Export limit exceeded: 18393 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (18393 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-2189 | 1 Itsourcecode | 1 School Management System | 2026-02-23 | 7.3 High |
| A vulnerability was identified in itsourcecode School Management System 1.0. This affects an unknown function of the file /ramonsys/report/index.php. The manipulation of the argument ay leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and might be used. | ||||
| CVE-2026-2179 | 1 Phpgurukul | 1 Hospital Management System | 2026-02-23 | 4.7 Medium |
| A vulnerability was determined in PHPGurukul Hospital Management System 4.0. This impacts an unknown function of the file /admin/manage-users.php. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized. | ||||
| CVE-2026-2176 | 2 Code-projects, Fabian | 2 Contact Management System, Contact Management System | 2026-02-23 | 6.3 Medium |
| A security vulnerability has been detected in code-projects Contact Management System 1.0. This issue affects some unknown processing of the file index.py. Such manipulation of the argument selecteditem[0] leads to sql injection. The attack can be executed remotely. | ||||
| CVE-2026-2173 | 2 Code-projects, Fabian | 2 Online Examination System, Online Examination System | 2026-02-23 | 7.3 High |
| A vulnerability was identified in code-projects Online Examination System 1.0. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack may be initiated remotely. | ||||
| CVE-2026-2172 | 2 Code-projects, Fabian | 2 Online Application System For Admission, Online Application System For Admission | 2026-02-23 | 7.3 High |
| A vulnerability was determined in code-projects Online Application System for Admission 1.0. Affected by this vulnerability is an unknown functionality of the file enrollment/index.php of the component Login Endpoint. Executing a manipulation can lead to sql injection. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized. | ||||
| CVE-2026-2166 | 2 Code-projects, Fabian | 2 Online Reviewer System, Online Reviewer System | 2026-02-23 | 7.3 High |
| A security vulnerability has been detected in code-projects Online Reviewer System 1.0. The affected element is an unknown function of the file /login/index.php of the component Login. The manipulation of the argument username/password leads to sql injection. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used. | ||||
| CVE-2026-2162 | 2 Clive 21, Itsourcecode | 2 News Portal Project, News Portal Project | 2026-02-23 | 4.7 Medium |
| A vulnerability was determined in itsourcecode News Portal Project 1.0. This affects an unknown part of the file /admin/aboutus.php. This manipulation of the argument pagetitle causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. | ||||
| CVE-2026-2161 | 2 Clive 21, Itsourcecode | 2 Directory Management System, Directory Management System | 2026-02-23 | 7.3 High |
| A vulnerability was found in itsourcecode Directory Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/forget-password.php. The manipulation of the argument email results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used. | ||||
| CVE-2026-2158 | 2 Carmelo, Code-projects | 2 Student Web Portal, Student Web Portal | 2026-02-23 | 7.3 High |
| A vulnerability was detected in code-projects Student Web Portal 1.0. This impacts an unknown function of the file /check_user.php. Performing a manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely. | ||||
| CVE-2026-2136 | 1 Projectworlds | 1 Online Food Ordering System | 2026-02-23 | 7.3 High |
| A flaw has been found in projectworlds Online Food Ordering System 1.0. This affects an unknown function of the file /view-ticket.php. Executing a manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may be used. | ||||
| CVE-2026-2134 | 1 Phpgurukul | 1 Hospital Management System | 2026-02-23 | 4.7 Medium |
| A security vulnerability has been detected in PHPGurukul Hospital Management System 4.0. The affected element is an unknown function of the file /hms/admin/manage-doctors.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed publicly and may be used. | ||||
| CVE-2026-2132 | 2 Code-projects, Fabian | 2 Online Music Site, Online Music Site | 2026-02-23 | 7.3 High |
| A security flaw has been discovered in code-projects Online Music Site 1.0. This issue affects some unknown processing of the file /Administrator/PHP/AdminUpdateCategory.php. The manipulation of the argument txtcat results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks. | ||||
| CVE-2026-2117 | 2 Angeljudesuarez, Itsourcecode | 2 Society Management System, Society Management System | 2026-02-23 | 7.3 High |
| A vulnerability was found in itsourcecode Society Management System 1.0. The affected element is an unknown function of the file /admin/edit_activity.php. Performing a manipulation of the argument activity_id results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used. | ||||
| CVE-2026-2116 | 2 Angeljudesuarez, Itsourcecode | 2 Society Management System, Society Management System | 2026-02-23 | 7.3 High |
| A vulnerability has been found in itsourcecode Society Management System 1.0. Impacted is an unknown function of the file /admin/edit_expenses.php. Such manipulation of the argument expenses_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. | ||||
| CVE-2026-2115 | 2 Angeljudesuarez, Itsourcecode | 2 Society Management System, Society Management System | 2026-02-23 | 7.3 High |
| A flaw has been found in itsourcecode Society Management System 1.0. This issue affects some unknown processing of the file /admin/delete_expenses.php. This manipulation of the argument expenses_id causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. | ||||
| CVE-2026-2114 | 2 Angeljudesuarez, Itsourcecode | 2 Society Management System, Society Management System | 2026-02-23 | 7.3 High |
| A vulnerability was detected in itsourcecode Society Management System 1.0. This vulnerability affects unknown code of the file /admin/edit_admin.php. The manipulation of the argument admin_id results in sql injection. The attack may be performed from remote. The exploit is now public and may be used. | ||||
| CVE-2026-2090 | 2 Janobe, Sourcecodester | 2 Online Class Record System, Online Class Record System | 2026-02-23 | 7.3 High |
| A vulnerability was determined in SourceCodester Online Class Record System 1.0. This issue affects some unknown processing of the file /admin/message/search.php. Executing a manipulation of the argument term can lead to sql injection. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized. | ||||
| CVE-2026-2089 | 2 Janobe, Sourcecodester | 2 Online Class Record System, Online Class Record System | 2026-02-23 | 7.3 High |
| A vulnerability was found in SourceCodester Online Class Record System 1.0. This vulnerability affects unknown code of the file /admin/subject/controller.php. Performing a manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possible. The exploit has been made public and could be used. | ||||
| CVE-2026-2088 | 1 Phpgurukul | 1 Beauty Parlour Management System | 2026-02-23 | 7.3 High |
| A vulnerability has been found in PHPGurukul Beauty Parlour Management System 1.1. This affects an unknown part of the file /admin/accepted-appointment.php. Such manipulation of the argument delid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. | ||||
| CVE-2026-2087 | 2 Janobe, Sourcecodester | 2 Online Class Record System, Online Class Record System | 2026-02-23 | 7.3 High |
| A flaw has been found in SourceCodester Online Class Record System 1.0. Affected by this issue is some unknown functionality of the file /admin/login.php. This manipulation of the argument user_email causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used. | ||||