Lucene search
K

434 matches found

OSV
OSV
added 6 days ago4 views

OESA-2026-2819 gnome-tour security update

A guided tour and greeter for GNOME.Tour uses by default the logo of the distribution based on the info from /etc/os-release. The application comes with a feature to replace the logo with a welcome video shipped by the distribution. Security Fixes: slab is a pre-allocated storage for a uniform da...

5.1CVSS5.9AI score0.00156EPSS
Exploits0References2
OSV
OSV
added 6 days ago4 views

OESA-2026-2818 gnome-tour security update

A guided tour and greeter for GNOME.Tour uses by default the logo of the distribution based on the info from /etc/os-release. The application comes with a feature to replace the logo with a welcome video shipped by the distribution. Security Fixes: slab is a pre-allocated storage for a uniform da...

5.1CVSS5.9AI score0.00156EPSS
Exploits0References2
OSV
OSV
added 6 days ago4 views

OESA-2026-2817 gnome-tour security update

A guided tour and greeter for GNOME.Tour uses by default the logo of the distribution based on the info from /etc/os-release. The application comes with a feature to replace the logo with a welcome video shipped by the distribution. Security Fixes: slab is a pre-allocated storage for a uniform da...

5.1CVSS5.9AI score0.00156EPSS
Exploits0References2
NVD
NVD
added 2026/07/05 5:17 p.m.11 views

CVE-2026-14763

A flaw has been found in code-projects Hotel and Tourism Reservation 1.0. This affects an unknown function of the file /admin/tourreserves.php of the component Tour Reservations Page. This manipulation of the argument tour causes sql injection. The attack can be initiated remotely. The exploit ha...

7.5CVSS0.00269EPSS
Exploits0References6
EUVD
EUVD
added 2026/07/05 4:15 p.m.10 views

EUVD-2026-41773

A flaw has been found in code-projects Hotel and Tourism Reservation 1.0. This affects an unknown function of the file /admin/tourreserves.php of the component Tour Reservations Page. This manipulation of the argument tour causes sql injection. The attack can be initiated remotely. The exploit ha...

7.5CVSS5.8AI score0.00269EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/07/05 4:15 p.m.25 views

CVE-2026-14763 code-projects Hotel and Tourism Reservation Tour Reservations tour_reserves.php sql injection

A flaw has been found in code-projects Hotel and Tourism Reservation 1.0. This affects an unknown function of the file /admin/tourreserves.php of the component Tour Reservations Page. This manipulation of the argument tour causes sql injection. The attack can be initiated remotely. The exploit ha...

7.5CVSS0.00269EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/07/05 4:15 p.m.8 views

CVE-2026-14763

A flaw has been found in code-projects Hotel and Tourism Reservation 1.0. This affects an unknown function of the file /admin/tourreserves.php of the component Tour Reservations Page. This manipulation of the argument tour causes sql injection. The attack can be initiated remotely. The exploit ha...

7.5CVSS6.8AI score0.00269EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/07/05 4:15 p.m.21 views

CVE-2026-14763

CVE-2026-14763 affects code-projects Hotel and Tourism Reservation 1.0. The vulnerability targets the Tour Reservations Page, specifically /admin/tour_reserves.php, where manipulation of the tour argument enables SQL injection. Attacks are network-based and can be initiated remotely; the exploit ...

7.5CVSS6.8AI score0.00269EPSS
Exploits0References6
NVD
NVD
added 2026/07/05 3:16 p.m.9 views

CVE-2026-14756

A vulnerability was found in code-projects Hotel and Tourism Reservation 1.0. Affected by this issue is some unknown functionality of the file /admin/addtour.php of the component Tour Management Page. The manipulation of the argument deleteimage results in sql injection. The attack may be launche...

7.5CVSS0.00269EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/07/05 2:30 p.m.34 views

CVE-2026-14756 code-projects Hotel and Tourism Reservation Tour Management add_tour.php sql injection

A vulnerability was found in code-projects Hotel and Tourism Reservation 1.0. Affected by this issue is some unknown functionality of the file /admin/addtour.php of the component Tour Management Page. The manipulation of the argument deleteimage results in sql injection. The attack may be launche...

7.5CVSS0.00269EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/07/05 2:30 p.m.5 views

CVE-2026-14756

A vulnerability was found in code-projects Hotel and Tourism Reservation 1.0. Affected by this issue is some unknown functionality of the file /admin/addtour.php of the component Tour Management Page. The manipulation of the argument deleteimage results in sql injection. The attack may be launche...

7.5CVSS6.7AI score0.00269EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/07/05 2:30 p.m.14 views

CVE-2026-14756

The CVE-2026-14756 entry concerns code-projects Hotel and Tourism Reservation 1.0. It identifies a vulnerability in /admin/add_tour.php where manipulating the delete_image argument enables SQL injection, with remote exploitation and a publicly available exploit. The issue affects the Tour Managem...

7.5CVSS6.7AI score0.00269EPSS
Exploits0References6
EUVD
EUVD
added 2026/07/05 2:30 p.m.9 views

EUVD-2026-41763

A vulnerability was found in code-projects Hotel and Tourism Reservation 1.0. Affected by this issue is some unknown functionality of the file /admin/addtour.php of the component Tour Management Page. The manipulation of the argument deleteimage results in sql injection. The attack may be launche...

7.5CVSS6.7AI score0.00269EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/07/05 12:0 a.m.12 views

PT-2026-55804

Name of the Vulnerable Software and Affected Versions code-projects Hotel and Tourism Reservation version 1.0 Description An issue exists in the Tour Management Page component within the '/admin/add tour.php' endpoint. Remote attackers can perform a SQL injection by manipulating the delete image...

7.5CVSS7.1AI score0.00269EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/06/30 12:0 a.m.9 views

Axis Communications AXIS OS Improper Validation of Syntactic Correctness of Input (CVE-2024-6173)

A researcher in the AXIS OS Bug Bounty Program has found that a Guard Tour VAPIX API parameter accepted arbitrary values, which could let an attacker block access to the guard tour configuration page in the web interface of the Axis device. Axis has released patched AXIS OS versions for this flaw...

6.5CVSS6AI score0.00391EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/05 7:34 p.m.12 views

CVE-2026-10290

A weakness has been identified in code-projects Hotel and Tourism Reservation System 1.0. The affected element is an unknown function of the file tour.php of the component GET Parameter Handler. Executing a manipulation of the argument tour can lead to sql injection. The attack can be launched...

7.5CVSS7AI score0.00318EPSS
Exploits0References1
NVD
NVD
added 2026/06/01 10:16 p.m.11 views

CVE-2026-10290

A weakness has been identified in code-projects Hotel and Tourism Reservation System 1.0. The affected element is an unknown function of the file tour.php of the component GET Parameter Handler. Executing a manipulation of the argument tour can lead to sql injection. The attack can be launched...

7.5CVSS0.00318EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/01 8:30 p.m.32 views

CVE-2026-10290 code-projects Hotel and Tourism Reservation System GET Parameter tour.php sql injection

A weakness has been identified in code-projects Hotel and Tourism Reservation System 1.0. The affected element is an unknown function of the file tour.php of the component GET Parameter Handler. Executing a manipulation of the argument tour can lead to sql injection. The attack can be launched...

7.5CVSS0.00318EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/06/01 8:30 p.m.10 views

CVE-2026-10290 code-projects Hotel and Tourism Reservation System GET Parameter tour.php sql injection

A weakness has been identified in code-projects Hotel and Tourism Reservation System 1.0. The affected element is an unknown function of the file tour.php of the component GET Parameter Handler. Executing a manipulation of the argument tour can lead to sql injection. The attack can be launched...

7.5CVSS6.9AI score0.00318EPSS
Exploits0References6
CVE
CVE
added 2026/06/01 8:30 p.m.25 views

CVE-2026-10290

The vulnerability CVE-2026-10290 affects code-projects Hotel and Tourism Reservation System 1.0, specifically the GET Parameter Handler’s tour.php. The issue arises from an unspecified function allowing manipulation of the tour argument, leading to SQL injection. Remote exploitation is possible a...

7.5CVSS5.7AI score0.00318EPSS
Exploits0References6
Rows per page
Query Builder