Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

16049 matches found

Vulnrichment
Vulnrichmentadded 2026/02/18 12:0 a.m.3 views

CVE-2025-70141

SourceCodester Customer Support System 1.0 contains an incorrect access control vulnerability in ajax.php. The AJAX dispatcher does not enforce authentication or authorization before invoking administrative methods in adminclass.php based on the action parameter. An unauthenticated remote attacke...

5.6AI score0.00577EPSS
Exploits1References2
CNNVD
CNNVDadded 2026/02/18 12:0 a.m.5 views

SourceCodester Customer Support System 安全漏洞

The SourceCodester Customer Support System is an open-source customer support system developed by SourceCodester. Version 1.0 of the SourceCodester Customer Support System contains security vulnerabilities. These vulnerabilities stem from the AJAX scheduler in the ajax.php file, which lacks...

9.4CVSS5.8AI score0.00577EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2026/02/09 7:23 p.m.2 views

CVE-2026-2160

A vulnerability has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected by this vulnerability is an unknown functionality of the file /tourism/classes/Master.php?f=savepackage. The manipulation of the argument Title leads to cross site scripting. The attack can be initiat...

6.1CVSS3.8AI score0.00059EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/02/09 7:23 p.m.3 views

CVE-2026-2159

A flaw has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected is an unknown function of the file /tourism/classes/Master.php?f=register of the component Registration. Executing a manipulation of the argument firstname/lastname/username can lead to cross site scripting. I...

6.1CVSS3.7AI score0.0002EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/02/09 7:23 p.m.3 views

CVE-2026-2177

A vulnerability has been found in SourceCodester Prison Management System 1.0. The impacted element is an unknown function of the component Login. The manipulation leads to session fixiation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

7.5CVSS5.1AI score0.00084EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/02/09 1:23 p.m.7 views

CVE-2026-2150

A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this issue is some unknown functionality of the file /checkin.php. This manipulation of the argument patientid causes cross site scripting. The attack can be initiated remotely. Th...

6.1CVSS3.9AI score0.00017EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/02/09 1:23 p.m.5 views

CVE-2026-2149

A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /appointments.php. The manipulation of the argument patientid results in cross site scripting. It is possible to...

6.1CVSS4AI score0.00017EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/02/08 7:22 p.m.4 views

CVE-2026-2090

A vulnerability was determined in SourceCodester Online Class Record System 1.0. This issue affects some unknown processing of the file /admin/message/search.php. Executing a manipulation of the argument term can lead to sql injection. The attack can be executed remotely. The exploit has been...

9.8CVSS7.2AI score0.00048EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/02/08 7:22 p.m.3 views

CVE-2026-2087

A flaw has been found in SourceCodester Online Class Record System 1.0. Affected by this issue is some unknown functionality of the file /admin/login.php. This manipulation of the argument useremail causes sql injection. The attack may be initiated remotely. The exploit has been published and may...

9.8CVSS7.1AI score0.00048EPSS
Exploits0References1
OSV
OSVadded 2026/02/08 7:16 p.m.2 views

CVE-2026-2177

A vulnerability has been found in SourceCodester Prison Management System 1.0. The impacted element is an unknown function of the component Login. The manipulation leads to session fixiation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

7.3CVSS5.3AI score0.00084EPSS
Exploits1References5
NVD
NVDadded 2026/02/08 7:16 p.m.3 views

CVE-2026-2177

A vulnerability has been found in SourceCodester Prison Management System 1.0. The impacted element is an unknown function of the component Login. The manipulation leads to session fixiation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

7.5CVSS0.00084EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2026/02/08 7:2 p.m.3 views

CVE-2026-2177 SourceCodester Prison Management System Login session fixiation

A vulnerability has been found in SourceCodester Prison Management System 1.0. The impacted element is an unknown function of the component Login. The manipulation leads to session fixiation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

7.5CVSS5.1AI score0.00084EPSS
Exploits1References5
Cvelist
Cvelistadded 2026/02/08 7:2 p.m.29 views

CVE-2026-2177 SourceCodester Prison Management System Login session fixiation

A vulnerability has been found in SourceCodester Prison Management System 1.0. The impacted element is an unknown function of the component Login. The manipulation leads to session fixiation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

7.5CVSS0.00084EPSS
Exploits1References5
EUVD
EUVDadded 2026/02/08 7:2 p.m.6 views

EUVD-2026-5773

A vulnerability has been found in SourceCodester Prison Management System 1.0. The impacted element is an unknown function of the component Login. The manipulation leads to session fixiation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

7.5CVSS5.1AI score0.00084EPSS
Exploits1References5
CVE
CVEadded 2026/02/08 7:2 p.m.8 views

CVE-2026-2177

CVE-2026-2177 affects SourceCodester Prison Management System 1.0, with a vulnerability in the Login component where manipulating an unknown function leads to session fixation. Exploitation is possible remotely, the exploit has been publicly disclosed, and exploitation maturity is listed as PROOF...

7.5CVSS6.8AI score0.00084EPSS
Exploits1References5Affected Software1
NVD
NVDadded 2026/02/08 4:15 p.m.4 views

CVE-2026-2160

A vulnerability has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected by this vulnerability is an unknown functionality of the file /tourism/classes/Master.php?f=savepackage. The manipulation of the argument Title leads to cross site scripting. The attack can be initiat...

6.1CVSS0.00059EPSS
Exploits1References5
OSV
OSVadded 2026/02/08 4:15 p.m.1 views

CVE-2026-2159

A flaw has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected is an unknown function of the file /tourism/classes/Master.php?f=register of the component Registration. Executing a manipulation of the argument firstname/lastname/username can lead to cross site scripting. I...

6.1CVSS4.1AI score0.0002EPSS
Exploits1References5
Cvelist
Cvelistadded 2026/02/08 3:32 p.m.31 views

CVE-2026-2160 SourceCodester Simple Responsive Tourism Website Master.php cross site scripting

A vulnerability has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected by this vulnerability is an unknown functionality of the file /tourism/classes/Master.php?f=savepackage. The manipulation of the argument Title leads to cross site scripting. The attack can be initiat...

5.3CVSS0.00059EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2026/02/08 3:32 p.m.4 views

CVE-2026-2160 SourceCodester Simple Responsive Tourism Website Master.php cross site scripting

A vulnerability has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected by this vulnerability is an unknown functionality of the file /tourism/classes/Master.php?f=savepackage. The manipulation of the argument Title leads to cross site scripting. The attack can be initiat...

5.3CVSS3.8AI score0.00059EPSS
Exploits1References5
EUVD
EUVDadded 2026/02/08 3:32 p.m.6 views

EUVD-2026-5789

A vulnerability has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected by this vulnerability is an unknown functionality of the file /tourism/classes/Master.php?f=savepackage. The manipulation of the argument Title leads to cross site scripting. The attack can be initiat...

6.1CVSS3.6AI score0.00059EPSS
Exploits1References5
Rows per page
Query Builder