|
4481
|
7.3 |
HIGH
Network
|
-
|
-
|
A weakness has been identified in code-projects Simple Laundry System 1.0. Affected by this vulnerability is an unknown functionality of the file /searchguest.php of the component Parameter Handler. …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5564
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4482
|
7.3 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in code-projects Simple Laundry System 1.0. Affected by this issue is some unknown functionality of the file /delmemberinfo.php of the component Parameter H…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5565
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4483
|
8.8 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in UTT HiPER 1250GW up to 3.2.7-210907-180535. This affects the function strcpy of the file /goform/formNatStaticMap. Performing a manipulation of the argument NatBind re…
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-5566
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4484
|
3.5 |
LOW
Network
|
-
|
-
|
A vulnerability has been found in Akaunting up to 3.1.21. This issue affects some unknown processing of the component Invoice/Billing. The manipulation of the argument notes leads to cross site scrip…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-5568
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4485
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in SourceCodester/jkev Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file index.php of the component Login. The manipula…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5575
|
2026-04-25 03:14 |
2026-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4486
|
4.7 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in SourceCodester/jkev Record Management System 1.0. Affected by this issue is some unknown functionality of the file save_emp.php of the component Add Employee Page. This manip…
|
CWE-284
CWE-434
Improper Access Control
Unrestricted Upload of File with Dangerous Type
|
CVE-2026-5576
|
2026-04-25 03:14 |
2026-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4487
|
8.1 |
HIGH
Network
|
rwsdk
|
redwoodsdk
|
RedwoodSDK is a server-first React framework. From 1.0.0-beta.50 to 1.0.5, erver functions exported from "use server" files could be invoked via GET requests, bypassing their intended HTTP method. In…
|
CWE-352
Origin Validation Error
|
CVE-2026-39371
|
2026-04-25 03:14 |
2026-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4488
|
3.5 |
LOW
Network
|
-
|
-
|
A vulnerability was identified in krayin laravel-crm up to 2.2. Impacted is the function composeMail of the file packages/Webkul/Admin/tests/e2e-pw/tests/mail/inbox.spec.ts of the component Activitie…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-5370
|
2026-04-25 03:13 |
2026-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4489
|
3.7 |
LOW
Network
|
-
|
-
|
A vulnerability was identified in Newgen OmniDocs up to 12.0.00. Affected by this vulnerability is an unknown functionality of the file /omnidocs/GetWebApiConfiguration. The manipulation of the argum…
|
CWE-200
CWE-284
Information Exposure
Improper Access Control
|
CVE-2026-5413
|
2026-04-25 03:13 |
2026-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4490
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in Newgen OmniDocs up to 12.0.00. Affected by this issue is some unknown functionality of the file /omnidocs/WebApiRequestRedirection. The manipulation of the argu…
|
CWE-99
Resource Injection
|
CVE-2026-5414
|
2026-04-25 03:13 |
2026-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
