|
3891
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was found in itsourcecode Electronic Judging System 1.0. This vulnerability affects unknown code of the file /admin/edit_team.php. The manipulation of the argument num_id results in s…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9526
|
2026-05-26 14:16 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3892
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in itsourcecode Electronic Judging System 1.0. This affects an unknown part of the file /admin/edit_judge.php. The manipulation of the argument judge_id leads to sql in…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9525
|
2026-05-26 13:16 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3893
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in xianrendzw EasyReport up to 2.0.17.0522_Beta. Affected by this issue is the function execute of the component REST Endpoint. Executing a manipulation of the argument reportPa…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9524
|
2026-05-26 13:16 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3894
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 3000WEBV2. Affected by this vulnerability is an unknown functionality of the file /Subs…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9523
|
2026-05-26 13:16 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3895
|
7.3 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in fraillt bitsery up to 5.2.4. Affected is the function loadFromSharedState in the library include/bitsery/ext/std_smart_ptr.h. Such manipulation leads to …
|
CWE-20
CWE-1287
Improper Input Validation
Improper Validation of Specified Type of Input
|
CVE-2026-9521
|
2026-05-26 11:16 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3896
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in blitz-js blitz up to 3.0.2 on GitHub. This impacts an unknown function of the file packages/generator/templates/app/src/app/auth/components/LoginForm.tsx of the comp…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-9520
|
2026-05-26 11:16 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3897
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in stonith404 pingvin-share up to 1.13.0. This affects the function getServerSideProps of the file frontend/src/pages/auth/signIn.tsx of the component Sign-in Auto…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-9519
|
2026-05-26 11:16 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3898
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in hemant6488 CodeIgniter-StudentManagementSystem. The impacted element is the function addStudent of the file view_students.php of the component Students Controller. T…
|
CWE-79
CWE-94
Cross-site Scripting
Code Injection
|
CVE-2026-9518
|
2026-05-26 11:16 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3899
|
6.5 |
MEDIUM
Adjacent
|
-
|
-
|
A missing authorization vulnerability in Zyxel GS1200-5v3 firmware versions through 1.00(ACPS.2)C0, GS1200-8v3 firmware versions through 1.00(ACPT.2)C0, GS1200-5HPv3 firmware versions through 1.00(A…
|
CWE-862
Missing Authorization
|
CVE-2026-4795
|
2026-05-26 11:16 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3900
|
- |
|
-
|
-
|
The GDPR cookies module for Backdrop CMS (before
1.x-1.3.5) doesn't sufficiently protect visitors from Cross Site Scripting (XSS) if a malicious value has been provided for the optional 'Info conte…
|
CWE-80
Basic XSS
|
CVE-2025-71310
|
2026-05-26 11:16 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
