216506 matches found
CVE-2026-5586
CVE-2026-5586 affects zhongyu09 openchatbi up to version 0.2.1, specifically a vulnerability in an unknown function within the Multi-stage Text2SQL Workflow. Manipulating the argument keywords may lead to SQL injection. The attack can be launched remotely, and the exploit has been publicly disclo...
CVE-2026-5580
A vulnerability was identified in CodeAstro Online Classroom 1.0. Impacted is an unknown function of the file /OnlineClassroom/addvideos.php of the component Parameter Handler. The manipulation of the argument videotitle leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2026-5583
A security vulnerability has been detected in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /my-profile.php of the component Parameter Handler. The manipulation of the argument fullname leads to sql injection. It is possible to initiate the attack remotel...
CVE-2026-5583 PHPGurukul Online Shopping Portal Project Parameter my-profile.php sql injection
A security vulnerability has been detected in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /my-profile.php of the component Parameter Handler. The manipulation of the argument fullname leads to sql injection. It is possible to initiate the attack remotel...
CVE-2026-5583
A security vulnerability has been detected in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /my-profile.php of the component Parameter Handler. The manipulation of the argument fullname leads to sql injection. It is possible to initiate the attack remotel...
CVE-2026-5583 PHPGurukul Online Shopping Portal Project Parameter my-profile.php sql injection
A security vulnerability has been detected in PHPGurukul Online Shopping Portal Project 2.1. This affects an unknown part of the file /my-profile.php of the component Parameter Handler. The manipulation of the argument fullname leads to sql injection. It is possible to initiate the attack remotel...
CVE-2026-5579
A vulnerability was determined in CodeAstro Online Classroom 1.0. This issue affects some unknown processing of the file /OnlineClassroom/updatedetailsfromfaculty.php?myfid=108 of the component Parameter Handler. Executing a manipulation of the argument fname can lead to sql injection. The attack...
CVE-2026-5577
A vulnerability has been found in Song-Li crossbrowser up to ca690f0fe6954fd9bcda36d071b68ed8682a786a. This affects an unknown part of the file flask/uniquemachineapp.py of the component details Endpoint. Such manipulation of the argument ID leads to sql injection. The attack can be executed...
CVE-2026-5580 CodeAstro Online Classroom Parameter addvideos.php sql injection
A vulnerability was identified in CodeAstro Online Classroom 1.0. Impacted is an unknown function of the file /OnlineClassroom/addvideos.php of the component Parameter Handler. The manipulation of the argument videotitle leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2026-5580
A vulnerability was identified in CodeAstro Online Classroom 1.0. Impacted is an unknown function of the file /OnlineClassroom/addvideos.php of the component Parameter Handler. The manipulation of the argument videotitle leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2026-5580
CVE-2026-5580 affects CodeAstro Online Classroom 1.0. The flaw is in the file /OnlineClassroom/addvideos.php (Parameter Handler) where manipulating the argument videotitle exposes an SQL injection vulnerability. Exploitation can be performed remotely; public exploits are available. Documents indi...
CVE-2026-5578
CodeAstro Online Classroom 1.0 is affected by a SQL injection in the Parameter Handler’s addassessment.php when manipulating the deleteid argument. The vulnerability affects unknown code paths in /OnlineClassroom/addassessment.php and can be triggered remotely; the exploit is public. Exploit matu...
EUVD-2026-19077
A security vulnerability has been detected in code-projects Simple Laundry System 1.0. Affected by this issue is some unknown functionality of the file /delmemberinfo.php of the component Parameter Handler. Such manipulation of the argument userid leads to sql injection. The attack may be launche...
CVE-2026-5577 Song-Li cross_browser details Endpoint uniquemachine_app.py sql injection
A vulnerability has been found in Song-Li crossbrowser up to ca690f0fe6954fd9bcda36d071b68ed8682a786a. This affects an unknown part of the file flask/uniquemachineapp.py of the component details Endpoint. Such manipulation of the argument ID leads to sql injection. The attack can be executed...
CVE-2026-5577 Song-Li cross_browser details Endpoint uniquemachine_app.py sql injection
A vulnerability has been found in Song-Li crossbrowser up to ca690f0fe6954fd9bcda36d071b68ed8682a786a. This affects an unknown part of the file flask/uniquemachineapp.py of the component details Endpoint. Such manipulation of the argument ID leads to sql injection. The attack can be executed...
CVE-2026-5577
CVE-2026-5577 affects Song-Li cross_browser (up to commit ca690f0fe6954fd9bcda36d071b68ed8682a786a). The vulnerable component is the details Endpoint in the file flask/uniquemachine_app.py. Manipulating the argument ID can lead to an SQL injection vulnerability. The issue can be triggered remotel...
[SECURITY] [DSA 6197-1] dovecot security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6197-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 05, 2026 https://www.debian.org/security/faq -...
EUVD-2026-19099
A vulnerability was detected in SourceCodester/jkev Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file index.php of the component Login. The manipulation of the argument Username results in sql injection. The attack may be launched remotely. The...
CVE-2026-5575
A vulnerability was detected in SourceCodester/jkev Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file index.php of the component Login. The manipulation of the argument Username results in sql injection. The attack may be launched remotely. The...
CVE-2026-5575
SourceCodester/jkev Record Management System 1.0 is affected in the Login component, specifically the file index.php. The vulnerability arises from manipulation of the Username argument, leading to SQL injection. The attack could be launched remotely, and public exploits are available. The connec...