|
3711
|
7.3 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in itsourcecode Online Enrollment System 1.0. This vulnerability affects unknown code of the file /sms/grades/index.php?view=edit&id=1 of the component Para…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-4842
|
2026-04-25 01:35 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3712
|
7.3 |
HIGH
Network
|
-
|
-
|
Una vulnerabilidad de seguridad ha sido detectada en itsourcecode Online Enrollment System 1.0. Esta vulnerabilidad afecta código desconocido del archivo /sms/grades/index.php?view=edit&id=1 del …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-4842
|
2026-04-25 01:35 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3713
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in code-projects Online Food Ordering System 1.0. This issue affects some unknown processing of the file /admin.php of the component Admin Login Module. The manipulation …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-4844
|
2026-04-25 01:35 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3714
|
7.3 |
HIGH
Network
|
-
|
-
|
Una vulnerabilidad fue detectada en code-projects Online Food Ordering System 1.0. Este problema afecta algún procesamiento desconocido del archivo /admin.php del componente Módulo de Inicio de Sesió…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-4844
|
2026-04-25 01:35 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3715
|
4.3 |
MEDIUM
Network
|
-
|
-
|
The Elementor Website Builder plugin for WordPress is vulnerable to Incorrect Authorization to Sensitive Information Exposure in all versions up to, and including, 3.35.7. This is due to a logic erro…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-1206
|
2026-04-25 01:35 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3716
|
4.3 |
MEDIUM
Network
|
-
|
-
|
El plugin Elementor Website Builder para WordPress es vulnerable a una Autorización Incorrecta que conduce a la Exposición de Información Sensible en todas las versiones hasta la 3.35.7, inclusive. E…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-1206
|
2026-04-25 01:35 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3717
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in dameng100 muucmf 1.9.5.20260309. Impacted is an unknown function of the file /admin/Member/index.html. This manipulation of the argument Search causes cross site scripting. I…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-4845
|
2026-04-25 01:35 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3718
|
4.3 |
MEDIUM
Network
|
-
|
-
|
Se ha encontrado un fallo en dameng100 muucmf 1.9.5.20260309. Afecta a una función desconocida del archivo /admin/Member/index.html. Esta manipulación del argumento Search causa cross-site scripting.…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-4845
|
2026-04-25 01:35 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3719
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in dameng100 muucmf 1.9.5.20260309. The affected element is an unknown function of the file channel/admin.Account/autoReply.html. Such manipulation of the argument keyw…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-4846
|
2026-04-25 01:35 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3720
|
4.3 |
MEDIUM
Network
|
-
|
-
|
Se ha encontrado una vulnerabilidad en dameng100 muucmf 1.9.5.20260309. El elemento afectado es una función desconocida del archivo channel/admin.Account/autoReply.html. Dicha manipulación del argume…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-4846
|
2026-04-25 01:35 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
