|
3391
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in code-projects Employee Management System 1.0. This impacts an unknown function of the file /changepassemp.php. The manipulation leads to sql injection. It is possibl…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9449
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3392
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in code-projects Employee Management System 1.0. Affected is an unknown function of the file /psubmit.php. The manipulation of the argument pid results in sql inje…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9450
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3393
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in code-projects Employee Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /process/applyleaveprocess.php. This manipulatio…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9451
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3394
|
7.3 |
HIGH
Network
|
-
|
-
|
A security vulnerability has been detected in FoundDream miniclawd up to 2d65665046e2222eeea76cafc8570ed546a8c125. Affected by this issue is the function ExecTool.execute of the file /src/tools/exec.…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-9452
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3395
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in FoundDream miniclawd up to 2d65665046e2222eeea76cafc8570ed546a8c125. This affects the function which of the file /src/application/skills-loader.ts of the component Ski…
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-9453
|
2026-05-27 04:54 |
2026-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3396
|
8.8 |
HIGH
Network
|
-
|
-
|
A vulnerability was detected in Edimax EW-7438RPn 1.31. Affected by this vulnerability is the function formWpsProxyEnable of the file /goform/formWpsProxyEnable. The manipulation of the argument subm…
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2026-9462
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3397
|
8.8 |
HIGH
Network
|
-
|
-
|
A flaw has been found in Edimax EW-7438RPn 1.31. Affected by this issue is the function formLicence of the file /goform/formLicence. This manipulation of the argument submit-url causes stack-based bu…
|
CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
|
CVE-2026-9463
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3398
|
4.7 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in YunaiV yudao-cloud 2026.03. This affects the function IotDataSinkHttpConfig of the file /admin-api/iot/data-sink/create of the component Admin API Endpoint. Such man…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-9464
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3399
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was found in Tiandy Easy7 Integrated Management Platform 7.17.0. This vulnerability affects unknown code of the file /Easy7/apps/WebService/GetDBDataEx.jsp. Performing a manipulation …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-9465
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3400
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in Tiandy Easy7 Integrated Management Platform 7.17.0. This issue affects some unknown processing of the file /rest/user/updateUserPassword of the component API Endpoin…
|
CWE-640
Weak Password Recovery Mechanism for Forgotten Password
|
CVE-2026-9466
|
2026-05-27 04:54 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
