CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 5 days ago•10 views

CVE-2026-10184

The CVE affects SourceCodester Hospitals Patient Records Management System 1.0. The vulnerability resides in /classes/Users.php?f=delete where manipulating the ID parameter causes a SQL injection. It can be exploited remotely and an exploit has been released publicly. No remediation or versioned ...

7.5CVSS6.9AI score0.00033EPSS

CNNVD•added 5 days ago•4 views

SourceCodester Hospitals Patient Records Management System SQL注入漏洞

SourceCodester Hospitals Patient Records Management System is an open-source hospital medical record management system developed by SourceCodester. Version 1.0 of the SourceCodester Hospitals Patient Records Management System contains a SQL injection vulnerability. This vulnerability arises from...

7.5CVSS7.2AI score0.00033EPSS

CNNVD•added 5 days ago•5 views

SourceCodester Hospitals Patient Records Management System SQL注入漏洞

SourceCodester Hospitals Patient Records Management System is an open-source hospital medical record management system developed by SourceCodester. Version 1.0 of the SourceCodester Hospitals Patient Records Management System has a SQL injection vulnerability. This vulnerability arises from the...

7.5CVSS7.2AI score0.00033EPSS

Exploits0References7

RedhatCVE•added last week•10 views

CVE-2026-9377

A vulnerability was identified in SourceCodester SUP Online Shopping 1.0. The impacted element is an unknown function of the file /admin/productedit.php. The manipulation of the argument productName leads to cross site scripting. It is possible to initiate the attack remotely. The exploit is...

4.8CVSS4.2AI score0.00032EPSS

ATTACKERKB•added 2026/05/29 12:0 a.m.•6 views

CVE-2026-36324

SourceCodester Doctor Appointment System 1.0 is vulnerable to Cross Site Scripting XSS due to improper handling of user supplied input in the user registration functionality in register.php...

5.8AI score0.00031EPSS

Exploits0References3

Positive Technologies•added 2026/05/29 12:0 a.m.•10 views

PT-2026-44899

SourceCodester Doctor Appointment System 1.0 is vulnerable to Cross Site Scripting XSS due to improper handling of user supplied input in the user registration functionality in register.php...

5.8AI score0.00031EPSS

Exploits0References3

RedhatCVE•added 2026/05/28 8:13 p.m.•7 views

CVE-2026-9446

A vulnerability has been found in SourceCodester Simple POS and Inventory System 1.0. The affected element is an unknown function of the file /admin/editcustomer.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed t...

5.8CVSS5.7AI score0.00036EPSS

RedhatCVE•added 2026/05/27 8:14 p.m.•9 views

CVE-2026-9484

A vulnerability was determined in SourceCodester Student Grades Management System 1.0. Affected by this vulnerability is the function getClassroomStudents/removeStudentFromClassroom of the file classroom.php. Executing a manipulation of the argument classroomid can lead to improper authorization...

6.5CVSS6.4AI score0.00048EPSS

RedhatCVE•added 2026/05/27 8:14 p.m.•11 views

CVE-2026-9412

A vulnerability was determined in SourceCodester Indian Invoicing System 1.0. Impacted is an unknown function of the component Backend Endpoint. Executing a manipulation can lead to improper access controls. The attack can be launched remotely. The exploit has been publicly disclosed and may be...

6.5CVSS6.3AI score0.0004EPSS

NVD•added 2026/05/26 10:16 p.m.•12 views

CVE-2026-9603

A security vulnerability has been detected in SourceCodester eDoc Doctor Appointment System 1.0. This affects an unknown part of the file /admin/delete-session.php. The manipulation of the argument ID leads to missing authorization. Remote exploitation of the attack is possible. The exploit has...

6.9CVSS0.00059EPSS

ATTACKERKB•added 2026/05/26 10:0 p.m.•11 views

CVE-2026-9603

Exploits0References5Affected Software1

EUVD•added 2026/05/26 10:0 p.m.•9 views

EUVD-2026-32018

Cvelist•added 2026/05/26 10:0 p.m.•24 views

CVE-2026-9603 SourceCodester eDoc Doctor Appointment System delete-session.php authorization

6.9CVSS0.00059EPSS

Vulnrichment•added 2026/05/26 10:0 p.m.•6 views

CVE-2026-9603 SourceCodester eDoc Doctor Appointment System delete-session.php authorization

CVE•added 2026/05/26 10:0 p.m.•8 views

CVE-2026-9603

CVE-2026-9603 affects SourceCodester eDoc Doctor Appointment System 1.0. The vulnerability is due to manipulation of the ID parameter in /admin/delete-session.php, leading to missing authorization and enabling remote exploitation. Public PoC/exploit details are referenced. Vulnerability details r...

NVD•added 2026/05/26 9:16 p.m.•13 views

CVE-2026-9582

A security flaw has been discovered in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This affects an unknown function. Performing a manipulation results in cross-site request forgery. The attack is possible to be carried out remotely. The exploit has been released ...

5.3CVSS0.00019EPSS

NVD•added 2026/05/26 9:16 p.m.•13 views

CVE-2026-9583

A weakness has been identified in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This impacts an unknown function of the file /index.php of the component SQL Handler. Executing a manipulation can lead to information exposure through error message. The attack may be...

5.3CVSS0.00036EPSS

CVE•added 2026/05/26 9:0 p.m.•10 views

CVE-2026-9583

The CVE-2026-9583 entry details an information-exposure vulnerability in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. It affects the SQL Handler component (file /index.php) where manipulation can cause information disclosure via error messages. The issue is exploi...

5.3CVSS5.5AI score0.00036EPSS

EUVD•added 2026/05/26 9:0 p.m.•9 views

EUVD-2026-31999

5.3CVSS5.5AI score0.00036EPSS