|
1311
|
7.3 |
HIGH
Network
|
-
|
-
|
A flaw has been found in code-projects Student Membership System 1.0. This issue affects some unknown processing of the component User Registration Handler. Executing a manipulation can lead to sql i…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5195
|
2026-04-25 03:11 |
2026-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1312
|
7.3 |
HIGH
Network
|
-
|
-
|
Se ha encontrado una vulnerabilidad en el Sistema de Membresía Estudiantil 1.0 de code-projects. Este problema afecta a algún procesamiento desconocido del componente Gestor de Registro de Usuario. L…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5195
|
2026-04-25 03:11 |
2026-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1313
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in code-projects Student Membership System 1.0. Impacted is an unknown function of the file /delete_member.php. The manipulation of the argument ID leads to sql injecti…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5196
|
2026-04-25 03:11 |
2026-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1314
|
6.3 |
MEDIUM
Network
|
-
|
-
|
Se ha encontrado una vulnerabilidad en code-projects Student Membership System 1.0. Afectada es una función desconocida del archivo /delete_member.php. La manipulación del argumento ID conduce a inye…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5196
|
2026-04-25 03:11 |
2026-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1315
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in code-projects Student Membership System 1.0. The affected element is an unknown function of the file /delete_user.php. The manipulation of the argument ID results in sql …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5197
|
2026-04-25 03:11 |
2026-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1316
|
6.3 |
MEDIUM
Network
|
-
|
-
|
Una vulnerabilidad fue encontrada en code-projects Student Membership System 1.0. El elemento afectado es una función desconocida del archivo /delete_user.php. La manipulación del argumento ID result…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5197
|
2026-04-25 03:11 |
2026-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1317
|
4.3 |
MEDIUM
Network
|
-
|
-
|
The User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to, and including,…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-3139
|
2026-04-25 03:11 |
2026-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1318
|
5.4 |
MEDIUM
Network
|
-
|
-
|
The Minify HTML plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.12. This is due to missing or incorrect nonce validation on the 'minify_html…
|
CWE-352
Origin Validation Error
|
CVE-2026-3191
|
2026-04-25 03:11 |
2026-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1319
|
7.2 |
HIGH
Network
|
-
|
-
|
The Query Monitor – The developer tools panel for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘$_SERVER['REQUEST_URI']’ parameter in all versions up to, and…
|
CWE-79
Cross-site Scripting
|
CVE-2026-4267
|
2026-04-25 03:11 |
2026-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1320
|
7.5 |
HIGH
Network
|
apache
|
log4j
|
Apache Log4j Core's Rfc5424Layout https://logging.apache.org/log4j/2.x/manual/layouts.html#RFC5424Layout , in versions 2.21.0 through 2.25.3, is vulnerable to log injection via CRLF sequences due to…
|
CWE-117
CWE-684
Improper Output Neutralization for Logs
Incorrect Provision of Specified Functionality
|
CVE-2026-34478
|
2026-04-25 03:10 |
2026-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
