CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/02/24 11:32 p.m.•5 views

CVE-2026-3133

CVE-2026-3133 affects itsourcecode Document Management System 1.0. The vulnerability arises in the Login component’s /loging.php when processing the Username argument, allowing a SQL injection. Exploitation is remote and has been disclosed publicly. Multiple sources (NVD, Red Hat, EUVD, CIRCL, CV...

9.8CVSS5.2AI score0.00015EPSS

OSV•added 2026/02/24 4:15 a.m.•1 views

CVE-2026-3068

A weakness has been identified in itsourcecode Document Management System 1.0. This impacts an unknown function of the file /deluser.php. Executing a manipulation of the argument user2del can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the...

9.8CVSS5.8AI score

Exploits0References5

Vulnrichment•added 2026/02/24 4:2 a.m.•5 views

CVE-2026-3069 itsourcecode Document Management System edtlbls.php sql injection

A security vulnerability has been detected in itsourcecode Document Management System 1.0. Affected is an unknown function of the file /edtlbls.php. The manipulation of the argument field1 leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed publicly and ma...

7.5CVSS5.4AI score0.00045EPSS

CVE•added 2026/02/24 4:2 a.m.•7 views

CVE-2026-3069

The CVE-2026-3069 entry concerns itsourcecode Document Management System 1.0. Affected is the /edtlbls.php file, where manipulating the field1 argument leads to SQL injection. The vulnerability is described as exploitable remotely and publicly disclosed. Connected sources corroborate the affected...

9.8CVSS7.3AI score0.00045EPSS

Cvelist•added 2026/02/24 4:2 a.m.•22 views

CVE-2026-3069 itsourcecode Document Management System edtlbls.php sql injection

7.5CVSS0.00045EPSS

EUVD•added 2026/02/24 4:2 a.m.•4 views

EUVD-2026-7394

9.8CVSS5.4AI score0.00045EPSS

ATTACKERKB•added 2026/02/24 4:2 a.m.•4 views

CVE-2026-3069

7.5CVSS5.4AI score0.00045EPSS

CVE•added 2026/02/24 3:32 a.m.•5 views

CVE-2026-3068

CVE-2026-3068 affects itsourcecode Document Management System 1.0. The vulnerability resides in /deluser.php, where manipulating the user2del parameter allows remote SQL injection. Multiple connected sources confirm the flaw, its remote exploitability, and public availability of the exploit. PT-2...

9.8CVSS7.3AI score0.00045EPSS

CVE•added 2026/02/24 12:32 a.m.•5 views

CVE-2026-3046

CVE-2026-3046 affects itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. The vulnerable code is the file /check_profile_old.php, where manipulating the argument profile_id enables a SQL injection. Public exploitation is possible and the exploit has been disclosed. Multiple con...

9.8CVSS7.2AI score0.00045EPSS

Cvelist•added 2026/02/24 12:32 a.m.•17 views

CVE-2026-3046 itsourcecode E-Logbook with Health Monitoring System for COVID-19 check_profile_old.php sql injection

A security vulnerability has been detected in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. This vulnerability affects unknown code of the file /checkprofileold.php. The manipulation of the argument profileid leads to sql injection. Remote exploitation of the attack is...

7.5CVSS0.00045EPSS

OSV•added 2026/02/24 12:16 a.m.•1 views

CVE-2026-3043

A flaw has been found in itsourcecode Event Management System 1.0. The impacted element is an unknown function of the file /admin/navbar.php. Executing a manipulation of the argument page can lead to cross site scripting. The attack may be performed from remote. The exploit has been published and...

6.1CVSS4AI score0.00056EPSS

NVD•added 2026/02/24 12:16 a.m.•2 views

CVE-2026-3043

6.1CVSS0.00056EPSS

NVD•added 2026/02/24 12:16 a.m.•3 views

CVE-2026-3042

A vulnerability was detected in itsourcecode Event Management System 1.0. The affected element is an unknown function of the file /admin/index.php. Performing a manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit is now public a...

9.8CVSS0.00045EPSS

9.8CVSS7.1AI score0.00045EPSS

itsourcecode Document Management System SQL注入漏洞

itsourcecode Document Management System is an open-source document management system developed by itsourcecode. Version 1.0 of the itsourcecode Document Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter field1 in the file...

9.8CVSS7.2AI score0.00045EPSS

itsourcecode Document Management System SQL注入漏洞

itsourcecode Document Management System is an open-source document management system developed by itsourcecode. Version 1.0 of the itsourcecode Document Management System has a SQL injection vulnerability. This vulnerability stems from incorrect handling of the parameter “user2del” in the...

6.1CVSS5.7AI score0.00056EPSS

itsourcecode Event Management System 代码注入漏洞

itsourcecode Event Management System is an open-source event management system developed by itsourcecode. Version 1.0 of the itsourcecode Event Management System contains a code injection vulnerability. This vulnerability arises from incorrect handling of the parameter “page” in the file...

9.8CVSS7.2AI score0.00045EPSS

itsourcecode Event Management System SQL注入漏洞

itsourcecode Event Management System is an open-source event management system developed by itsourcecode. Version 1.0 of the itsourcecode Event Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter ID in the file /admin/index.php,...

ATTACKERKB•added 2026/02/23 11:2 p.m.•3 views

CVE-2026-3043

5.3CVSS3.7AI score0.00056EPSS

CVE•added 2026/02/23 11:2 p.m.•6 views

CVE-2026-3043

The CVE-2026-3043 affects itsourcecode Event Management System 1.0, specifically the /admin/navbar.php component. The root cause is a cross-site scripting flaw triggered by manipulation of the page argument, allowing remote execution of a script. The advisory notes that the attack can be performe...

6.1CVSS3.5AI score0.00056EPSS