CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/03/28 12:0 a.m.•8 views

Code-Projects Simple Food Order System SQL注入漏洞

Code-Projects Simple Food Order System is a simple food ordering system developed by Code-Projects as open source. Version 1.0 of the Code-Projects Simple Food Order System has a SQL injection vulnerability. This vulnerability stems from an unknown function in the Component Parameter Handler’s fi...

9.8CVSS7.1AI score0.00045EPSS

CNNVD•added 2026/03/28 12:0 a.m.•3 views

Code-Projects Simple Food Order System SQL注入漏洞

Code-Projects Simple Food Order System is a simple food ordering system developed by Code-Projects as open source. Version 1.0 of the Code-Projects Simple Food Order System has a SQL injection vulnerability. This vulnerability stems from improper handling of parameters by the unknown function in...

9.8CVSS7.1AI score0.00045EPSS

Positive Technologies•added 2026/03/28 12:0 a.m.•4 views

PT-2026-28732

Name of the Vulnerable Software and Affected Versions Simple Food Order System version 1.0 Description A flaw exists in Simple Food Order System 1.0 related to the handling of parameters. Specifically, manipulating the Name argument can lead to SQL injection. This issue affects an unknown functio...

7.5CVSS5.8AI score0.00045EPSS

Exploits1References7

EUVD•added 2026/03/27 3:30 p.m.•2 views

EUVD-2026-16656

A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.44. The affected element is an unknown function of the file /DevicePrint.do?Action=ReadTask of the component Parameter Handler. The manipulation of the argument State results in sql injection. The attack can be launch...

7.5CVSS6.9AI score0.00014EPSS

Exploits0References5

EUVD•added 2026/03/27 3:31 a.m.•0 views

EUVD-2026-16527

7.5CVSS6.8AI score0.00015EPSS

Vulnrichment•added 2026/03/27 2:25 a.m.•2 views

CVE-2026-4908 code-projects Simple Laundry System Parameter modstaffinfo.php sql injection

7.5CVSS6.8AI score0.00015EPSS

Positive Technologies•added 2026/03/27 12:0 a.m.•2 views

PT-2026-28682

7.5CVSS5.8AI score0.00014EPSS

Exploits0References5

RedhatCVE•added 2026/03/26 3:15 p.m.•2 views

CVE-2026-4614

A vulnerability was determined in itsourcecode sanitize or validate this input 1.0. This issue affects some unknown processing of the file /admin/subjects.php of the component Parameter Handler. This manipulation of the argument subjectcode causes sql injection. The attack is possible to be carri...

6.5CVSS6.3AI score0.00042EPSS

Exploits0References1

RedhatCVE•added 2026/03/26 3:14 p.m.•2 views

CVE-2026-4510

A weakness has been identified in PbootCMS up to 3.2.12. This impacts the function alertlocation of the file apps/home/controller/MemberController.php of the component Parameter Handler. This manipulation of the argument backurl causes cross site scripting. Remote exploitation of the attack is...

5.3CVSS4.3AI score0.00042EPSS

Exploits0References1

RedhatCVE•added 2026/03/26 3:7 p.m.•2 views

CVE-2026-4784

A vulnerability was found in code-projects Simple Laundry System 1.0. This affects an unknown function of the file /checkcheckout.php of the component Parameter Handler. The manipulation of the argument serviceId results in sql injection. It is possible to launch the attack remotely. The exploit...

7.5CVSS6.7AI score0.00045EPSS

RedhatCVE•added 2026/03/26 3:3 p.m.•2 views

CVE-2026-3975

A security flaw has been discovered in Tenda W3 1.0.0.32204. This issue affects the function formWifiMacFilterGet of the file /goform/WifiMacFilterGet of the component POST Parameter Handler. Performing a manipulation of the argument wlradio results in stack-based buffer overflow. It is possible ...

9CVSS7.9AI score0.00106EPSS

RedhatCVE•added 2026/03/26 2:58 p.m.•2 views

CVE-2026-4008

A flaw has been found in Tenda W3 1.0.0.32204. This issue affects some unknown processing of the file /goform/wifiSSIDset of the component POST Parameter Handler. Executing a manipulation of the argument index/GO can lead to stack-based buffer overflow. It is possible to launch the attack remotel...

9CVSS8AI score0.00112EPSS

EUVD•added 2026/03/26 9:30 a.m.•3 views

EUVD-2026-16138

A vulnerability was identified in code-projects Simple Laundry System 1.0. This impacts an unknown function of the file /modify.php of the component Parameter Handler. The manipulation of the argument firstName leads to cross site scripting. The attack may be initiated remotely. The exploit is...

5.3CVSS3.9AI score0.00056EPSS

Vulnrichment•added 2026/03/26 9:0 a.m.•0 views

CVE-2026-4862 UTT HiPER 1250GW Parameter formConfigDnsFilterGlobal strcpy buffer overflow

A security vulnerability has been detected in UTT HiPER 1250GW up to 3.2.7-210907-180535. This issue affects the function strcpy of the file /goform/formConfigDnsFilterGlobal of the component Parameter Handler. Such manipulation of the argument GroupName leads to buffer overflow. The attack can b...

9CVSS7.8AI score0.00062EPSS

Exploits0References4

NVD•added 2026/03/26 8:16 a.m.•1 views

CVE-2026-4849

6.1CVSS0.00056EPSS

Vulnrichment•added 2026/03/26 7:41 a.m.•0 views

CVE-2026-4850 code-projects Simple Laundry System Parameter checkregisitem.php sql injection

A security flaw has been discovered in code-projects Simple Laundry System 1.0. Affected is an unknown function of the file /checkregisitem.php of the component Parameter Handler. The manipulation of the argument Long-arm-shirtVol results in sql injection. The attack may be launched remotely. The...

7.5CVSS6.8AI score0.00045EPSS

Cvelist•added 2026/03/26 7:41 a.m.•26 views

CVE-2026-4850 code-projects Simple Laundry System Parameter checkregisitem.php sql injection

7.5CVSS0.00045EPSS