Lucene search
+L

13 matches found

NVD
NVD
added 2026/07/04 8:16 p.m.10 views

CVE-2026-14648

A security vulnerability has been detected in code-projects Online Voting System up to 0.x/1.0. This issue affects the function testinput of the file /authentication.php of the component Login. Such manipulation of the argument adminUserName/adminPassword leads to sql injection. It is possible to...

7.5CVSS0.00347EPSS
Exploits0References6
EUVD
EUVD
added 2026/07/04 7:45 p.m.10 views

EUVD-2026-41693

A vulnerability was detected in code-projects Online Voting System 1.0. Impacted is the function testinput of the file /saveVote.php. Performing a manipulation of the argument voterName/voterEmail/voterID/selectedCandidate results in sql injection. The attack can be initiated remotely...

7.5CVSS7AI score0.00269EPSS
Exploits0References6
CVE
CVE
added 2026/07/04 7:45 p.m.22 views

CVE-2026-14649

The CVE-2026-14649 entry concerns code-projects Online Voting System 1.0. The vulnerability is in the test_input function of /saveVote.php, where manipulating the arguments voterName, voterEmail, voterID, or selectedCandidate leads to SQL injection. The flaw is exploitable remotely over the netwo...

7.5CVSS7AI score0.00269EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/07/04 7:45 p.m.9 views

CVE-2026-14649

A vulnerability was detected in code-projects Online Voting System 1.0. Impacted is the function testinput of the file /saveVote.php. Performing a manipulation of the argument voterName/voterEmail/voterID/selectedCandidate results in sql injection. The attack can be initiated remotely...

7.5CVSS7AI score0.00269EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/07/04 7:15 p.m.39 views

CVE-2026-14648 code-projects Online Voting System Login authentication.php test_input sql injection

A security vulnerability has been detected in code-projects Online Voting System up to 0.x/1.0. This issue affects the function testinput of the file /authentication.php of the component Login. Such manipulation of the argument adminUserName/adminPassword leads to sql injection. It is possible to...

7.5CVSS0.00347EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/05/12 10:24 p.m.6 views

CVE-2026-43685

A Remote Code Execution vulnerability in Claris FileMaker Cloud allowed a user with Admin Console privileges to inject arbitrary operating system commands through unsanitized input in the External ODBC Data Source connection test feature. This issue is fixed in FileMaker Cloud 2.22.0.5...

6AI score0.00457EPSS
Exploits0References1
OSV
OSV
added 2026/04/10 5:32 p.m.2 views

CVE-2026-31939 Path Traversal (Arbitrary File Delete) in Chamilo LMS

Chamilo LMS is a learning management system. Prior to 1.11.38, there is a path traversal in main/exercise/savescores.php leading to arbitrary file feletion. User input from $REQUEST'test' is concatenated directly into filesystem path without canonicalization or traversal checks. This vulnerabilit...

8.3CVSS6AI score0.0035EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.6 views

PT-2026-31999

Chamilo LMS is a learning management system. Prior to 1.11.38, there is a path traversal in main/exercise/savescores.php leading to arbitrary file feletion. User input from $ REQUEST'test' is concatenated directly into filesystem path without canonicalization or traversal checks. This vulnerabili...

8.3CVSS5.9AI score0.0035EPSS
Exploits0References4
NVD
NVD
added 2025/11/07 6:15 p.m.9 views

CVE-2025-63713

Cross-Site Scripting XSS vulnerability in SourceCodester "MatchMaster" 1.0 allows remote attackers to inject arbitrary web script or HTML via crafted input in the custom test creation feature. The vulnerability exists because the application fails to properly sanitize user-supplied input in test...

6.1CVSS0.00324EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2025/08/07 12:0 a.m.4 views

Enhancing Software Vulnerability Detection through Adaptive Test Input Generation Using Genetic Algorithm

Software vulnerabilities continue to undermine the reliability and security of modern systems, particularly as software complexity outpaces the capabilities of traditional detection methods. This study introduces a genetic algorithm-based method for test input generation that innovatively...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/07/13 12:0 a.m.5 views

PT-2024-40807 · Git +1 · Openssl

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a null-dereference read crash. Technical details include a crash type of null-dereference READ and a crash state involving do evp...

6.8AI score
Exploits0References2
OSV
OSV
added 2022/12/30 11:4 a.m.6 views

OESA-2022-2163 xorg-x11-server security update

Xephyr is an X server which has been implemented as an ordinary X application. It runs in a window just like other X applications,but it is an X server itself in which you can run other software. It is a very useful tool for developers who wish to test their applications without running them on...

8.8CVSS7.5AI score0.02685EPSS
Exploits0References7
CNVD
CNVD
added 2018/01/30 12:0 a.m.5 views

Multiple Vulnerabilities in iball Baton 150M Wireless-N ADSI.2+

The iball Baton 150M Wireless-N ADSI.2+ is a wireless router from iBall India. The iball Baton 150M Wireless-N ADSI.2+ router is vulnerable to hard-coded user credentials and remote command execution. A remote attacker can log in to the router's web management interface with hard-coded user...

7.9AI score
Exploits0References1
Rows per page
Query Builder