|
4151
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in code-projects Simple Chat System 1.0. This vulnerability affects unknown code of the file sendMessage.php. The manipulation of the argument type/length/business parame…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8125
|
2026-05-9 00:45 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4152
|
7.3 |
HIGH
Network
|
-
|
-
|
A weakness has been identified in CodeAstro Leave Management System 1.0. Affected is an unknown function of the file /login.php. This manipulation of the argument txt_username causes sql injection. T…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8132
|
2026-05-9 00:45 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4153
|
8.8 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in Totolink X5000R 9.1.0u.6369_B20230113. This vulnerability affects the function sub_458E40 of the file /boafrm/formDdns. The manipulation of the argument submit-url l…
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-8137
|
2026-05-9 00:45 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4154
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in SourceCodester Pizzafy Ecommerce System 1.0. This issue affects some unknown processing of the file /admin/index.php. Such manipulation of the argument p…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8117
|
2026-05-9 00:41 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4155
|
7.3 |
HIGH
Network
|
-
|
-
|
A flaw has been found in SourceCodester Comment System 1.0. This issue affects some unknown processing of the file post_comment.php. This manipulation of the argument Name causes sql injection. Remot…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8126
|
2026-05-9 00:41 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4156
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was found in SourceCodester SUP Online Shopping 1.0. The affected element is an unknown function of the file /admin/viewmsg.php. Performing a manipulation of the argument msgid result…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8128
|
2026-05-9 00:41 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4157
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was determined in SourceCodester SUP Online Shopping 1.0. The impacted element is an unknown function of the file wishlist.php. Executing a manipulation of the argument delwlistid can…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8129
|
2026-05-9 00:41 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4158
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was identified in SourceCodester SUP Online Shopping 1.0. This affects an unknown function of the file /admin/message.php. The manipulation of the argument seenid leads to sql injecti…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8130
|
2026-05-9 00:41 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4159
|
7.3 |
HIGH
Network
|
-
|
-
|
A security flaw has been discovered in SourceCodester SUP Online Shopping 1.0. This impacts an unknown function of the file /admin/replymsg.php. The manipulation of the argument msgid results in sql …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8131
|
2026-05-9 00:41 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4160
|
2.4 |
LOW
Network
|
-
|
-
|
A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects an unknown part of the file /index.php?page=users. Executing a manipulation of the argument Name can lead…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-8136
|
2026-05-9 00:41 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
