CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16049 matches found

Positive Technologies•added 2026/02/25 12:0 a.m.•5 views

PT-2026-21891

A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /queue.php. This manipulation of the argument firstname/lastname causes cross site scripting. The attack is possible to b...

5.1CVSS4AI score0.00036EPSS

Exploits1References5

CNNVD•added 2026/02/25 12:0 a.m.•4 views

SourceCodester Website Link Extractor 代码问题漏洞

SourceCodester Website Link Extractor is an open-source website link extractor developed by SourceCodester. Version 1.0 of SourceCodester Website Link Extractor has code-related vulnerabilities; these vulnerabilities stem from issues with the filegetcontents function in the URL Handler component,...

7.5CVSS6.6AI score0.00051EPSS

Exploits1References5

Positive Technologies•added 2026/02/25 12:0 a.m.•4 views

PT-2026-21868

Name of the Vulnerable Software and Affected Versions SourceCodester Simple and Nice Shopping Cart Script version 1.0 Description A SQL injection issue exists in SourceCodester Simple and Nice Shopping Cart Script 1.0. The issue is located in an unknown function within the /signup.php file...

9.8CVSS7AI score0.00039EPSS

Exploits1References12

RedhatCVE•added 2026/02/24 1:34 p.m.•5 views

CVE-2026-2984

A vulnerability was identified in SourceCodester Student Result Management System 1.0. This affects an unknown function of the file /admin/core/dropuser.php. Such manipulation of the argument ID leads to denial of service. The attack can be executed remotely. The exploit is publicly available and...

6.9CVSS5.3AI score0.00154EPSS

Exploits1References1

OSV•added 2026/02/24 5:17 a.m.•1 views

CVE-2026-3070

A vulnerability was detected in SourceCodester Modern Image Gallery App 1.0. Affected by this vulnerability is an unknown functionality of the file upload.php. The manipulation of the argument filename results in cross site scripting. The attack may be launched remotely. The exploit is now public...

6.1CVSS4.2AI score

Exploits0References5

CVE•added 2026/02/24 4:32 a.m.•15 views

CVE-2026-3070

CVE-2026-3070 affects SourceCodester Modern Image Gallery App 1.0. The vulnerability is located in an unknown functionality of the file upload.php where manipulation of the filename argument leads to cross-site scripting (XSS) . The attack can be launched remotely and, per the description, the ex...

6.1CVSS3.8AI score0.00056EPSS

Exploits1References5Affected Software1

EUVD•added 2026/02/24 4:32 a.m.•6 views

EUVD-2026-7393

6.1CVSS4AI score0.00056EPSS

Exploits1References5

Vulnrichment•added 2026/02/24 4:32 a.m.•4 views

CVE-2026-3070 SourceCodester Modern Image Gallery App upload.php cross site scripting

5.3CVSS4AI score0.00056EPSS

Exploits1References5

CNNVD•added 2026/02/24 12:0 a.m.•4 views

SourceCodester Modern Image Gallery App 代码注入漏洞

SourceCodester Modern Image Gallery App is an open-source modern image gallery application developed by SourceCodester. Version 1.0 of the SourceCodester Modern Image Gallery App contains a code injection vulnerability, which stems from incorrect handling of the parameter filename in the upload.p...

6.1CVSS5.7AI score0.00056EPSS

Exploits1References5

Positive Technologies•added 2026/02/24 12:0 a.m.•6 views

PT-2026-21663

5.3CVSS3.8AI score0.00056EPSS

Exploits1References6

NVD•added 2026/02/23 11:16 a.m.•5 views

CVE-2026-2984

6.9CVSS0.00154EPSS

Exploits1References5

OSV•added 2026/02/23 11:16 a.m.•1 views

CVE-2026-2984

6.5CVSS5.6AI score0.00154EPSS

Exploits1References5

OSV•added 2026/02/23 10:16 a.m.•0 views

CVE-2026-2983

A vulnerability was determined in SourceCodester Student Result Management System 1.0. The impacted element is an unknown function of the file /admin/core/importusers.php of the component Bulk Import. This manipulation of the argument File causes improper access controls. Remote exploitation of t...

9.8CVSS5.5AI score0.00073EPSS

Exploits1References5

NVD•added 2026/02/23 10:16 a.m.•2 views

CVE-2026-2983

9.8CVSS0.00073EPSS

Exploits1References5

Vulnrichment•added 2026/02/23 10:2 a.m.•5 views

CVE-2026-2984 SourceCodester Student Result Management System drop_user.php denial of service

6.9CVSS6.4AI score0.00154EPSS

Exploits1References5

ATTACKERKB•added 2026/02/23 10:2 a.m.•1 views

CVE-2026-2984

6.9CVSS5.3AI score0.00154EPSS

Exploits1References5Affected Software1

CVE•added 2026/02/23 10:2 a.m.•6 views

CVE-2026-2984

SourceCodester SourceCodester Student Result Management System 1.0 is affected by a vulnerability in /admin/core/drop_user.php where manipulation of the ID parameter can cause a remote denial of service. The initial entry provides CVSS metrics (2.x/3.x/4.x) and notes a publicly available exploit,...

6.9CVSS5.3AI score0.00154EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2026/02/23 9:32 a.m.•6 views

CVE-2026-2983 SourceCodester Student Result Management System Bulk Import import_users.php access control

7.5CVSS7AI score0.00073EPSS

Exploits1References5

CVE•added 2026/02/23 9:32 a.m.•8 views

CVE-2026-2983

CVE-2026-2983 affects SourceCodester Student Result Management System 1.0. The vulnerability is in the Bulk Import component, specifically the unknown function handling the File argument in /admin/core/import_users.php, where manipulating File leads to improper access controls. Remote exploitatio...

9.8CVSS7.1AI score0.00073EPSS

Exploits1References5Affected Software1

ATTACKERKB•added 2026/02/23 9:32 a.m.•2 views

CVE-2026-2983

7.5CVSS5.1AI score0.00073EPSS

Exploits1References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by