Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

104779 matches found

NVD
NVDadded 2026/06/08 1:16 p.m.11 views

CVE-2026-11513

A vulnerability was detected in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminaccount.php. The manipulation of the argument Date results in sql injection. The attack can be launched remotely. The exploit is now public and may be used...

6.5CVSS0.002EPSS
Exploits0References6
NVD
NVDadded 2026/06/08 1:16 p.m.10 views

CVE-2026-11512

A security vulnerability has been detected in itsourcecode Hospital Management System 1.0. This issue affects some unknown processing of the file /billing.php. The manipulation of the argument patientid leads to cross site scripting. The attack can be initiated remotely. The exploit has been...

5.3CVSS0.00273EPSS
Exploits0References6
NVD
NVDadded 2026/06/08 1:16 p.m.7 views

CVE-2026-11514

A flaw has been found in itsourcecode Hospital Management System 1.0. The affected element is an unknown function of the file /addpatient.php. This manipulation of the argument admissiontme causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

6.5CVSS0.002EPSS
Exploits0References6
CVE
CVEadded 2026/06/08 1:15 p.m.15 views

CVE-2026-11517

UTT HiPER 2610G (up to 3.0.0‑171107) is affected by a buffer overflow in the strcpy handling of the GroupName argument within /goform/formConfigDnsFilterGlobal. The root cause is an overflow in strcpy usage, enabling remote, unauthenticated manipulation to potentially overwrite memory. Public exp...

9CVSS8.2AI score0.006EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/06/08 1:0 p.m.5 views

CVE-2026-11516 UTT HiPER 2610G formNatStaticMap strcpy buffer overflow

A vulnerability was found in UTT HiPER 2610G up to 3.0.0-171107. This affects the function strcpy of the file /goform/formNatStaticMap. Performing a manipulation of the argument NatBinds results in buffer overflow. The exploit has been made public and could be used...

5.5CVSS6.2AI score0.0037EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/06/08 12:58 p.m.36 views

CVE-2026-49234 Routinator crashes on specifically crafted ASN strings in the API

When sending a specifically crafted non-UTF-8 string as select-asn query parameter to the /api/v1/origins endpoint, Routinator crashes. This only affects users who allow API access from untrusted networks...

8.2CVSS0.00259EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/08 12:58 p.m.5 views

CVE-2026-49234

When sending a specifically crafted non-UTF-8 string as select-asn query parameter to the /api/v1/origins endpoint, Routinator crashes. This only affects users who allow API access from untrusted networks...

8.2CVSS5.4AI score0.00259EPSS
Exploits0References2
NVD
NVDadded 2026/06/08 12:16 p.m.13 views

CVE-2026-11508

A vulnerability was determined in CodeAstro Leave Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/searchstafftoassignpc.php. This manipulation of the argument Name causes sql injection. The attack is possible to be carried out remotely. The...

6.5CVSS0.002EPSS
Exploits0References6
NVD
NVDadded 2026/06/08 12:16 p.m.10 views

CVE-2026-11510

A security flaw has been discovered in CodeAstro Leave Management System 1.0. This affects an unknown part of the file /admin/addleave.php. Performing a manipulation of the argument typeofleave results in sql injection. It is possible to initiate the attack remotely. The exploit has been released...

6.5CVSS0.002EPSS
Exploits0References6
NVD
NVDadded 2026/06/08 12:16 p.m.12 views

CVE-2026-11509

A vulnerability was identified in CodeAstro Leave Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/searchstaffforupdation.php. Such manipulation of the argument Name leads to sql injection. The attack may be performed from remote...

6.5CVSS0.00192EPSS
Exploits0References5
CVE
CVEadded 2026/06/08 12:15 p.m.12 views

CVE-2026-11513

The vulnerability CVE-2026-11513 affects itsourcecode Hospital Management System 1.0. The issue is an SQL injection in an unknown function of /adminaccount.php triggered by manipulating the Date argument. It can be exploited remotely and an exploit is public. CVSS data is provided (v3.1/3.0/2.0 v...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/06/08 12:15 p.m.38 views

CVE-2026-11513 itsourcecode Hospital Management System adminaccount.php sql injection

A vulnerability was detected in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminaccount.php. The manipulation of the argument Date results in sql injection. The attack can be launched remotely. The exploit is now public and may be used...

6.5CVSS0.002EPSS
Exploits0References6
EUVD
EUVDadded 2026/06/08 12:15 p.m.5 views

EUVD-2026-35055

A vulnerability was detected in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminaccount.php. The manipulation of the argument Date results in sql injection. The attack can be launched remotely. The exploit is now public and may be used...

6.5CVSS6.6AI score0.002EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/06/08 12:15 p.m.4 views

CVE-2026-11513

A vulnerability was detected in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminaccount.php. The manipulation of the argument Date results in sql injection. The attack can be launched remotely. The exploit is now public and may be used...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6Affected Software1
CVE
CVEadded 2026/06/08 12:0 p.m.10 views

CVE-2026-11512

CVE-2026-11512 affects itsourcecode Hospital Management System 1.0. The vulnerability arises from handling of the patientid argument in /billing.php, enabling cross-site scripting (XSS). The issue is exploitable remotely, and the exploit has been publicly disclosed. CVSS metrics indicate a networ...

5.3CVSS3.8AI score0.00273EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/06/08 12:0 p.m.36 views

CVE-2026-11512 itsourcecode Hospital Management System billing.php cross site scripting

A security vulnerability has been detected in itsourcecode Hospital Management System 1.0. This issue affects some unknown processing of the file /billing.php. The manipulation of the argument patientid leads to cross site scripting. The attack can be initiated remotely. The exploit has been...

5.3CVSS0.00273EPSS
Exploits0References6
EUVD
EUVDadded 2026/06/08 12:0 p.m.5 views

EUVD-2026-35060

A security vulnerability has been detected in itsourcecode Hospital Management System 1.0. This issue affects some unknown processing of the file /billing.php. The manipulation of the argument patientid leads to cross site scripting. The attack can be initiated remotely. The exploit has been...

5.3CVSS3.8AI score0.00273EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/06/08 11:15 a.m.3 views

CVE-2026-11509

A vulnerability was identified in CodeAstro Leave Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/searchstaffforupdation.php. Such manipulation of the argument Name leads to sql injection. The attack may be performed from remote...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichmentadded 2026/06/08 11:15 a.m.7 views

CVE-2026-11509 CodeAstro Leave Management System search_staff_for_updation.php sql injection

A vulnerability was identified in CodeAstro Leave Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/searchstaffforupdation.php. Such manipulation of the argument Name leads to sql injection. The attack may be performed from remote...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References5
EUVD
EUVDadded 2026/06/08 11:15 a.m.10 views

EUVD-2026-35048

A vulnerability was identified in CodeAstro Leave Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/searchstaffforupdation.php. Such manipulation of the argument Name leads to sql injection. The attack may be performed from remote...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References5
Rows per page
Query Builder