|
3981
|
8.2 |
HIGH
Network
|
-
|
-
|
AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the genre parameter. Attackers c…
|
CWE-89
SQL Injection
|
CVE-2018-25419
|
2026-06-2 01:51 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3982
|
8.2 |
HIGH
Network
|
-
|
-
|
AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers ca…
|
CWE-89
SQL Injection
|
CVE-2018-25420
|
2026-06-2 01:51 |
2026-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3983
|
6.1 |
MEDIUM
Local
|
-
|
-
|
The SocketCAN implementation validates the length of a user-provided buffer containing a socketcan_frame object using only a NET_ASSERT statement in zcan_sendto_ctx() before dereferencing it in socke…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-5071
|
2026-06-2 01:48 |
2026-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3984
|
8.8 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in H3C Magic B0 up to 100R002. The affected element is the function SetMobileAPInfoById of the file /goform/aspForm. Such manipulation of the argument param…
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2026-10259
|
2026-06-2 01:41 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3985
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in CodeAstro Online Job Portal 1.0. The impacted element is an unknown function of the file /admin/jobs-admins/delete-jobs.php. Performing a manipulation of the argument …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10260
|
2026-06-2 01:41 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3986
|
7.3 |
HIGH
Network
|
-
|
-
|
A flaw has been found in CodeAstro Online Job Portal 1.0. This affects an unknown function of the file /users/application_status.php. Executing a manipulation of the argument ID can lead to sql injec…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10261
|
2026-06-2 01:41 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3987
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in code-projects Real State Services 1.0. This impacts an unknown function of the file /loginuser.php of the component Login. The manipulation of the argument Username …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10262
|
2026-06-2 01:41 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3988
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was found in SourceCodester Computer Repair Shop Management System up to 1.0. Affected is an unknown function of the file /admin/products/manage_product.php. The manipulation of the a…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10263
|
2026-06-2 01:41 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3989
|
3.5 |
LOW
Adjacent
|
-
|
-
|
A vulnerability was determined in lharries whatsapp-mcp 0.0.1. Affected by this vulnerability is the function SendMessageRequest of the file whatsapp-bridge/main.go of the component Send API Endpoint…
|
CWE-22
Path Traversal
|
CVE-2026-10264
|
2026-06-2 01:41 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3990
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in itsourcecode Content Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/edit_topic.php. Such manipulation of the argument…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10265
|
2026-06-2 01:41 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
