Lucene search
K

14519 matches found

Cvelist
Cvelist
added 5 days ago27 views

CVE-2026-14717 itsourcecode Hospital Management System patientlogin.php sql injection

A vulnerability was detected in itsourcecode Hospital Management System 1.0. The affected element is an unknown function of the file /patientlogin.php. Performing a manipulation of the argument loginid results in sql injection. Remote exploitation of the attack is possible. The exploit is now...

6.5CVSS0.002EPSS
Exploits0References6
NVD
NVD
added 5 days ago7 views

CVE-2026-14701

A vulnerability was detected in code-projects Internship Management System 1.0. This affects an unknown function of the file employer/details/changepassword.php of the component Password Change Endpoint. The manipulation of the argument Current results in sql injection. The attack can be executed...

6.5CVSS0.002EPSS
Exploits0References6
EUVD
EUVD
added 5 days ago10 views

EUVD-2026-41727

A vulnerability was identified in code-projects Online Examination 1.0. This affects an unknown part of the file /update.php?q=addquiz of the component Quiz Creation Feature. The manipulation of the argument name/total/right/wrong/time/tag/desc leads to sql injection. The attack can be initiated...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6
CVE
CVE
added 5 days ago13 views

CVE-2026-14704

CVE-2026-14704 affects the Stephen-Kruger bluebox project up to version 4.5.12. The vulnerability arises from manipulation of an unnamed argument, enabling cross-site scripting. Exploitation is possible remotely, and public PoCs exist. The issue was brought to the project’s attention via an issue...

5.3CVSS4.4AI score0.00282EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 5 days ago5 views

CVE-2026-14704

A vulnerability was found in stephen-kruger bluebox up to 4.5.12. Affected by this vulnerability is an unknown functionality. Performing a manipulation of the argument code results in cross site scripting. It is possible to initiate the attack remotely. The exploit has been made public and could ...

5.3CVSS4.4AI score0.00282EPSS
Exploits0References7Affected Software1
EUVD
EUVD
added 5 days ago8 views

EUVD-2026-41725

A vulnerability was found in stephen-kruger bluebox up to 4.5.12. Affected by this vulnerability is an unknown functionality. Performing a manipulation of the argument code results in cross site scripting. It is possible to initiate the attack remotely. The exploit has been made public and could ...

5.3CVSS4.4AI score0.00282EPSS
Exploits0References7
CVE
CVE
added 5 days ago13 views

CVE-2026-14698

CVE-2026-14698 affects SourceCodester Syllabus-Aligned Learning Management and Examination System 1.0, with the vulnerability in file upload_files.php allowing unrestricted file upload after input manipulation. The CVSS metrics indicate a network-accessible, low-privilege, low-impact vulnerabilit...

6.5CVSS6.3AI score0.00209EPSS
Exploits0References6
EUVD
EUVD
added 5 days ago8 views

EUVD-2026-41723

A security flaw has been discovered in SourceCodester Syllabus-Aligned Learning Management and Examination System 1.0. Impacted is an unknown function of the file uploadfiles.php. Performing a manipulation results in unrestricted upload. The attack may be initiated remotely. The exploit has been...

6.5CVSS5.6AI score0.00209EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 5 days ago5 views

CVE-2026-14695

A vulnerability was found in SourceCodester Multi-Vendor Online Grocery Management System 1.0. This affects the function saveclient of the file classes/Users.php of the component Registration Handler. The manipulation of the argument Name results in sql injection. It is possible to launch the...

7.5CVSS6.8AI score0.00263EPSS
Exploits0References6Affected Software1
NVD
NVD
added 5 days ago9 views

CVE-2026-14691

A security vulnerability has been detected in SourceCodester Multi-Vendor Online Grocery Management System 1.0. This impacts the function updatesettingsinfo of the file classes/SystemSettings.php of the component Setting Handler. Such manipulation of the argument content leads to code injection...

6.5CVSS0.00237EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 5 days ago6 views

CVE-2026-14690

A weakness has been identified in SourceCodester Multi-Vendor Online Grocery Management System 1.0. This affects the function saveusers of the file classes/Users.php. This manipulation causes improper authorization. Remote exploitation of the attack is possible. The exploit has been made availabl...

7.5CVSS6.8AI score0.00288EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 5 days ago8 views

EUVD-2026-41712

A weakness has been identified in SourceCodester Multi-Vendor Online Grocery Management System 1.0. This affects the function saveusers of the file classes/Users.php. This manipulation causes improper authorization. Remote exploitation of the attack is possible. The exploit has been made availabl...

7.5CVSS6.8AI score0.00288EPSS
Exploits0References6
NVD
NVD
added 5 days ago10 views

CVE-2026-14688

A vulnerability was identified in itsourcecode Online Hotel Management System 1.0. The affected element is an unknown function of the file /admin/login.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and...

7.5CVSS0.00281EPSS
Exploits0References6
EUVD
EUVD
added 5 days ago9 views

EUVD-2026-41711

A security flaw has been discovered in CodeAstro Apartment Visitor Management System 1.0. The impacted element is an unknown function of the file /apartment-visitor/add-apartment.php. The manipulation of the argument apartmentno results in sql injection. The attack may be launched remotely. The...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 5 days ago7 views

CVE-2026-14688

A vulnerability was identified in itsourcecode Online Hotel Management System 1.0. The affected element is an unknown function of the file /admin/login.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and...

7.5CVSS6.9AI score0.00281EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 5 days ago8 views

EUVD-2026-41708

A vulnerability was found in HdrHistogram up to 2.2.2. This issue affects the function org.HdrHistogram.DoubleHistogram.recordValue of the file src/main/java/org/HdrHistogram/DoubleHistogram.java of the component Range Check. Performing a manipulation results in incorrect comparison. The attack i...

4.8CVSS5.5AI score0.0024EPSS
Exploits0References6
CVE
CVE
added 5 days ago19 views

CVE-2026-14686

Technical details about this CVE are not publicly available in the provided documents. Monitor for updates.

4.8CVSS5.5AI score0.0024EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 5 days ago9 views

PT-2026-55798

Name of the Vulnerable Software and Affected Versions mjperpinosa stumasy versions up to 327d1b0f2915ba79d7ef8ebb74553e987609d9be Description A remote cross-site scripting issue exists due to improper manipulation of the argument reference within the add definition function located in the...

5.1CVSS5.7AI score0.00203EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 5 days ago12 views

PT-2026-55804

Name of the Vulnerable Software and Affected Versions code-projects Hotel and Tourism Reservation version 1.0 Description An issue exists in the Tour Management Page component within the '/admin/add tour.php' endpoint. Remote attackers can perform a SQL injection by manipulating the delete image...

7.5CVSS7.1AI score0.00269EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 5 days ago11 views

PT-2026-55790

Name of the Vulnerable Software and Affected Versions code-projects Real State Services version 1.0 Description An issue exists in the /single-list rent.php file where manipulating the ID argument allows for remote SQL injection. SQL injection is a technique where malicious SQL statements are...

7.5CVSS7.2AI score0.00263EPSS
Exploits0References9
Rows per page
Query Builder