CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/04/10 3:15 a.m.•30 views

CVE-2026-6007 itsourcecode Construction Management System del.php sql injection

A vulnerability was found in itsourcecode Construction Management System 1.0. This affects an unknown function of the file /del.php. The manipulation of the argument equipname results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used...

6.5CVSS0.00196EPSS

Cvelist•added 2026/04/10 12:0 a.m.•23 views

CVE-2026-36235

A SQL injection vulnerability was found in the scheduleSubList.php file of itsourcecode Online Student Enrollment System v1.0. The reason for this issue is that the 'subjcode' parameter is directly embedded into the SQL query via string interpolation without any sanitization or validation...

0.00319EPSS

Exploits1References1

Positive Technologies•added 2026/04/10 12:0 a.m.•3 views

PT-2026-31923

itsourcecode Online Student Enrollment System v1.0 is vulnerable to SQL Injection in newCourse.php via the 'coursename' parameter...

5.9AI score0.00319EPSS

Vulnrichment•added 2026/04/10 12:0 a.m.•2 views

CVE-2026-36234

itsourcecode Online Student Enrollment System v1.0 is vulnerable to SQL Injection in newCourse.php via the 'coursename' parameter...

5.9AI score0.00319EPSS

Exploits1References1

Vulnrichment•added 2026/04/10 12:0 a.m.•1 views

CVE-2026-36232

A SQL injection vulnerability was found in the instructorClasses.php file of itsourcecode Online Student Enrollment System v1.0. The reason for this issue is that the 'classId' parameter from $GET'classId' is directly concatenated into the SQL query without any sanitization or validation...

5.8AI score0.00319EPSS

Exploits1References1

CNNVD•added 2026/04/10 12:0 a.m.•4 views

itsourcecode Construction Management System SQL注入漏洞

itsourcecode Construction Management System is an open-source construction management system developed by itsourcecode. Version 1.0 of the itsourcecode Construction Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter equipname in...

6.5CVSS6.7AI score0.00196EPSS

6.5CVSS6.7AI score0.00266EPSS

itsourcecode Construction Management System SQL注入漏洞

9.8CVSS5.8AI score0.00319EPSS

itsourcecode Online Student Enrollment System 安全漏洞

itsourcecode Online Student Enrollment System is an open-source online enrollment system developed by itsourcecode. Version 1.0 of the itsourcecode Online Student Enrollment System contains a security vulnerability. This vulnerability arises from the subjcode parameter in the...

9.8CVSS5.8AI score0.00319EPSS

itsourcecode Online Student Enrollment System 安全漏洞

9.8CVSS5.9AI score0.00319EPSS

itsourcecode Online Student Enrollment System 安全漏洞

CNNVD•added 2026/04/09 12:0 a.m.•4 views

itsourcecode Construction Management System SQL注入漏洞

6.5CVSS6.6AI score0.00192EPSS

Cvelist•added 2026/04/08 11:30 p.m.•27 views

CVE-2026-5823 itsourcecode Construction Management System borrowed_tool_report.php sql injection

A weakness has been identified in itsourcecode Construction Management System 1.0. Affected by this issue is some unknown functionality of the file /borrowedtoolreport.php. This manipulation of the argument Home causes sql injection. It is possible to initiate the attack remotely. The exploit has...

6.5CVSS0.00192EPSS

ATTACKERKB•added 2026/04/08 11:30 p.m.•2 views

CVE-2026-5823

6.5CVSS6.5AI score0.00192EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2026/04/08 11:30 p.m.•3 views

CVE-2026-5823 itsourcecode Construction Management System borrowed_tool_report.php sql injection

6.5CVSS6.5AI score0.00192EPSS