
Exploits1References1
nvd
nvd
added 2026/03/02 3:16 a.m.9 views

CVE-2026-3406

A vulnerability was found in projectworlds Online Art Gallery Shop 1.0. The impacted element is an unknown function of the file /admin/registration.php of the component Registration Handler. The manipulation of the argument fname results in sql injection. It is possible to launch the attack...

9.8CVSS0.00333EPSS
Exploits1References4
osv
osv
added 2026/03/02 3:16 a.m.6 views

CVE-2026-3406

A vulnerability was found in projectworlds Online Art Gallery Shop 1.0. The impacted element is an unknown function of the file /admin/registration.php of the component Registration Handler. The manipulation of the argument fname results in sql injection. It is possible to launch the attack...

9.8CVSS5.7AI score0.00333EPSS
Exploits1References4
euvd
euvd
added 2026/03/02 2:32 a.m.9 views

EUVD-2026-9139

A vulnerability was found in projectworlds Online Art Gallery Shop 1.0. The impacted element is an unknown function of the file /admin/registration.php of the component Registration Handler. The manipulation of the argument fname results in sql injection. It is possible to launch the attack...

7.5CVSS6.8AI score0.00333EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2026/03/02 2:32 a.m.7 views

CVE-2026-3406 projectworlds Online Art Gallery Shop Registration registration.php sql injection

A vulnerability was found in projectworlds Online Art Gallery Shop 1.0. The impacted element is an unknown function of the file /admin/registration.php of the component Registration Handler. The manipulation of the argument fname results in sql injection. It is possible to launch the attack...

7.5CVSS6.8AI score0.00333EPSS
Exploits1References4
attackerkb
attackerkb
added 2026/03/02 2:32 a.m.9 views

CVE-2026-3406

A vulnerability was found in projectworlds Online Art Gallery Shop 1.0. The impacted element is an unknown function of the file /admin/registration.php of the component Registration Handler. The manipulation of the argument fname results in sql injection. It is possible to launch the attack...

9.8CVSS5.7AI score0.00333EPSS
Exploits1References4Affected Software1
cnnvd
cnnvd
added 2026/03/02 12:0 a.m.7 views

Projectworlds Online Art Gallery Shop SQL注入漏洞

Projectworlds Online Art Gallery Shop is an online art gallery store open sourced by Projectworlds. Version 1.0 of Projectworlds Online Art Gallery Shop has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter fname in the file admin/registration.php,...

9.8CVSS7.2AI score0.00333EPSS
Exploits1References5
ptsecurity
ptsecurity
added 2026/02/19 12:0 a.m.10 views

PT-2026-20619

The WP Customer Reviews plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'wpcr3 fname' parameter in all versions up to, and including, 3.7.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

7.2CVSS5.8AI score0.00255EPSS
Exploits0References7
osv
osv
added 2026/01/02 7:15 p.m.5 views

CVE-2026-0570

A vulnerability was found in code-projects Online Music Site 1.0. This impacts an unknown function of the file /Frontend/Feedback.php. Performing a manipulation of the argument fname results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

9.8CVSS5.8AI score0.00385EPSS
Exploits1References5
nvd
nvd
added 2026/01/02 7:15 p.m.12 views

CVE-2026-0570

A vulnerability was found in code-projects Online Music Site 1.0. This impacts an unknown function of the file /Frontend/Feedback.php. Performing a manipulation of the argument fname results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

9.8CVSS0.00385EPSS
Exploits1References5
attackerkb
attackerkb
added 2026/01/02 7:2 p.m.5 views

CVE-2026-0570

A vulnerability was found in code-projects Online Music Site 1.0. This impacts an unknown function of the file /Frontend/Feedback.php. Performing a manipulation of the argument fname results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used...

9.8CVSS7.2AI score0.00385EPSS
Exploits1References5Affected Software1
cve
cve
added 2026/01/02 7:2 p.m.19 views

CVE-2026-0570

CVE-2026-0570 affects code-projects Online Music Site 1.0. The vulnerability is an SQL injection in /Frontend/Feedback.php caused by manipulation of the fname parameter. It can be exploited remotely, and the exploit has been publicly released. Remediation guidance from connected sources calls for...

9.8CVSS7.2AI score0.00385EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder