CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

295 matches found

Vulnrichment•added 2026/06/08 5:0 p.m.•5 views

CVE-2026-11552 SourceCodester Onlne Examination & Learning Management System import_users.php hard-coded password

A vulnerability has been found in SourceCodester Onlne Examination & Learning Management System and Syllabus-aligned Learning Management and Examination System 1.0. Affected by this issue is some unknown functionality of the file importusers.php. The manipulation of the argument rawpassword with...

6.9CVSS5.6AI score0.00286EPSS

Exploits0References5

Cvelist•added 2026/06/08 12:45 p.m.•41 views

CVE-2026-11515 SourceCodester Barangay Resident Profiling and Information Management System Password Reset passsword_reset.php hard-coded password

A vulnerability has been found in SourceCodester Barangay Resident Profiling and Information Management System 1.0. The impacted element is an unknown function of the file passswordreset.php of the component Password Reset Handler. Such manipulation of the argument newpassword with the input...

6.9CVSS0.00276EPSS

Exploits0References5

NVD•added 2026/06/08 5:16 a.m.•12 views

CVE-2026-11484

A weakness has been identified in SourceCodester Class and Exam Timetabling System 1.0. This impacts an unknown function of the file /archive3.php. This manipulation of the argument sy causes sql injection. The attack may be initiated remotely. The exploit has been made available to the public an...

7.5CVSS0.00275EPSS

Exploits0References6

RedhatCVE•added 2026/06/05 7:49 p.m.•6 views

CVE-2026-5811

A vulnerability was identified in SourceCodester Online Food Ordering System 1.0. Affected by this issue is the function saveproduct of the file /Actions.php of the component POST Parameter Handler. Such manipulation of the argument price leads to business logic errors. The attack may be performe...

5.5CVSS5.7AI score0.00246EPSS

Exploits0References1

Cvelist•added 2026/06/04 11:45 p.m.•37 views

CVE-2026-10877 SourceCodester Ship Ferry Ticket Reservation System Admin Login login.php sql injection

A security vulnerability has been detected in SourceCodester Ship Ferry Ticket Reservation System up to 1.0. This impacts an unknown function of the file /admin/login.php of the component Admin Login. Such manipulation of the argument Username leads to sql injection. The attack can be executed...

7.5CVSS0.00328EPSS

Exploits0References6

CVE•added 2026/06/03 12:15 a.m.•13 views

CVE-2026-10694

SourceCodester Online Food Ordering System 2.0 is affected in the index.php include handling. The vulnerability arises from manipulation of the page parameter, causing a file inclusion (remote exploit surface). The issue is exploitable remotely and the exploit is public, enabling an attacker to i...

7.5CVSS6.9AI score0.00302EPSS

Exploits0References6

Vulnrichment•added 2026/06/03 12:15 a.m.•7 views

CVE-2026-10694 SourceCodester Online Food Ordering System index.php include file inclusion

A vulnerability was detected in SourceCodester Online Food Ordering System 2.0. Affected by this issue is the function include of the file /index.php. The manipulation of the argument page results in file inclusion. The attack can be launched remotely. The exploit is now public and may be used...

7.5CVSS6.9AI score0.00302EPSS

Exploits0References6

Vulnrichment•added 2026/06/01 2:0 p.m.•9 views

CVE-2026-10263 SourceCodester Computer Repair Shop Management System manage_product.php sql injection

A vulnerability was found in SourceCodester Computer Repair Shop Management System up to 1.0. Affected is an unknown function of the file /admin/products/manageproduct.php. The manipulation of the argument ID results in sql injection. The attack can be launched remotely. The exploit has been made...

7.5CVSS6.8AI score0.00269EPSS

Exploits0References6

NVD•added 2026/05/25 8:16 p.m.•7 views

CVE-2026-9484

A vulnerability was determined in SourceCodester Student Grades Management System 1.0. Affected by this vulnerability is the function getClassroomStudents/removeStudentFromClassroom of the file classroom.php. Executing a manipulation of the argument classroomid can lead to improper authorization...

6.5CVSS0.00272EPSS

Exploits0References7

EUVD•added 2026/05/25 9:45 a.m.•8 views

EUVD-2026-31663

A vulnerability was found in SourceCodester Simple POS and Inventory System 1.0. The impacted element is an unknown function of the file /user/search.php. Performing a manipulation of the argument Name results in sql injection. The attack is possible to be carried out remotely. The exploit has be...

7.5CVSS6.9AI score0.00319EPSS

Exploits0References5

ATTACKERKB•added 2026/05/04 8:0 a.m.•4 views

CVE-2026-7746

A vulnerability was identified in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected is an unknown function of the file /productexpiry/edit-admin.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit is...

6.5CVSS6.5AI score0.00192EPSS

Exploits0References5Affected Software1

EUVD•added 2026/05/01 1:45 a.m.•2 views

EUVD-2026-26471

A weakness has been identified in SourceCodester Advanced School Management System 1.0. The affected element is an unknown function of the file commonController.php of the component checkEmail Endpoint. This manipulation causes sql injection. Remote exploitation of the attack is possible. The...

7.5CVSS7.3AI score0.00259EPSS

Exploits0References5

Cvelist•added 2026/04/27 11:15 p.m.•28 views

CVE-2026-7199 SourceCodester Pharmacy Sales and Inventory System ajax.php sql injection

A vulnerability was detected in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=deleteproduct. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the atta...

7.5CVSS0.00265EPSS

Exploits0References5

Vulnrichment•added 2026/04/27 11:15 p.m.•2 views

CVE-2026-7199 SourceCodester Pharmacy Sales and Inventory System ajax.php sql injection

7.5CVSS7.3AI score0.00265EPSS

Exploits0References5

EUVD•added 2026/04/27 1:0 p.m.•2 views

EUVD-2026-25850

A security flaw has been discovered in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects an unknown part of the file /ajax.php?action=savecategory. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been released t...

7.5CVSS7.3AI score0.00254EPSS

Exploits0References5

Positive Technologies•added 2026/04/27 12:0 a.m.•1 views

PT-2026-35541

A weakness has been identified in SourceCodester Pharmacy Sales and Inventory System 1.0. This impacts an unknown function of the file /ajax.php?action=save product. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been...

7.5CVSS7.2AI score0.00254EPSS

Exploits0References6

Vulnrichment•added 2026/04/14 12:0 a.m.•3 views

CVE-2026-37592

Sourcecodester Storage Unit Rental Management System v1.0 is vulnerable to SQL in the file /storage/admin/maintenance/managepricing.php...

5.8AI score0.00193EPSS

Exploits0References1

Positive Technologies•added 2026/04/14 12:0 a.m.•3 views

PT-2026-32637

CVE-2026-37596 SourceCodester Online Employees Work From Home Attendance System v1.0 is vulnerable to SQL Injection in the file /wfh attendance/admin/manage department.php. https://t.co/mauoyzh46T...

2.7CVSS5.8AI score0.0019EPSS

Exploits0References3

EUVD•added 2026/04/13 6:30 p.m.•1 views

EUVD-2026-22008

Sourcecodester Online Thesis Archiving System v1.0 is vulnerable to SQL injection in the file /otas/admin/curriculum/managecurriculum.php...

5.8AI score0.00186EPSS

Exploits0References2

EUVD•added 2026/04/13 6:30 p.m.•1 views

EUVD-2026-22004

Sourcecodester Online Thesis Archiving System v1.0 is vulnerale to SQL injection in the file /otas/viewarchive.php...

5.8AI score0.00169EPSS

Exploits0References2