CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

245 matches found

EUVD-2026-33644

A vulnerability has been found in code-projects Real State Services 1.0. This impacts an unknown function of the file /loginuser.php of the component Login. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to th...

7.5CVSS6.8AI score0.00033EPSS

Exploits0References6

CNNVD•added 4 days ago•5 views

Code-Projects Real Estate Services SQL Injection Vulnerabilities

Code-Projects Real State Services is an open-source real estate service developed by Code-Projects. Version 1.0 of Code-Projects Real State Services has a SQL injection vulnerability. This vulnerability stems from incorrect handling of the parameter “Username” in the “login” component’s file...

7.5CVSS5.8AI score0.00033EPSS

Exploits0References6

Positive Technologies•added 4 days ago•9 views

PT-2026-45424

7.5CVSS5.6AI score0.00033EPSS

Exploits0References7

Positive Technologies•added 4 days ago•10 views

PT-2026-45269

A vulnerability was detected in raisulislamg4 student management system by php up to 310d950e09013d5133c6b9210aff9444382d16d1. This issue affects some unknown processing of the file login check.php of the component Login. Performing a manipulation of the argument Username results in sql injection...

7.5CVSS6.9AI score0.00033EPSS

Exploits0References7

Cvelist•added 2026/05/26 9:15 p.m.•24 views

CVE-2026-9584 code-projects Project Management System Login chk.php sql injection

A security vulnerability has been detected in code-projects Project Management System 1.0. Affected is an unknown function of the file chk.php of the component Login. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed publicly a...

7.5CVSS0.00039EPSS

Exploits0References5

EUVD•added 2026/05/26 9:15 p.m.•11 views

EUVD-2026-32004

7.5CVSS6.8AI score0.00039EPSS

Exploits0References5

ATTACKERKB•added 2026/05/26 9:15 p.m.•9 views

CVE-2026-9584

7.5CVSS6.8AI score0.00039EPSS

Exploits0References5Affected Software1

RedhatCVE•added 2026/05/26 8:14 p.m.•10 views

CVE-2026-9357

A vulnerability was found in vBulletin 6.x. This impacts an unknown function of the component Login. Performing a manipulation results in cross site scripting. It is possible to initiate the attack remotely. The exploit has been made public and could be used. VulDB is withholding an extended...

5.1CVSS4.3AI score0.00028EPSS

Exploits0References1

CNNVD•added 2026/05/26 12:0 a.m.•5 views

Code-Projects Project Management System SQL注入漏洞

Code-Projects Project Management System is an open-source project management system developed by Code-Projects. Version 1.0 of the Code-Projects Project Management System contains a SQL injection vulnerability. This vulnerability stems from incorrect operations in the chk.php file of the Login...

7.5CVSS7.2AI score0.00039EPSS

Exploits0References5

Positive Technologies•added 2026/05/26 12:0 a.m.•10 views

PT-2026-43426

Name of the Vulnerable Software and Affected Versions code-projects Project Management System version 1.0 Description A SQL injection issue exists within the Login component in the chk.php file. This flaw allows a remote attacker to manipulate an unknown function to execute arbitrary SQL commands...

7.5CVSS7.4AI score0.00039EPSS

Exploits0References7

Cvelist•added 2026/05/24 5:15 a.m.•9 views

CVE-2026-9357 vBulletin Login cross site scripting

5.1CVSS0.00028EPSS

Exploits0References3

CNNVD•added 2026/05/24 12:0 a.m.•5 views

vBulletin 代码注入漏洞

vBulletin is an open-source web forum software based on PHP and MySQL developed by vBulletin Inc. Version vBulletin 6.x has a code injection vulnerability, which stems from improper operation of the Login component and may lead to cross-site scripting attacks...

5.1CVSS5.7AI score0.00028EPSS

Exploits0References4

NVD•added 2026/04/27 1:16 a.m.•2 views

CVE-2026-7070

A weakness has been identified in code-projects Inventory Management System 1.0. Affected is an unknown function of the component Login. Executing a manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been made available to the...

7.5CVSS0.00043EPSS

Exploits0References5

Cvelist•added 2026/04/27 12:15 a.m.•24 views

CVE-2026-7070 code-projects Inventory Management System Login sql injection

7.5CVSS0.00043EPSS

Exploits0References5

EUVD•added 2026/04/27 12:15 a.m.•1 views

EUVD-2026-25746

7.5CVSS7.3AI score0.00043EPSS

Exploits0References5

Vulnrichment•added 2026/04/27 12:15 a.m.•0 views

CVE-2026-7070 code-projects Inventory Management System Login sql injection

7.5CVSS7.3AI score0.00043EPSS

Exploits0References5

CNNVD•added 2026/04/27 12:0 a.m.•5 views

Code-Projects Inventory Management System 注入漏洞

The Code-Projects Inventory Management System is an open-source inventory management system developed by Code-Projects. Version 1.0 of the Code-Projects Inventory Management System has a vulnerability related to injection attacks. This vulnerability stems from the handling of the Username paramet...

7.5CVSS7.2AI score0.00043EPSS

Exploits0References1

Positive Technologies•added 2026/04/27 12:0 a.m.•2 views

PT-2026-35281

7.5CVSS7.2AI score0.00043EPSS

Exploits0References6

EUVD•added 2026/04/06 6:33 p.m.•3 views

EUVD-2026-19315

A security vulnerability has been detected in code-projects Online FIR System 1.0. Affected by this vulnerability is an unknown functionality of the file /Login/checklogin.php of the component Login. The manipulation of the argument email/password leads to sql injection. The attack is possible to...

7.5CVSS6.8AI score0.00043EPSS

Exploits0References6

NVD•added 2026/04/06 4:16 p.m.•3 views

CVE-2026-5665

7.5CVSS0.00043EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by