|
2411
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was determined in KLiK SocialMediaWebsite 1.0. This vulnerability affects the function uniqid of the file upload.inc.php of the component File Handler. This manipulation causes unrest…
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-9421
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2412
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in DTStack Taier 1.4.0. This affects the function Runtime.exec of the component REST API. The manipulation of the argument sqlText leads to os command injection. The at…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9437
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2413
|
5.4 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This impacts an unknown function of the file courseDel.php. The manipulation of the arg…
|
CWE-99
Resource Injection
|
CVE-2026-9438
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2414
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in code-projects Employee Management System 1.0. This affects an unknown function of the file /applyleave.php. Executing a manipulation of the argument ID can lead to c…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-9448
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2415
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in code-projects Employee Management System 1.0. This impacts an unknown function of the file /changepassemp.php. The manipulation leads to sql injection. It is possibl…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9449
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2416
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in code-projects Employee Management System 1.0. Affected is an unknown function of the file /psubmit.php. The manipulation of the argument pid results in sql inje…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9450
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2417
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in code-projects Employee Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /process/applyleaveprocess.php. This manipulatio…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9451
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2418
|
7.3 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in FoundDream miniclawd up to 2d65665046e2222eeea76cafc8570ed546a8c125. Affected by this issue is the function ExecTool.execute of the file /src/tools/exec.…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9452
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2419
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in FoundDream miniclawd up to 2d65665046e2222eeea76cafc8570ed546a8c125. This affects the function which of the file /src/application/skills-loader.ts of the component Ski…
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-9453
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2420
|
8.8 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in Edimax EW-7438RPn 1.31. Affected by this vulnerability is the function formWpsProxyEnable of the file /goform/formWpsProxyEnable. The manipulation of the argument subm…
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2026-9462
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
