CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added yesterday•3 views

GHSA-V39M-97P8-GQG7 Shopware: Privilege escalation: non-admin user with user:create ACL can create admin accounts

UserController::upsertUser writes user data in SYSTEMSCOPE and does not filter the admin field. A non-admin API user with user:create or user:update ACL permission can set admin: true on new or existing users, escalating to full admin access. The Problem In...

6.5CVSS5.8AI score

Exploits0References4

NVD•added 4 days ago•8 views

CVE-2026-10227

A vulnerability has been found in raisulislamg4 studentmanagementsystembyphp up to 310d950e09013d5133c6b9210aff9444382d16d1. The affected element is an unknown function of the file addusercheck.php of the component User Creation Handler. The manipulation of the argument role leads to sql injectio...

7.5CVSS0.00033EPSS

Cvelist•added 4 days ago•37 views

CVE-2026-10227 raisulislamg4 student_management_system_by_php User Creation add_user_check.php sql injection

7.5CVSS0.00033EPSS

ATTACKERKB•added 4 days ago•8 views

CVE-2026-10227

EUVD•added 4 days ago•10 views

EUVD-2026-33560

7.5CVSS5.4AI score0.00033EPSS

Vulnrichment•added 4 days ago•4 views

CVE-2026-10227 raisulislamg4 student_management_system_by_php User Creation add_user_check.php sql injection

CVE•added 4 days ago•9 views

CVE-2026-10227

CVE-2026-10227 affects the project “raisulislamg4 student_management_system_by_php” (unknown version range) via an SQL injection in an argument within add_user_check.php of the User Creation Handler. According to the description, manipulating the role parameter enables remote exploitation, and th...

Positive Technologies•added 4 days ago•12 views

PT-2026-45271

A vulnerability has been found in raisulislamg4 student management system by php up to 310d950e09013d5133c6b9210aff9444382d16d1. The affected element is an unknown function of the file add user check.php of the component User Creation Handler. The manipulation of the argument role leads to sql...

CNNVD•added 4 days ago•5 views

Exploits0References7

Student_Management_System_by_PHP SQL Injection Vulnerability

studentmanagementsystembyphp is a student information management tool developed by Raisul Islam, based on PHP. studentmanagementsystembyphp has a SQL injection vulnerability, which stems from the incorrect handling of the 'role' parameter in the User Creation Handler component of the...

7.5CVSS7.2AI score0.00033EPSS

CVE•added 2026/05/29 2:46 p.m.•10 views

CVE-2018-25397

PHP-SHOP 1.0 is affected by a cross-site request forgery in the users.php endpoint. An unauthenticated attacker can craft a page with a hidden form that automatically POSTs parameters (name, email, password, permissions) to create an admin account, by convincing an authenticated administrator to ...

6.9CVSS5.7AI score0.00021EPSS

Exploits0References3

EUVD•added 2026/05/29 12:38 a.m.•9 views

EUVD-2026-33165

The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privilege Escalation via Validation Bypass in all versions up to and including 0.9.2.5. The vulnerability exists due to the aftervalidatesavepost function unconditionally trusting the attacker-controlled acfpostid POST...

9.8CVSS5.8AI score0.0023EPSS

Exploits0References7

Cvelist•added 2026/05/28 6:22 p.m.•25 views

CVE-2026-45332 Automad Broken Access Control: unauthenticated exposure of administrator bcrypt password hashes and TOTP secrets via public API endpoint

Automad is a flat-file content management system and template engine. From 2.0.0-alpha.1 to 2.0.0-beta.27, a Broken Access Control vulnerability allows an unauthenticated attacker to retrieve the bcrypt password hash of every administrator account with a single POST request. The...

7.5CVSS0.00058EPSS

Exploits1References1

NVD•added 2026/05/27 6:16 p.m.•8 views

CVE-2026-45716

Budibase is an open-source low-code platform. Prior to 3.38.1, the POST /api/global/users/onboard endpoint is protected by workspaceBuilderOrAdmin middleware, allowing any user with builder permissions to access it. When SMTP email is not configured the default for self-hosted Budibase instances,...

8.8CVSS0.00036EPSS

NVD•added 2026/05/23 5:16 a.m.•5 views

CVE-2026-6898

The Wishlist Member plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'WishListMember3Hooks::generateapikey' function in all versions up to, and including, 3.30.1. This makes it possible for authenticated attackers, with...

8.8CVSS0.00044EPSS

Vulnrichment•added 2026/05/23 4:27 a.m.•7 views

CVE-2026-6898 WishList Member <= 3.30.1 - Missing Authorization to Authenticated (Subscriber+) Generate API Secret Key via 'wlm3_generate_api_key' AJAX action

8.8CVSS5.8AI score0.00044EPSS

Positive Technologies•added 2026/05/23 12:0 a.m.•9 views

PT-2026-42866

The Wishlist Member plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'WishListMember3 Hooks::generate api key' function in all versions up to, and including, 3.30.1. This makes it possible for authenticated attackers, with...

8.8CVSS5.8AI score0.00044EPSS

NVD•added 2026/05/19 2:16 p.m.•6 views

CVE-2025-40902

A Stored HTML Injection vulnerability was discovered in the Users functionality due to improper validation of an input parameter. An authenticated user with administrative privileges can create a malicious user whose username contains HTML tags. When a victim attempts to delete a group containing...

5.9CVSS0.00029EPSS

Exploits0References1

ATTACKERKB•added 2026/05/19 1:21 p.m.•3 views

CVE-2025-40902

5.9CVSS5.8AI score0.00029EPSS

Positive Technologies•added 2026/05/19 12:0 a.m.•9 views

PT-2026-41889

5.9CVSS5.8AI score0.00029EPSS