Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21811 matches found

NVD
NVDadded 2026/04/06 8:16 p.m.1 views

CVE-2026-5681

A flaw has been found in itsourcecode sanitize or validate this input 1.0. This impacts an unknown function of the file /borrowedequip.php of the component Parameter Handler. This manipulation of the argument empid causes sql injection. The attack is possible to be carried out remotely. The explo...

6.5CVSS0.00036EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/04/06 7:15 p.m.17 views

CVE-2026-5681 itsourcecode sanitize or validate this input Parameter borrowedequip.php sql injection

A flaw has been found in itsourcecode sanitize or validate this input 1.0. This impacts an unknown function of the file /borrowedequip.php of the component Parameter Handler. This manipulation of the argument empid causes sql injection. The attack is possible to be carried out remotely. The explo...

6.5CVSS0.00036EPSS
Exploits0References5
CVE
CVEadded 2026/04/06 7:15 p.m.7 views

CVE-2026-5681

CVE-2026-5681 affects the itsourcecode component’s Parameter Handler, specifically the /borrowedequip.php file where the emp_id input is not properly sanitized/validated, enabling a remote SQL injection. Exploits have been published and may be used. CVSS data indicates MEDIUM severity (CVSS 4.0 b...

6.5CVSS6.4AI score0.00036EPSS
Exploits0References5
EUVD
EUVDadded 2026/04/06 6:33 p.m.3 views

EUVD-2026-19430

A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. Affected by this issue is some unknown functionality of the file /edit-category.php of the component Parameter Handler. The manipulation of the argument catid leads to sql injection. It is possible to initiate the...

7.5CVSS6.8AI score0.00043EPSS
Exploits0References6
EUVD
EUVDadded 2026/04/06 6:33 p.m.1 views

EUVD-2026-19432

A vulnerability was found in itsourcecode Construction Management System 1.0. This affects an unknown part of the file /borrowedtool.php of the component Parameter Handler. The manipulation of the argument emp results in sql injection. It is possible to launch the attack remotely. The exploit has...

6.5CVSS6.4AI score0.00036EPSS
Exploits0References6
EUVD
EUVDadded 2026/04/06 6:33 p.m.1 views

EUVD-2026-19364

A vulnerability was detected in code-projects Online FIR System 1.0. Affected by this issue is some unknown functionality of the file /complaints.sql of the component SQL Database Backup File Handler. The manipulation results in insecure storage of sensitive information. The attack may be perform...

6.9CVSS5.8AI score0.00044EPSS
Exploits0References6
NVD
NVDadded 2026/04/06 6:16 p.m.2 views

CVE-2026-5675

A vulnerability was found in itsourcecode Construction Management System 1.0. This affects an unknown part of the file /borrowedtool.php of the component Parameter Handler. The manipulation of the argument emp results in sql injection. It is possible to launch the attack remotely. The exploit has...

6.5CVSS0.00036EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/06 6:0 p.m.1 views

CVE-2026-5675

A vulnerability was found in itsourcecode Construction Management System 1.0. This affects an unknown part of the file /borrowedtool.php of the component Parameter Handler. The manipulation of the argument emp results in sql injection. It is possible to launch the attack remotely. The exploit has...

6.5CVSS6.4AI score0.00036EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVEadded 2026/04/06 5:0 p.m.2 views

CVE-2026-5564

A weakness has been identified in code-projects Simple Laundry System 1.0. Affected by this vulnerability is an unknown functionality of the file /searchguest.php of the component Parameter Handler. This manipulation of the argument searchServiceId causes sql injection. The attack may be initiate...

7.5CVSS6.8AI score0.00043EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/06 5:0 p.m.1 views

CVE-2026-5571

A vulnerability was identified in Technostrobe HI-LED-WR120-G2 5.5.0.1R6.03.30. The impacted element is an unknown function of the file /fs of the component Configuration Data Handler. Such manipulation of the argument File leads to information disclosure. It is possible to launch the attack...

7.5CVSS5.7AI score0.00054EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/04/06 5:0 p.m.3 views

CVE-2026-5579

A vulnerability was determined in CodeAstro Online Classroom 1.0. This issue affects some unknown processing of the file /OnlineClassroom/updatedetailsfromfaculty.php?myfid=108 of the component Parameter Handler. Executing a manipulation of the argument fname can lead to sql injection. The attack...

6.5CVSS6.5AI score0.00012EPSS
Exploits0References1
NVD
NVDadded 2026/04/06 4:16 p.m.1 views

CVE-2026-5666

A vulnerability was detected in code-projects Online FIR System 1.0. Affected by this issue is some unknown functionality of the file /complaints.sql of the component SQL Database Backup File Handler. The manipulation results in insecure storage of sensitive information. The attack may be perform...

6.9CVSS0.00044EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/04/06 4:12 p.m.3 views

CVE-2026-34773

A flaw was found in Electron, a framework for building desktop applications. On Windows, the app.setAsDefaultProtocolClient function did not properly validate protocol names before writing to the system registry. This vulnerability could allow a local attacker, through an application that process...

7.5CVSS6AI score0.00023EPSS
Exploits0References4
EUVD
EUVDadded 2026/04/06 3:31 p.m.1 views

EUVD-2026-19241

A vulnerability was identified in Free5GC 4.2.0. This affects an unknown function of the component NGSetupRequest Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit is publicly available and might be used...

6.9CVSS5.7AI score0.00082EPSS
Exploits0References8
EUVD
EUVDadded 2026/04/06 3:31 p.m.2 views

EUVD-2026-19239

A vulnerability was determined in itsourcecode Construction Management System 1.0. The impacted element is an unknown function of the file /borrowedequip.php of the component Parameter Handler. This manipulation of the argument emp causes sql injection. The attack may be initiated remotely. The...

6.5CVSS6.5AI score0.00036EPSS
Exploits0References6
NVD
NVDadded 2026/04/06 3:17 p.m.0 views

CVE-2026-5661

A vulnerability was identified in Free5GC 4.2.0. This affects an unknown function of the component NGSetupRequest Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit is publicly available and might be used...

6.9CVSS0.00082EPSS
Exploits0References7
Cvelist
Cvelistadded 2026/04/06 2:8 p.m.23 views

CVE-2026-5661 Free5GC NGSetupRequest denial of service

A vulnerability was identified in Free5GC 4.2.0. This affects an unknown function of the component NGSetupRequest Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit is publicly available and might be used...

6.9CVSS0.00082EPSS
Exploits0References7
CVE
CVEadded 2026/04/06 1:45 p.m.4 views

CVE-2026-5660

CVE-2026-5660 affects itsourcecode Construction Management System 1.0. The vulnerability is an SQL injection in the Parameter Handler’s unknown function for the file /borrowed_equip.php, triggered by manipulating the emp argument. This may be exploited remotely, with exploit maturity listed as PR...

6.5CVSS6.5AI score0.00036EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/04/06 1:45 p.m.25 views

CVE-2026-5660 itsourcecode Construction Management System Parameter borrowed_equip.php sql injection

A vulnerability was determined in itsourcecode Construction Management System 1.0. The impacted element is an unknown function of the file /borrowedequip.php of the component Parameter Handler. This manipulation of the argument emp causes sql injection. The attack may be initiated remotely. The...

6.5CVSS0.00036EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/04/06 1:0 p.m.0 views

CVE-2026-5659 pytries datrie trie File datrie.pyx Trie.__setstate__ deserialization

A vulnerability was found in pytries datrie up to 0.8.3. The affected element is the function Trie.load/Trie.read/Trie.setstate of the file src/datrie.pyx of the component trie File Handler. The manipulation results in deserialization. The attack can be launched remotely. The exploit has been mad...

7.5CVSS6.2AI score0.00053EPSS
Exploits0References6
Rows per page
Query Builder