|
401
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in CodeAstro Leave Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/search_staff_for_updation.php. Such manipulation of th…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-11509
|
2026-06-8 23:57 |
2026-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
402
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in CodeAstro Leave Management System 1.0. This affects an unknown part of the file /admin/add_leave.php. Performing a manipulation of the argument type_of_leave re…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-11510
|
2026-06-8 23:57 |
2026-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
403
|
6.4 |
MEDIUM
Network
|
-
|
-
|
The Recipe Card Blocks Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the recipe block's 'summary' and 'notes' attributes in all versions up to, and including, 3.4.13. Thi…
New
|
CWE-79
Cross-site Scripting
|
CVE-2026-3011
|
2026-06-8 23:57 |
2026-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
404
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in itsourcecode Hospital Management System 1.0. This issue affects some unknown processing of the file /billing.php. The manipulation of the argument patien…
New
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-11512
|
2026-06-8 23:57 |
2026-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
405
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /adminaccount.php. The manipulation of the argument Date results in sql inject…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-11513
|
2026-06-8 23:57 |
2026-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
406
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in itsourcecode Hospital Management System 1.0. The affected element is an unknown function of the file /addpatient.php. This manipulation of the argument admissiontme causes sq…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-11514
|
2026-06-8 23:57 |
2026-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
407
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in SourceCodester Barangay Resident Profiling and Information Management System 1.0. The impacted element is an unknown function of the file passsword_reset.php of the …
New
|
CWE-255
CWE-259
Credentials Management
Use of Hard-coded Password
|
CVE-2026-11515
|
2026-06-8 23:57 |
2026-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
408
|
9.6 |
CRITICAL
Network
|
google
|
chrome
|
Object lifecycle issue in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
New
|
CWE-416
Use After Free
|
CVE-2026-11152
|
2026-06-8 23:56 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
409
|
9.1 |
CRITICAL
Network
|
google
|
chrome
|
Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
New
|
CWE-1300
Improper Protection of Physical Side Channels
|
CVE-2026-11153
|
2026-06-8 23:56 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
410
|
7.5 |
HIGH
Network
|
google
|
chrome
|
Use after free in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chr…
New
|
CWE-416
Use After Free
|
CVE-2026-11154
|
2026-06-8 23:55 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
