CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

81868 matches found

Bdtask Multi-Store Inventory Management System SQL注入漏洞

The Bdtask Multi-Store Inventory Management System is an inventory management system developed by the Bdtask company in Bangladesh. Version 1.0 of the Bdtask Multi-Store Inventory Management System has a SQL injection vulnerability. This vulnerability arises from the accountsreportsearch function...

5.8CVSS5.9AI score0.00034EPSS

Exploits0References5

Positive Technologies•added 6 days ago•6 views

PT-2026-45203

A security flaw has been discovered in OFCMS up to 1.1.3. The impacted element is the function Query of the file ofcms-adminsrcmainjavacomofsoftcmsadmincontrollerComnController.java of the component ComnController. Performing a manipulation of the argument system.user.query results in sql...

6.5CVSS6.4AI score0.00028EPSS

Exploits0References6

Positive Technologies•added 6 days ago•8 views

PT-2026-45172

A vulnerability was detected in OUSL-GROUP-BrinaryBrains School Student Management System up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. Affected by this vulnerability is the function ajax forgot password of the file application/controllers/Login.php of the component Forgot Password Endpoint. Th...

6.3CVSS5.1AI score0.00028EPSS

Exploits0References5

ATTACKERKB•added last week•6 views

CVE-2026-10155

A vulnerability was found in Bdtask Multi-Store Inventory Management System 1.0. The impacted element is the function accountsreportsearch of the file application/modules/accounts/controllers/Accounts.php of the component Accounts Report Handler. Performing a manipulation of the argument dtpToDat...

5.8CVSS5.7AI score0.00034EPSS

Exploits0References4Affected Software1

CVE•added last week•9 views

CVE-2026-10155

The CVE-2026-10155 describes a SQL injection in Bdtask Multi-Store Inventory Management System 1.0, specifically in accounts_report_search (application/modules/accounts/controllers/Accounts.php of Accounts Report Handler). The vulnerability is triggered by manipulating the argument dtpToDate, ena...

5.8CVSS5.7AI score0.00034EPSS

Exploits0References4

Vulnrichment•added last week•5 views

CVE-2026-10155 Bdtask Multi-Store Inventory Management System Accounts Report Accounts.php accounts_report_search sql injection

5.8CVSS5.6AI score0.00034EPSS

Exploits0References4

Cvelist•added last week•30 views

CVE-2026-10155 Bdtask Multi-Store Inventory Management System Accounts Report Accounts.php accounts_report_search sql injection

5.8CVSS0.00034EPSS

Exploits0References4

Circl•added 2026/05/30 4:10 p.m.•9 views

CVE-2026-46242

creationtimestamp| type| source ---|---|--- 2026-05-30 16:10:12+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116664396126951795 2026-05-31 10:50:11+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116668800060725732 2026-06-01 02:58:37+00:00| seen|...

7.8CVSS5.7AI score0.00013EPSS

Exploits0References3

Circl•added 2026/05/30 8:16 a.m.•12 views

CVE-2026-10126

creationtimestamp| type| source ---|---|--- 2026-05-30 08:16:21+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-10126 2026-05-30 19:34:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn3sacepx62n 2026-05-30 20:00:42+00:00| seen|...

9CVSS7.3AI score0.00046EPSS

Exploits0References5

Cvelist•added 2026/05/30 8:0 a.m.•34 views

CVE-2026-10112 sambitraj STUDENT-MANAGEMENT-SYSTEM Dashboard cross site scripting

A vulnerability has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM 1.0. Affected is an unknown function of the component Dashboard Page. The manipulation of the argument Name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

4.8CVSS0.00032EPSS

Exploits0References5

Vulnrichment•added 2026/05/30 7:45 a.m.•6 views

CVE-2026-10111 sambitraj STUDENT-MANAGEMENT-SYSTEM Login Page sql injection

A flaw has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM 1.0. This impacts an unknown function of the component Login Page. Executing a manipulation of the argument email can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be used. The...

7.5CVSS6.7AI score0.00039EPSS

Exploits0References5

CVE•added 2026/05/30 7:45 a.m.•15 views

CVE-2026-10111

CVE-2026-10111 affects the sambitraj STUDENT-MANAGEMENT-SYSTEM 1.0 Login Page. The vulnerability occurs when manipulating the argument email , which can lead to SQL injection . It is exploitable remotely and the exploit has been published. The issue was reported to the project early via an issue ...

7.5CVSS6.7AI score0.00039EPSS

Exploits0References5

ATTACKERKB•added 2026/05/30 7:45 a.m.•9 views

CVE-2026-10111

7.5CVSS6.7AI score0.00039EPSS

Exploits0References5Affected Software1

Positive Technologies•added 2026/05/30 12:0 a.m.•5 views

PT-2026-45134

A vulnerability was detected in TaleLin lin-cms-spring-boot up to 0.2.1. This issue affects some unknown processing of the file src/main/java/io/github/talelin/latticy/controller/v1/BookController.java of the component book Endpoint. The manipulation results in improper access controls. The attac...

6.5CVSS6.3AI score0.0004EPSS

Exploits0References6

Positive Technologies•added 2026/05/30 12:0 a.m.•6 views

PT-2026-45138

A flaw has been found in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. Impacted is the function Search of the file org/springframework/cache/support/AbstractCacheManager.java. This manipulation of the argument s causes cross site scripting. Remote exploitation of the attack i...

5.3CVSS4.4AI score0.00035EPSS

Exploits0References6

Positive Technologies•added 2026/05/30 12:0 a.m.•7 views

PT-2026-45075

Name of the Vulnerable Software and Affected Versions sambitraj STUDENT-MANAGEMENT-SYSTEM version 1.0 Description A remote SQL injection exists within the Login Page component. This occurs when the email argument is manipulated, allowing an attacker to interfere with the database queries...

7.5CVSS7.2AI score0.00039EPSS

Exploits0References11

Positive Technologies•added 2026/05/30 12:0 a.m.•7 views

PT-2026-45141

A vulnerability was found in Bdtask Multi-Store Inventory Management System 1.0. The impacted element is the function accounts report search of the file application/modules/accounts/controllers/Accounts.php of the component Accounts Report Handler. Performing a manipulation of the argument...

5.8CVSS5.7AI score0.00034EPSS

Exploits0References5

OSV•added 2026/05/29 1:34 p.m.•11 views

OESA-2026-2492 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate buffer length while parsing index indxread is called when we have some NTFS directory operations that need more information from the index...

9.8CVSS5.9AI score0.00076EPSS

Exploits0References16

Circl•added 2026/05/29 3:29 a.m.•10 views

CVE-2026-44655

creationtimestamp| type| source ---|---|--- 2026-05-29 03:29:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmxltmhdmb2w...

8.6CVSS5.7AI score0.00057EPSS

Exploits0References1

RedhatCVE•added 2026/05/29 12:13 a.m.•7 views

CVE-2026-9912

An inappropriate implementation flaw was found in the GPU component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=499873765...

6.5CVSS5.7AI score0.00035EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by