Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

104849 matches found

CVE
CVEadded 2026/06/08 12:15 p.m.12 views

CVE-2026-11513

The vulnerability CVE-2026-11513 affects itsourcecode Hospital Management System 1.0. The issue is an SQL injection in an unknown function of /adminaccount.php triggered by manipulating the Date argument. It can be exploited remotely and an exploit is public. CVSS data is provided (v3.1/3.0/2.0 v...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6
Cvelist
Cvelistadded 2026/06/08 12:15 p.m.38 views

CVE-2026-11513 itsourcecode Hospital Management System adminaccount.php sql injection

A vulnerability was detected in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminaccount.php. The manipulation of the argument Date results in sql injection. The attack can be launched remotely. The exploit is now public and may be used...

6.5CVSS0.002EPSS
Exploits0References6
EUVD
EUVDadded 2026/06/08 12:15 p.m.5 views

EUVD-2026-35055

A vulnerability was detected in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminaccount.php. The manipulation of the argument Date results in sql injection. The attack can be launched remotely. The exploit is now public and may be used...

6.5CVSS6.6AI score0.002EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/06/08 12:15 p.m.4 views

CVE-2026-11513

A vulnerability was detected in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminaccount.php. The manipulation of the argument Date results in sql injection. The attack can be launched remotely. The exploit is now public and may be used...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2026/06/08 12:0 p.m.37 views

CVE-2026-11512 itsourcecode Hospital Management System billing.php cross site scripting

A security vulnerability has been detected in itsourcecode Hospital Management System 1.0. This issue affects some unknown processing of the file /billing.php. The manipulation of the argument patientid leads to cross site scripting. The attack can be initiated remotely. The exploit has been...

5.3CVSS0.00273EPSS
Exploits0References6
CVE
CVEadded 2026/06/08 12:0 p.m.11 views

CVE-2026-11512

CVE-2026-11512 affects itsourcecode Hospital Management System 1.0. The vulnerability arises from handling of the patientid argument in /billing.php, enabling cross-site scripting (XSS). The issue is exploitable remotely, and the exploit has been publicly disclosed. CVSS metrics indicate a networ...

5.3CVSS3.8AI score0.00273EPSS
Exploits0References6
EUVD
EUVDadded 2026/06/08 12:0 p.m.6 views

EUVD-2026-35060

A security vulnerability has been detected in itsourcecode Hospital Management System 1.0. This issue affects some unknown processing of the file /billing.php. The manipulation of the argument patientid leads to cross site scripting. The attack can be initiated remotely. The exploit has been...

5.3CVSS3.8AI score0.00273EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/06/08 11:15 a.m.3 views

CVE-2026-11509

A vulnerability was identified in CodeAstro Leave Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/searchstaffforupdation.php. Such manipulation of the argument Name leads to sql injection. The attack may be performed from remote...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichmentadded 2026/06/08 11:15 a.m.7 views

CVE-2026-11509 CodeAstro Leave Management System search_staff_for_updation.php sql injection

A vulnerability was identified in CodeAstro Leave Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/searchstaffforupdation.php. Such manipulation of the argument Name leads to sql injection. The attack may be performed from remote...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References5
EUVD
EUVDadded 2026/06/08 11:15 a.m.10 views

EUVD-2026-35048

A vulnerability was identified in CodeAstro Leave Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/searchstaffforupdation.php. Such manipulation of the argument Name leads to sql injection. The attack may be performed from remote...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References5
EUVD
EUVDadded 2026/06/08 11:0 a.m.7 views

EUVD-2026-35045

A vulnerability was determined in CodeAstro Leave Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/searchstafftoassignpc.php. This manipulation of the argument Name causes sql injection. The attack is possible to be carried out remotely. The...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6
EUVD
EUVDadded 2026/06/08 10:30 a.m.7 views

EUVD-2026-35042

A vulnerability has been found in CodeAstro Leave Management System 1.0. This impacts an unknown function of the file /admin/searchstafffordeletion.php. The manipulation of the argument Name leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to t...

6.5CVSS6.4AI score0.002EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/06/08 10:30 a.m.4 views

CVE-2026-11506

A vulnerability has been found in CodeAstro Leave Management System 1.0. This impacts an unknown function of the file /admin/searchstafffordeletion.php. The manipulation of the argument Name leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to t...

6.5CVSS6.4AI score0.002EPSS
Exploits0References6Affected Software1
CVE
CVEadded 2026/06/08 10:30 a.m.16 views

CVE-2026-11506

CVE-2026-11506 affects CodeAstro Leave Management System 1.0. The vulnerability is an SQL injection in the file /admin/search_staff_for_deletion.php caused by manipulation of the Name parameter, enabling remote exploitation. Public exploit disclosure is noted. The connected records indicate this ...

6.5CVSS6.4AI score0.002EPSS
Exploits0References6
NVD
NVDadded 2026/06/08 10:16 a.m.10 views

CVE-2026-11501

A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This issue affects some unknown processing of the file /classes/Master.php?f=savepatient. The manipulation of the argument ID results in sql injection. It is possible to launch the attack...

7.5CVSS0.00412EPSS
Exploits0References6
NVD
NVDadded 2026/06/08 10:16 a.m.11 views

CVE-2026-11503

A security vulnerability has been detected in Tenda CX12L 16.03.53.12. The affected element is the function formfastsettingwifiset of the file /goform/fastsettingwifiset of the component Wi-Fi Configuration Endpoint. Such manipulation of the argument ssid leads to stack-based buffer overflow. The...

9CVSS0.00796EPSS
Exploits0References6
EUVD
EUVDadded 2026/06/08 9:45 a.m.7 views

EUVD-2026-35038

A security vulnerability has been detected in Tenda CX12L 16.03.53.12. The affected element is the function formfastsettingwifiset of the file /goform/fastsettingwifiset of the component Wi-Fi Configuration Endpoint. Such manipulation of the argument ssid leads to stack-based buffer overflow. The...

9CVSS6.2AI score0.00796EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/06/08 9:45 a.m.6 views

CVE-2026-11503 Tenda CX12L Wi-Fi Configuration Endpoint fast_setting_wifi_set form_fast_setting_wifi_set stack-based overflow

A security vulnerability has been detected in Tenda CX12L 16.03.53.12. The affected element is the function formfastsettingwifiset of the file /goform/fastsettingwifiset of the component Wi-Fi Configuration Endpoint. Such manipulation of the argument ssid leads to stack-based buffer overflow. The...

9CVSS8.4AI score0.00796EPSS
Exploits0References6
CVE
CVEadded 2026/06/08 9:28 a.m.27 views

CVE-2026-9506

The CVE-2026-9506 issue affects Bagisto in the ImageCacheController where improper validation of user-supplied input enables path traversal via the filename parameter. This unauthenticated remote attacker could read arbitrary sensitive files outside the intended directory, as stated in the connec...

8.7CVSS5.7AI score0.00455EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/08 9:28 a.m.34 views

CVE-2026-9506 Path Traversal Vulnerability in Bagisto

This vulnerability exists in Bagisto due to improper validation of user-supplied input in the ImageCacheController component. An unauthenticated remote attacker could exploit this vulnerability by sending crafted path traversal sequences through the filename parameter to access arbitrary files...

8.7CVSS0.00455EPSS
Exploits0References1
Rows per page
Query Builder