CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/06/01 8:15 a.m.•7 views

CVE-2026-10240 JeecgBoot test server-side request forgery

A vulnerability was identified in JeecgBoot up to 3.9.2. The impacted element is an unknown function of the file /airag/airagModel/test. The manipulation of the argument baseUrl leads to server-side request forgery. The attack is possible to be carried out remotely. The exploit is publicly...

Cvelist•added 2026/06/01 8:15 a.m.•28 views

CVE-2026-10240 JeecgBoot test server-side request forgery

6.5CVSS0.0027EPSS

Vulnrichment•added 2026/06/01 8:0 a.m.•9 views

CVE-2026-10239 JeecgBoot edit WordUtil.addImage server-side request forgery

A vulnerability was determined in JeecgBoot up to 3.9.2. The affected element is the function WordUtil.addImage of the file /airag/word/edit. Executing a manipulation can lead to server-side request forgery. The attack can be executed remotely. The exploit has been publicly disclosed and may be...

CVE•added 2026/06/01 8:0 a.m.•11 views

CVE-2026-10239

JeecgBoot up to 3.9.2 has a vulnerability in WordUtil.addImage in /airag/word/edit that can enable server-side request forgery (SSRF) via remote manipulation. Public exploit details exist and exploit maturity is reported as PROOF-OF-CONCEPT. The referenced CVSS data indicate network access with l...

Cvelist•added 2026/06/01 8:0 a.m.•38 views

CVE-2026-10239 JeecgBoot edit WordUtil.addImage server-side request forgery

6.5CVSS0.0027EPSS

EUVD•added 2026/06/01 8:0 a.m.•7 views

EUVD-2026-33601

Cvelist•added 2026/06/01 7:45 a.m.•29 views

CVE-2026-10237 SourceCodester Water Billing Management System User Management manage_user sql injection

A vulnerability was found in SourceCodester Water Billing Management System 1.0. Impacted is an unknown function of the file /admin/?page=user/manageuser of the component User Management Module. Performing a manipulation of the argument ID results in sql injection. Remote exploitation of the atta...

5.8CVSS0.00262EPSS

ATTACKERKB•added 2026/06/01 7:45 a.m.•7 views

CVE-2026-10237

5.8CVSS5.6AI score0.00262EPSS

Exploits0References6Affected Software1

CVE•added 2026/06/01 7:30 a.m.•14 views

CVE-2026-10236

Technical details about CVE-2026-10236 are not publicly available in the provided documents. Monitor for updates from authoritative sources for affected components, vulnerable files, and remediation steps.

ATTACKERKB•added 2026/06/01 7:30 a.m.•8 views

CVE-2026-10236

A vulnerability has been found in SourceCodester Water Billing Management System 1.0. This issue affects some unknown processing of the file /classes/Users.php?f=save of the component User Management Endpoint. Such manipulation leads to improper authorization. The attack may be launched remotely...

Exploits0References6Affected Software1

EUVD•added 2026/06/01 7:30 a.m.•11 views

EUVD-2026-33579

Vulnrichment•added 2026/06/01 7:30 a.m.•7 views

CVE-2026-10236 SourceCodester Water Billing Management System User Management Endpoint Users.php save improper authorization

Cvelist•added 2026/06/01 7:15 a.m.•40 views

CVE-2026-10235 CodeAstro Ingredients Stock Management System stock_manager.php sql injection

A flaw has been found in CodeAstro Ingredients Stock Management System 1.0. This vulnerability affects unknown code of the file /Ingredients-Stock/stockmanager.php. This manipulation of the argument txtsearchcategory causes sql injection. The attack may be initiated remotely. The exploit has been...

6.5CVSS0.002EPSS

EUVD•added 2026/06/01 7:15 a.m.•8 views

EUVD-2026-33570

6.5CVSS6.5AI score0.002EPSS