CVEs from 2026
Total
13,634
critical
critical 1,192
high
high 4,364
medium
medium 4,266
low
low 466
% Critical
8.7%
% with KEV
0.4%
% with exploit
0.8%
Top products
- chrome 503
- firepower_threat_defense 298
- firepower_threat_defense_software 295
- gcp 229
- openclaw 172
- commerce 104
- commerce_b2b 89
- saml_sso_-_service_provider 77
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-6152 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was determined in code-projects Vehicle Showroom Management System 1.0. This issue affects some unknown processing of the file /util/StaffAddingFunction.php. This manipulation of the … | |||
| CVE-2026-6151 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was found in code-projects Vehicle Showroom Management System 1.0. This vulnerability affects unknown code of the file /util/PaymentStatusFunction.php. The manipulation of the argumen… | |||
| CVE-2026-6149 | high | 7.3 | 7.3 | 2mo ago | A flaw has been found in code-projects Vehicle Showroom Management System 1.0. Affected by this issue is some unknown functionality of the file /util/BookVehicleFunction.php. Executing a manipulation… | |||
| CVE-2026-6148 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was detected in code-projects Vehicle Showroom Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /util/MonthTotalReportUpdateFunction.php. … | |||
| CVE-2026-6142 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was identified in tushar-2223 Hotel Management System up to bb1f3b3666124b888f1e4bcf51b6fba9fbb01d15. Affected by this vulnerability is an unknown functionality of the file /admin/roo… | |||
| CVE-2026-6130 | high | 7.3 | 7.3 | 2mo ago | A flaw has been found in chatboxai chatbox up to 1.20.0. This impacts the function StdioClientTransport of the file src/main/mcp/ipc-stdio-transport.ts of the component Model Context Protocol Server … | |||
| CVE-2026-6129 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was detected in zhayujie chatgpt-on-wechat CowAgent up to 2.0.4. This affects an unknown function of the component Agent Mode Service. Performing a manipulation results in missing aut… | |||
| CVE-2026-6126 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in zhayujie chatgpt-on-wechat CowAgent 2.0.4. The affected element is an unknown function of the component Administrative HTTP Endpoint. This manipulation causes missin… | |||
| CVE-2026-6105 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in perfree go-fastdfs-web up to 1.3.7. This affects an unknown part of the file src/main/java/com/perfree/controller/InstallController.java of the component… | |||
| CVE-2026-6038 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was identified in code-projects Vehicle Showroom Management System 1.0. This impacts an unknown function of the file /util/RegisterCustomerFunction.php. Such manipulation of the argum… | |||
| CVE-2026-6037 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was determined in code-projects Vehicle Showroom Management System 1.0. This affects an unknown function of the file /util/AddVehicleFunction.php. This manipulation of the argument BR… | |||
| CVE-2026-6036 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was found in code-projects Vehicle Showroom Management System 1.0. The impacted element is an unknown function of the file /util/VehicleDetailsFunction.php. The manipulation of the ar… | |||
| CVE-2026-6031 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. This affects an unknown function of the file /add-category-function.php. Such manipulation of the argument Category lea… | |||
| CVE-2026-6004 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was detected in code-projects Simple IT Discussion Forum 1.0. Impacted is an unknown function of the file /delete-category.php. Performing a manipulation of the argument cat_id result… | |||
| CVE-2026-5985 | high | 7.3 | 7.3 | 2mo ago | A security flaw has been discovered in code-projects Simple IT Discussion Forum 1.0. The affected element is an unknown function of the file /crud.php. The manipulation of the argument user_Id result… | |||
| CVE-2026-5961 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in code-projects Simple IT Discussion Forum 1.0. This vulnerability affects unknown code of the file /topic-details.php. The manipulation of the argument po… | |||
| CVE-2026-5842 | high | 7.3 | 7.3 | 2mo ago | decolua 9router vulnerable to authorization bypass | |||
| CVE-2026-5837 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was found in PHPGurukul News Portal Project 4.1. This affects an unknown part of the file /news-details.php. The manipulation of the argument Comment results in sql injection. The att… | |||
| CVE-2026-5832 | high | 7.3 | 7.3 | 2mo ago | api-lab-mcp vulnerable to SSRF | |||
| CVE-2026-5829 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was determined in code-projects Simple IT Discussion Forum 1.0. The impacted element is an unknown function of the file /pages/content.php. This manipulation of the argument post_id c… | |||
| CVE-2026-5828 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was found in code-projects Simple IT Discussion Forum 1.0. The affected element is an unknown function of the file /functions/addcomment.php. The manipulation of the argument postid r… | |||
| CVE-2026-5827 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. Impacted is an unknown function of the file /question-function.php. The manipulation of the argument content leads to s… | |||
| CVE-2026-5824 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /userchecklogin.php. Such manipulation of the argument userid leads to … | |||
| CVE-2026-5814 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in PHPGurukul Online Course Registration 3.1. This issue affects some unknown processing of the file /admin/check_availability.php. The manipulation of the … | |||
| CVE-2026-5813 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in PHPGurukul Online Course Registration 3.1. This vulnerability affects unknown code of the file /check_availability.php. Executing a manipulation of the argument cid … | |||
| CVE-2026-5805 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in code-projects Easy Blog Site up to 1.0. The impacted element is an unknown function of the file /users/contact_us.php. Executing a manipulation of the argument Name … | |||
| CVE-2026-5802 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was identified in idachev mcp-javadc up to 1.2.4. Impacted is an unknown function of the component HTTP Interface. Such manipulation of the argument jarFilePath leads to os command in… | |||
| CVE-2026-5741 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in suvarchal docker-mcp-server up to 0.1.0. The impacted element is the function stop_container/remove_container/pull_image of the file src/index.ts of the component HT… | |||
| CVE-2026-5736 | high | 7.3 | 7.3 | 2mo ago | PowerJob vulnerable to SQL injection | |||
| CVE-2026-5692 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was found in Totolink A7100RU 7.4cu.2313_b20191024. This impacts the function setGameSpeedCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument enable results in os c… | |||
| CVE-2026-5691 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in Totolink A7100RU 7.4cu.2313_b20191024. This affects the function setFirewallType of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument firewallType lead… | |||
| CVE-2026-5690 | high | 7.3 | 7.3 | 2mo ago | A flaw has been found in Totolink A7100RU 7.4cu.2313_b20191024. The impacted element is the function setRemoteCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument enable can… | |||
| CVE-2026-5689 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was detected in Totolink A7100RU 7.4cu.2313_b20191024. The affected element is the function setNtpCfg of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument tz re… | |||
| CVE-2026-5688 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313_b20191024. Impacted is the function setDdnsCfg of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument provider l… | |||
| CVE-2026-5678 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in Totolink A7100RU 7.4cu.2313_b20191024. The affected element is the function setScheduleCfg of the file /cgi-bin/cstecgi.cgi. Executing a manipulation of the argument… | |||
| CVE-2026-5677 | high | 7.3 | 7.3 | 2mo ago | A security flaw has been discovered in Totolink A7100RU 7.4cu.2313_b20191024. Impacted is the function CsteSystem of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument resetFlag… | |||
| CVE-2026-5676 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was identified in Totolink A8000R 5.9c.681_B20180413. This issue affects the function setLanguageCfg of the file /cgi-bin/cstecgi.cgi. Such manipulation of the argument langType leads… | |||
| CVE-2026-5672 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in code-projects Simple IT Discussion Forum 1.0. Affected by this issue is some unknown functionality of the file /edit-category.php of the component Parameter Handler.… | |||
| CVE-2026-5669 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This vulnerability affects unknown code of the file /login.php of the component P… | |||
| CVE-2026-5665 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in code-projects Online FIR System 1.0. Affected by this vulnerability is an unknown functionality of the file /Login/checklogin.php of the component Login.… | |||
| CVE-2026-5648 | high | 7.3 | 7.3 | 2mo ago | A flaw has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /userfinishregister.php of the component Parameter Handler. This manipulation of … | |||
| CVE-2026-5646 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in code-projects Easy Blog Site 1.0. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument username/p… | |||
| CVE-2026-5645 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in projectworlds Car Rental System 1.0. Affected by this vulnerability is an unknown functionality of the file /pay.php of the component Parameter Handler. Executing a … | |||
| CVE-2026-5642 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was determined in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This affects an unknown function of the file /viva/update.php of the component HT… | |||
| CVE-2026-5637 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in projectworlds Car Rental System 1.0. This vulnerability affects unknown code of the file /message_admin.php of the component Parameter Handler. Such mani… | |||
| CVE-2026-5634 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was identified in projectworlds Car Rental Project 1.0. Affected by this vulnerability is an unknown functionality of the file /book_car.php of the component Parameter Handler. The ma… | |||
| CVE-2026-5633 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was determined in assafelovic gpt-researcher up to 3.4.3. Affected is an unknown function of the component ws Endpoint. Executing a manipulation of the argument source_urls can lead t… | |||
| CVE-2026-5632 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was found in assafelovic gpt-researcher up to 3.4.3. This impacts an unknown function of the component HTTP REST API Endpoint. Performing a manipulation results in missing authenticat… | |||
| CVE-2026-5631 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in assafelovic gpt-researcher up to 3.4.3. This affects the function extract_command_data of the file backend/server/server_utils.py of the component ws Endpoint. Such … | |||
| CVE-2026-5575 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was detected in SourceCodester/jkev Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file index.php of the component Login. The manipula… | |||
| CVE-2026-5565 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in code-projects Simple Laundry System 1.0. Affected by this issue is some unknown functionality of the file /delmemberinfo.php of the component Parameter H… | |||
| CVE-2026-5564 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in code-projects Simple Laundry System 1.0. Affected by this vulnerability is an unknown functionality of the file /searchguest.php of the component Parameter Handler. … | |||
| CVE-2026-5555 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in code-projects Concert Ticket Reservation System 1.0. This affects an unknown part of the file /ConcertTicketReservationSystem-master/login.php of the component Param… | |||
| CVE-2026-5554 | high | 7.3 | 7.3 | 2mo ago | A security flaw has been discovered in code-projects Concert Ticket Reservation System 1.0. Affected by this issue is some unknown functionality of the file /ConcertTicketReservationSystem-master/pro… | |||
| CVE-2026-5551 | high | 7.3 | 7.3 | 2mo ago | A security flaw has been discovered in itsourcecode Free Hotel Reservation System 1.0. This vulnerability affects unknown code of the file /hotel/admin/login.php of the component Parameter Handler. T… | |||
| CVE-2026-5540 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /modifymember.php of the component Parameter Handler. Such manipulation … | |||
| CVE-2026-5536 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in FedML-AI FedML up to 0.8.9. Affected is the function sendMessage of the file grpc_server.py of the component gRPC server. Executing a manipulation can lead to deseri… | |||
| CVE-2026-5534 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was identified in itsourcecode Online Enrollment System 1.0. This affects an unknown function of the file /sms/user/index.php?view=edit&id=10 of the component Parameter Handler. Such … | |||
| CVE-2026-5418 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was identified in appsmithorg appsmith up to 1.97. Impacted is the function computeDisallowedHosts of the file app/server/appsmith-interfaces/src/main/java/com/appsmith/util/WebClient… | |||
| CVE-2026-5346 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was determined in huimeicloud hm_editor up to 2.2.3. Impacted is the function client.get of the file src/mcp-server.js of the component image-to-base64 Endpoint. Executing a manipulat… | |||
| CVE-2026-5322 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in AlejandroArciniegas mcp-data-vis bc597e391f184d2187062fd567599a3cb72adf51/de5a51525a69822290eaee569a1ab447b490746d. This affects the function Request of the file src… | |||
| CVE-2026-5320 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was detected in vanna-ai vanna up to 2.0.2. Affected by this vulnerability is an unknown functionality of the file /api/vanna/v2/ of the component Chat API Endpoint. Performing a mani… | |||
| CVE-2026-5261 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was identified in Shandong Hoteam InforCenter PLM up to 8.3.8. The impacted element is the function uploadFileToIIS of the file /Base/BaseHandler.ashx. The manipulation of the argumen… | |||
| CVE-2026-5258 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was found in Sanster IOPaint 1.5.3. Impacted is the function _get_file of the file iopaint/file_manager/file_manager.py of the component File Manager. Performing a manipulation of the… | |||
| CVE-2026-5238 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in itsourcecode Payroll Management System 1.0. Affected by this issue is some unknown functionality of the file /view_employee.php of the component Parameter Handler. E… | |||
| CVE-2026-5237 | high | 7.3 | 7.3 | 2mo ago | A security flaw has been discovered in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /manage_user.php of the component Parameter H… | |||
| CVE-2026-5210 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was detected in SourceCodester Leave Application System 1.0. This affects an unknown part. Performing a manipulation of the argument page results in file inclusion. Remote exploitatio… | |||
| CVE-2026-5198 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was determined in code-projects Student Membership System 1.0. The impacted element is an unknown function of the file /admin/index.php of the component Admin Login. This manipulation… | |||
| CVE-2026-5182 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was found in SourceCodester Teacher Record System 1.0. Impacted is an unknown function of the file Teacher Record System of the component Parameter Handler. Performing a manipulation … | |||
| CVE-2026-5180 | high | 7.3 | 7.3 | 2mo ago | A flaw has been found in SourceCodester Simple Doctors Appointment System 1.0. This vulnerability affects unknown code of the file /admin/ajax.php?action=login2. This manipulation of the argument ema… | |||
| CVE-2026-5179 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was detected in SourceCodester Simple Doctors Appointment System 1.0. This affects an unknown part of the file /admin/login.php. The manipulation of the argument Username results in s… | |||
| CVE-2026-5150 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in code-projects Accounting System 1.0. This issue affects some unknown processing of the file /viewin_costumer.php of the component Parameter Handler. Such… | |||
| CVE-2026-5147 | high | 7.3 | 7.3 | 2mo ago | A security flaw has been discovered in YunaiV yudao-cloud up to 2026.01. This affects an unknown part of the file /admin-api/system/tenant/get-by-website. The manipulation of the argument Website res… | |||
| CVE-2026-5016 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the function eAxios of the file /mock of the component URL Handler. Such manipulation of the argument req leads to server-si… | |||
| CVE-2026-5012 | high | 7.3 | 7.3 | 2mo ago | A flaw has been found in elecV2 elecV2P up to 3.8.3. This issue affects the function pm2run of the file /rpc. Executing a manipulation can lead to os command injection. The attack can be executed rem… | |||
| CVE-2026-5002 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054. The impacted element is the function _route_using_overviews of the file backend/server.py of t… | |||
| CVE-2026-5001 | high | 7.3 | 7.3 | 2mo ago | A flaw has been found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054. The affected element is the function do_POST of the file backend/server.py. This manipulation causes un… | |||
| CVE-2026-4998 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in Sinaptik AI PandasAI up to 3.0.0. This vulnerability affects the function CodeExecutor.execute of the file pandasai/core/code_execution/code_executor.py of the compo… | |||
| CVE-2026-4996 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was identified in Sinaptik AI PandasAI up to 0.1.4. Affected by this issue is the function delete_question_and_answers/delete_docs/update_question_answer/update_docs/get_relevant_ques… | |||
| CVE-2026-4990 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in chatwoot up to 4.11.1. The affected element is an unknown function of the file /app/login of the component Signup Endpoint. Such manipulation of the argu… | |||
| CVE-2026-4956 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.44. The affected element is an unknown function of the file /DevicePrint.do?Action=ReadTask of the component Parameter … | |||
| CVE-2026-4955 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was found in Shenzhen Ruiming Technology Streamax Crocus 1.3.44. This impacts an unknown function of the file /OperateStatistic.do. The manipulation of the argument VehicleID results … | |||
| CVE-2026-4953 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in mingSoft MCMS up to 5.5.0. This issue affects the function catchImage of the file net/mingsoft/cms/action/BaseAction.java of the component Editor Endpoint. Executing… | |||
| CVE-2026-4910 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in Shenzhen Ruiming Technology Streamax Crocus up to 1.3.44. Affected is an unknown function of the file /RemoteFormat.do of the component Endpoint. Such ma… | |||
| CVE-2026-4860 | high | 7.3 | 7.3 | 2mo ago | A security flaw has been discovered in 648540858 wvp-GB28181-pro up to 2.7.4. This affects the function GenericFastJsonRedisSerializer of the file src/main/java/com/genersoft/iot/vmp/conf/redis/Redis… | |||
| CVE-2026-4844 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was detected in code-projects Online Food Ordering System 1.0. This issue affects some unknown processing of the file /admin.php of the component Admin Login Module. The manipulation … | |||
| CVE-2026-4842 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in itsourcecode Online Enrollment System 1.0. This vulnerability affects unknown code of the file /sms/grades/index.php?view=edit&id=1 of the component Para… | |||
| CVE-2026-4841 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in code-projects Online Food Ordering System 1.0. This affects an unknown part of the file form/cart.php of the component Shopping Cart Module. Executing a manipulation… | |||
| CVE-2026-4839 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in SourceCodester Food Ordering System 1.0. This affects an unknown function of the file /purchase.php of the component Parameter Handler. The manipulation of the argum… | |||
| CVE-2026-4838 | high | 7.3 | 7.3 | 2mo ago | A flaw has been found in SourceCodester Malawi Online Market 1.0. The impacted element is an unknown function of the file /display.php. Executing a manipulation of the argument ID can lead to sql inj… | |||
| CVE-2026-25456 | high | 7.3 | 7.3 | 2mo ago | Missing Authorization vulnerability in Aarsiv Groups Automated FedEx live/manual rates with shipping labels a2z-fedex-shipping allows Exploiting Incorrectly Configured Access Control Security Levels.… | |||
| CVE-2026-4632 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in itsourcecode Online Enrollment System 1.0. This vulnerability affects unknown code of the file /sms/user/index.php?view=add of the component Parameter Handler. Execu… | |||
| CVE-2026-4625 | high | 7.3 | 7.3 | 2mo ago | A flaw has been found in SourceCodester Online Admission System 1.0. This affects an unknown function of the file /programmes.php. Executing a manipulation of the argument program can lead to sql inj… | |||
| CVE-2026-4624 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was detected in SourceCodester Online Library Management System 1.0. The impacted element is an unknown function of the file /home.php of the component Parameter Handler. Performing a… | |||
| CVE-2026-4623 | high | 7.3 | 7.3 | 2mo ago | A security vulnerability has been detected in DefaultFuction Jeson-Customer-Relationship-Management-System up to 1b4679c4d06b90d31dd521c2b000bfdec5a36e00. This affects an unknown function of the file… | |||
| CVE-2026-4617 | high | 7.3 | 7.3 | 2mo ago | A weakness has been identified in SourceCodester Patients Waiting Area Queue Management System 1.0. The impacted element is the function ValidateToken of the file /php/api_patient_checkin.php of the … | |||
| CVE-2026-4615 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was identified in SourceCodester Online Catering Reservation 1.0. Impacted is an unknown function of the file /search.php. Such manipulation of the argument rcode leads to sql injecti… | |||
| CVE-2026-4613 | high | 7.3 | 7.3 | 2mo ago | A vulnerability was found in SourceCodester E-Commerce Site 1.0. This vulnerability affects unknown code of the file /products.php. The manipulation of the argument Search results in sql injection. T… | |||
| CVE-2026-4612 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in itsourcecode Free Hotel Reservation System 1.0. This affects an unknown part of the file /hotel/admin/mod_users/index.php?view=edit&id=8 of the component Parameter H… | |||
| CVE-2026-4594 | high | 7.3 | 7.3 | 2mo ago | A vulnerability has been found in erupts erupt up to 1.13.3. Affected by this issue is the function geneEruptHqlOrderBy of the file erupt-data/erupt-jpa/src/main/java/xyz/erupt/jpa/dao/EruptJpaUtils.… |