|
2231
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in itsourcecode Online House Rental System 1.0. This impacts an unknown function of the file /manage_payment.php. The manipulation of the argument ID results in sql injec…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10253
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2232
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in SourceCodester Pet Grooming Management Software 1.0. Affected is an unknown function of the file /admin/. This manipulation causes file and directory information exposure. Th…
|
CWE-200
CWE-538
Information Exposure
File and Directory Information Exposure
|
CVE-2026-10254
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2233
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. Affected by this vulnerability is the function sell_statement of the file application/controllers/ShowForm.ph…
|
CWE-266
CWE-284
Incorrect Privilege Assignment
Improper Access Control
|
CVE-2026-10255
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2234
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in itsourcecode Content Management System 1.0. This vulnerability affects unknown code of the file /save_comment.php. The manipulation of the argument Name leads to sql…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10256
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2235
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in itsourcecode Content Management System 1.0. This issue affects some unknown processing of the file /admin/update_ss_img.php. The manipulation of the argument to…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10257
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2236
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in itsourcecode Content Management System 1.0. Impacted is an unknown function of the file /admin/add_sub_topic.php. This manipulation of the argument topic_id causes s…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-10258
|
2026-06-2 00:15 |
2026-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2237
|
7.5 |
HIGH
Network
|
google
|
chrome
|
Integer overflow in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page…
|
CWE-472
External Control of Assumed-Immutable Web Parameter
|
CVE-2026-10009
|
2026-06-2 00:13 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2238
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: …
|
CWE-20
Improper Input Validation
|
CVE-2026-9969
|
2026-06-2 00:13 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2239
|
8.3 |
HIGH
Network
|
google
|
chrome
|
Use after free in WebGL in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (C…
|
CWE-416
Use After Free
|
CVE-2026-9970
|
2026-06-2 00:12 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2240
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in DOM in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
|
CWE-416
Use After Free
|
CVE-2026-10016
|
2026-06-2 00:11 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
