|
1861
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in Sushmi-pal Invoice-System up to a0a3faa16dee2621b231ae227333f5761607283b. This vulnerability affects unknown code of the file /profile of the component Profile Workf…
|
CWE-266
CWE-285
Incorrect Privilege Assignment
Improper Authorization
|
CVE-2026-9410
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1862
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in code-projects Employee Management System 1.0. This affects an unknown function of the file /eloginwel.php. This manipulation of the argument ID causes cross site scr…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-9415
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1863
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in code-projects Employee Management System 1.0. Affected is an unknown function of the file /myprofileup.php. Performing a manipulation of the argument ID results in cro…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-9417
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1864
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in code-projects Employee Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /changepassemp.php. Executing a manipulation of the argum…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-9418
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1865
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in code-projects Employee Management System 1.0. Affected by this issue is some unknown functionality of the file /empproject.php. The manipulation of the argument ID l…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-9419
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1866
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in KLiK SocialMediaWebsite 1.0. This affects an unknown part of the component HTTP GET Request Parameter Handler. The manipulation results in injection. It is possible to la…
|
CWE-74
CWE-707
Injection
Improper Enforcement of Message or Data Structure
|
CVE-2026-9420
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1867
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was determined in KLiK SocialMediaWebsite 1.0. This vulnerability affects the function uniqid of the file upload.inc.php of the component File Handler. This manipulation causes unrest…
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-9421
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1868
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in DTStack Taier 1.4.0. This affects the function Runtime.exec of the component REST API. The manipulation of the argument sqlText leads to os command injection. The at…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9437
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1869
|
5.4 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This impacts an unknown function of the file courseDel.php. The manipulation of the arg…
|
CWE-99
Resource Injection
|
CVE-2026-9438
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1870
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in code-projects Employee Management System 1.0. This affects an unknown function of the file /applyleave.php. Executing a manipulation of the argument ID can lead to c…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-9448
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
