CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/04/27 1:0 a.m.•4 views

EUVD-2026-25749

Vulnrichment•added 2026/04/27 1:0 a.m.•3 views

CVE-2026-7073 itsourcecode Construction Management System execute.php sql injection

CVE•added 2026/04/27 1:0 a.m.•11 views

CVE-2026-7073

CVE-2026-7073 affects itsourcecode Construction Management System 1.0. A flaw in an unknown part of /execute.php allows manipulation of the argument code to trigger SQL injection. The vulnerability is remotely exploitable and exploitation is documented as a proof-of-concept in the linked sources....

ATTACKERKB•added 2026/04/27 1:0 a.m.•3 views

CVE-2026-7073

Exploits0References5Affected Software1

Cvelist•added 2026/04/27 12:45 a.m.•28 views

CVE-2026-7072 CodePanda Source canteen_management_system login.php sql injection

A vulnerability was detected in CodePanda Source canteenmanagementsystem 1.0. Affected by this issue is some unknown functionality of the file /api/login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. The exploit is now public and may...

7.5CVSS0.00254EPSS

Exploits0References4

ATTACKERKB•added 2026/04/27 12:45 a.m.•2 views

CVE-2026-7072

7.5CVSS7.3AI score0.00254EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2026/04/27 12:15 a.m.•2 views

CVE-2026-7070 code-projects Inventory Management System Login sql injection

A weakness has been identified in code-projects Inventory Management System 1.0. Affected is an unknown function of the component Login. Executing a manipulation of the argument Username can lead to sql injection. The attack may be launched remotely. The exploit has been made available to the...

7.5CVSS7.3AI score0.00254EPSS

ATTACKERKB•added 2026/04/27 12:15 a.m.•2 views

CVE-2026-7070

Exploits0References5Affected Software1

CNNVD•added 2026/04/27 12:0 a.m.•7 views

NASA Earth Observing System Data and Information System 安全漏洞

NASA Earth Observing System Data and Information System is an open-source platform for managing and distributing earth science data by NASA. Version 8.1 of the NASA Earth Observing System Data and Information System contains a security vulnerability, which stems from the operation of the category...

9.4CVSS5.8AI score0.00331EPSS

Exploits1References1

6.5CVSS6.7AI score0.00192EPSS

1000 Projects Portfolio Management System MCA 注入漏洞

The 1000 Projects Portfolio Management System MCA is an open-source combination management system developed by 1000 Projects. Versions of the 1000 Projects Portfolio Management System MCA, including version 1.0 and earlier, had a SQL injection vulnerability. This vulnerability stemmed from the...

CVE•added 2026/04/27 12:0 a.m.•7 views

CVE-2024-46636

CVE-2024-46636 affects NASA EOSDIS MODAPS v8.1. The MODAPS web application has a SQL injection in the category parameter caused by improper input validation, enabling exploitation via HTTP GET parameter manipulation to access data and potentially execute arbitrary SQL queries on the backend Postg...

9.4CVSS5.6AI score0.00331EPSS

Exploits1References3

CNNVD•added 2026/04/27 12:0 a.m.•7 views

CodePanda Source canteen_management_system 注入漏洞

CodePanda Source canteenmanagementsystem is an open-source system developed by CodePanda Source for managing cafeteria operations and dining services. Version 1.0 of CodePanda Source canteenmanagementsystem contains a SQL injection vulnerability. This vulnerability stems from the handling of the...

Exploits0References2

itsourcecode Construction Management System 注入漏洞

itsourcecode Construction Management System is an open-source construction management system developed by itsourcecode. Version 1.0 of the itsourcecode Construction Management System has a vulnerability related to parameter handling in the file/execute.php, which may lead to SQL injection attacks...

itsourcecode Construction Management System 注入漏洞

itsourcecode Construction Management System is an open-source construction management system developed by itsourcecode. Version 1.0 of the itsourcecode Construction Management System has a SQL injection vulnerability, which stems from the handling of the parameter “address” in the...

CNNVD•added 2026/04/27 12:0 a.m.•5 views

itsourcecode Courier Management System 注入漏洞

itsourcecode Courier Management System is an open-source courier management system developed by itsourcecode. Version 1.0 of the itsourcecode Courier Management System has a vulnerability related to parameter handling in the file/editparcel.php, which may lead to SQL injection attacks...

Exploits0References2

6.5CVSS6.7AI score0.00192EPSS

Code-Projects Employee Management System 注入漏洞

Code-Projects Employee Management System is an open-source employee management system developed by Code-Projects. Version 1.0 of the Code-Projects Employee Management System has a SQL injection vulnerability. This vulnerability arises from the operation of an unknown function in the...

CNNVD•added 2026/04/27 12:0 a.m.•5 views

SourceCodester Pharmacy Sales and Inventory System 注入漏洞

SourceCodester Pharmacy Sales and Inventory System is an open-source medication sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Pharmacy Sales and Inventory System has a SQL injection vulnerability, which stems from the handling of parameter ID...

SourceCodester Pharmacy Sales and Inventory System 注入漏洞

CNNVD•added 2026/04/27 12:0 a.m.•5 views

Exploits0References2

CodeAstro Online Classroom 注入漏洞

CodeAstro Online Classroom is an online classroom platform provided by CodeAstro Inc. Version 1.0 of CodeAstro Online Classroom has a SQL injection vulnerability. This vulnerability arises from improper handling of the parameter fname in the file /addnewfaculty, which may lead to SQL injection...

6.5CVSS6.6AI score0.00241EPSS