Lucene search
K

3783 matches found

RedhatCVE
RedhatCVE
added 2026/06/01 10:3 p.m.10 views

CVE-2026-10111

A flaw has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM 1.0. This impacts an unknown function of the component Login Page. Executing a manipulation of the argument email can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be used. The...

7.5CVSS5.5AI score0.00259EPSS
Exploits0References1
NVD
NVD
added 2026/06/01 9:16 p.m.17 views

CVE-2026-10286

A vulnerability was found in CodeAstro Payroll System 1.0. This affects an unknown part of the file /homeemployee.php. The manipulation of the argument empid results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...

6.5CVSS0.00204EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/01 4:3 p.m.10 views

CVE-2026-10110

A vulnerability was detected in code-projects Student Details Management System 1.0. This affects an unknown function of the file /index.php. Performing a manipulation of the argument roll results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and m...

7.5CVSS5.7AI score0.00313EPSS
Exploits0References1
NVD
NVD
added 2026/06/01 1:16 p.m.14 views

CVE-2026-10251

A weakness has been identified in itsourcecode Online House Rental System 1.0. The impacted element is an unknown function of the file /ajax.php?action=login. Executing a manipulation of the argument Username can lead to sql injection. The attack may be performed from remote. The exploit has been...

7.5CVSS0.00263EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/01 12:45 p.m.10 views

CVE-2026-10258

A weakness has been identified in itsourcecode Content Management System 1.0. Impacted is an unknown function of the file /admin/addsubtopic.php. This manipulation of the argument topicid causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available ...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/06/01 10:45 a.m.32 views

CVE-2026-10250 itsourcecode Online Blood Bank Management System campsdetails.php sql injection

A security flaw has been discovered in itsourcecode Online Blood Bank Management System 1.0. The affected element is an unknown function of the file /admin/campsdetails.php. Performing a manipulation of the argument hospital results in sql injection. The attack is possible to be carried out...

7.5CVSS0.00263EPSS
Exploits0References6
CVE
CVE
added 2026/06/01 10:30 a.m.16 views

CVE-2026-10249

The vulnerability CVE-2026-10249 affects itsourcecode Online Blood Bank Management System 1.0, specifically an unknown function in /admin/viewrequest.php where manipulation of the ID argument triggers SQL injection. It can be exploited remotely, and a public exploit is available. The CVSS metrics...

7.5CVSS5.8AI score0.00269EPSS
Exploits0References6
CVE
CVE
added 2026/06/01 5:0 a.m.17 views

CVE-2026-10226

CVE-2026-10226 affects the project raisulislamg4 student_management_system_by_php (file delete.php). The issue is a SQL injection that can be triggered by manipulating arguments such as user_id, course_id, teacher_id, student_id, or application_id. The vulnerability is exploitable remotely and ex...

7.5CVSS6.8AI score0.00263EPSS
Exploits0References6
NVD
NVD
added 2026/06/01 2:16 a.m.15 views

CVE-2026-10209

A vulnerability has been found in code-projects Online Hospital Management System 1.0. Affected is an unknown function of the file appointmentdetail.php of the component Appointment Handler. The manipulation of the argument editid leads to sql injection. The attack is possible to be carried out...

6.5CVSS0.002EPSS
Exploits0References6
CVE
CVE
added 2026/06/01 12:45 a.m.19 views

CVE-2026-10209

CVE-2026-10209 relates to code-projects Online Hospital Management System 1.0. The vulnerability affects the Appointment Handler’s appointmentdetail.php—specifically the unknown function handling the editid parameter. Exploiting the manipulated editid enables SQL injection that can be executed re...

6.5CVSS6.4AI score0.002EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/01 12:45 a.m.13 views

CVE-2026-10209

A vulnerability has been found in code-projects Online Hospital Management System 1.0. Affected is an unknown function of the file appointmentdetail.php of the component Appointment Handler. The manipulation of the argument editid leads to sql injection. The attack is possible to be carried out...

6.5CVSS6.4AI score0.002EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/06/01 12:30 a.m.41 views

CVE-2026-10208 code-projects Online Hospital Management System login_1.php login_user sql injection

A flaw has been found in code-projects Online Hospital Management System 1.php. This impacts the function loginuser of the file login1.php. Executing a manipulation of the argument Username can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be...

7.5CVSS0.00263EPSS
Exploits0References6
CVE
CVE
added 2026/06/01 12:30 a.m.18 views

CVE-2026-10208

The CVE-2026-10208 entry concerns code-projects Online Hospital Management System 1.php, specifically the login_user function in login_1.php. A flaw allows manipulation of the Username argument to trigger a remote SQL injection, enabling an attacker to compromise authentication. The exploit has b...

7.5CVSS6.9AI score0.00263EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/05/31 11:45 p.m.43 views

CVE-2026-10204 OFCMS JSON Query SysUserController.java query sql injection

A weakness has been identified in OFCMS 1.1.3. The affected element is the function Query of the file \ofcms-admin\src\main\java\com\ofsoft\cms\admin\controller\system\SysUserController.java of the component JSON Query Interface. This manipulation causes sql injection. The attack may be initiated...

6.5CVSS0.00192EPSS
Exploits0References5
CVE
CVE
added 2026/05/31 2:0 p.m.19 views

CVE-2026-10186

Code-projects Online Hospital Management System 1.0 contains an SQL injection vulnerability in the /patient.php endpoint, triggered by manipulating the editid parameter. The flaw allows remote exploitation and has publicly disclosed exploit details. Multiple CVSS metrics across versions (e.g., CV...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/31 1:30 p.m.9 views

CVE-2026-10184

A security flaw has been discovered in SourceCodester Hospitals Patient Records Management System 1.0. This impacts an unknown function of the file /classes/Users.php?f=delete. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2026/05/31 7:16 a.m.15 views

CVE-2026-10171

A vulnerability has been found in code-projects Online Music Site 1.0. This affects an unknown part of the file /Administrator/PHP/AdminUpdateAlbum.php. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public a...

5.8CVSS0.00206EPSS
Exploits0References5
NVD
NVD
added 2026/05/31 7:16 a.m.17 views

CVE-2026-10170

A flaw has been found in code-projects Visitor Management System 1.0. Affected by this issue is some unknown functionality of the file /vms/php/phone0.php. This manipulation of the argument phone causes sql injection. The attack may be initiated remotely. The exploit has been published and may be...

6.5CVSS0.00244EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/31 12:0 a.m.10 views

PT-2026-45203

A security flaw has been discovered in OFCMS up to 1.1.3. The impacted element is the function Query of the file ofcms-adminsrcmainjavacomofsoftcmsadmincontrollerComnController.java of the component ComnController. Performing a manipulation of the argument system.user.query results in sql...

6.5CVSS6.4AI score0.00196EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/05/31 12:0 a.m.20 views

PT-2026-45220

A security flaw has been discovered in OFCMS 1.1.3. Impacted is the function Query of the file ofcms-adminsrcmainjavacomofsoftcmsadmincontrollersystemSystemParamController.java of the component JSON Query Interface. The manipulation results in sql injection. The attack can be launched remotely. T...

6.5CVSS6.4AI score0.00196EPSS
Exploits0References6
Rows per page
Query Builder