Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

41002 matches found

EUVD
EUVDadded 2026/04/06 12:32 p.m.4 views

EUVD-2026-19213

A vulnerability was determined in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This affects an unknown function of the file /viva/update.php of the component HTTP POST Request Handler. This manipulation of the argument Name causes improper authorization. It ...

7.5CVSS5.6AI score0.00284EPSS
Exploits0References6
EUVD
EUVDadded 2026/04/06 12:32 p.m.5 views

EUVD-2026-19215

A vulnerability was identified in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This impacts an unknown function of the file /admin/Add%20notice/notice.php of the component Admin Add Endpoint. Such manipulation of the argument $SERVER'PHPSELF' leads to cross...

4.8CVSS4.3AI score0.00206EPSS
Exploits0References6
NVD
NVDadded 2026/04/06 12:16 p.m.2 views

CVE-2026-5650

A vulnerability was found in code-projects Online Application System for Admission 1.0. Impacted is an unknown function of the file /enrollment/database/oas.sql. Performing a manipulation results in insecure storage of sensitive information. The attack is possible to be carried out remotely. The...

6.9CVSS0.00308EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/06 11:30 a.m.4 views

CVE-2026-5650

A vulnerability was found in code-projects Online Application System for Admission 1.0. Impacted is an unknown function of the file /enrollment/database/oas.sql. Performing a manipulation results in insecure storage of sensitive information. The attack is possible to be carried out remotely. The...

6.9CVSS5.7AI score0.00308EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/06 11:30 a.m.2 views

CVE-2026-5650 code-projects Online Application System for Admission oas.sql sensitive information

A vulnerability was found in code-projects Online Application System for Admission 1.0. Impacted is an unknown function of the file /enrollment/database/oas.sql. Performing a manipulation results in insecure storage of sensitive information. The attack is possible to be carried out remotely. The...

6.9CVSS5.7AI score0.00308EPSS
Exploits0References5
CVE
CVEadded 2026/04/06 11:30 a.m.5 views

CVE-2026-5650

The CVE-2026-5650 entry concerns code-projects Online Application System for Admission 1.0. A vulnerability affects an unknown function within the file /enrollment/database/oas.sql, enabling manipulation that leads to insecure storage of sensitive information. The attack is described as remotely ...

6.9CVSS5.7AI score0.00308EPSS
Exploits0References5
NVD
NVDadded 2026/04/06 11:17 a.m.2 views

CVE-2026-5645

A weakness has been identified in projectworlds Car Rental System 1.0. Affected by this vulnerability is an unknown functionality of the file /pay.php of the component Parameter Handler. Executing a manipulation of the argument mpesa can lead to sql injection. The attack can be launched remotely...

7.5CVSS0.00274EPSS
Exploits0References4
NVD
NVDadded 2026/04/06 11:17 a.m.3 views

CVE-2026-5647

A vulnerability was detected in code-projects Online Shoe Store 1.0. This affects an unknown part of the file /admin/adminfeature.php of the component Add Product Page. The manipulation of the argument productname results in cross site scripting. The attack may be launched remotely. The exploit i...

4.8CVSS0.00206EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/04/06 10:57 a.m.3 views

CVE-2026-5558

A flaw has been found in PHPGurukul PHPGurukul Online Shopping Portal Project up to 2.1. Impacted is an unknown function of the file /pending-orders.php of the component Parameter Handler. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely...

6.5CVSS6.3AI score0.00255EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/06 10:57 a.m.2 views

CVE-2026-5557

A vulnerability was detected in badlogic pi-mono up to 0.58.4. This issue affects some unknown processing of the file packages/mom/src/slack.ts of the component pi-mom Slack Bot. The manipulation results in authentication bypass using alternate channel. The attack can be executed remotely. The...

6.5CVSS6.2AI score0.0036EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/06 10:57 a.m.2 views

CVE-2026-5546

A flaw has been found in Campcodes Complete Online Learning Management System 1.0. This impacts the function addlesson of the file /application/models/Crudmodel.php. This manipulation causes unrestricted upload. It is possible to initiate the attack remotely. The exploit has been published and ma...

6.5CVSS6.4AI score0.00257EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/06 10:57 a.m.3 views

CVE-2026-5549

A vulnerability was determined in Tenda AC10 16.03.10.10multiTDE01. Affected by this issue is some unknown functionality of the file /webrootro/pem/privkeySrv.pem of the component RSA 2048-bit Private Key Handler. Executing a manipulation can lead to use of hard-coded cryptographic key . The atta...

7.5CVSS5.8AI score0.00395EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/06 10:57 a.m.5 views

CVE-2026-5551

A security flaw has been discovered in itsourcecode Free Hotel Reservation System 1.0. This vulnerability affects unknown code of the file /hotel/admin/login.php of the component Parameter Handler. The manipulation of the argument email results in sql injection. The attack may be launched remotel...

7.5CVSS6.9AI score0.00259EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/06 10:57 a.m.3 views

CVE-2026-5550

A vulnerability was identified in Tenda AC10 16.03.10.10multiTDE01. This affects the function fromSysToolChangePwd of the file /bin/httpd. The manipulation leads to stack-based buffer overflow. The attack may be initiated remotely. Multiple endpoints might be affected...

9CVSS7.7AI score0.00516EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/04/06 10:45 a.m.2 views

CVE-2026-5647

A vulnerability was detected in code-projects Online Shoe Store 1.0. This affects an unknown part of the file /admin/adminfeature.php of the component Add Product Page. The manipulation of the argument productname results in cross site scripting. The attack may be launched remotely. The exploit i...

4.8CVSS4.4AI score0.00206EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2026/04/06 10:45 a.m.30 views

CVE-2026-5647 code-projects Online Shoe Store Add Product admin_feature.php cross site scripting

A vulnerability was detected in code-projects Online Shoe Store 1.0. This affects an unknown part of the file /admin/adminfeature.php of the component Add Product Page. The manipulation of the argument productname results in cross site scripting. The attack may be launched remotely. The exploit i...

4.8CVSS0.00206EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2026/04/06 10:30 a.m.4 views

CVE-2026-5646 code-projects Easy Blog Site login.php sql injection

A security vulnerability has been detected in code-projects Easy Blog Site 1.0. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack may be initiated remotely. The exploit has been disclos...

7.5CVSS6.9AI score0.00325EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/04/06 10:30 a.m.1 views

CVE-2026-5646

A security vulnerability has been detected in code-projects Easy Blog Site 1.0. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack may be initiated remotely. The exploit has been disclos...

7.5CVSS6.9AI score0.00325EPSS
Exploits0References5Affected Software1
CVE
CVEadded 2026/04/06 10:30 a.m.9 views

CVE-2026-5646

Vulnerability CVE-2026-5646 affects code-projects Easy Blog Site 1.0, specifically the login.php file. The issue arises from manipulating the username/password parameters, leading to a SQL injection in a function handling authentication. Attack vector is network remote, with low attack complexity...

7.5CVSS6.9AI score0.00325EPSS
Exploits0References5
NVD
NVDadded 2026/04/06 10:16 a.m.5 views

CVE-2026-5643

A vulnerability was identified in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This impacts an unknown function of the file /admin/Add%20notice/notice.php of the component Admin Add Endpoint. Such manipulation of the argument $SERVER'PHPSELF' leads to cross...

4.8CVSS0.00206EPSS
Exploits0References5
Rows per page
Query Builder