|
241
|
7.3 |
HIGH
Network
|
-
|
-
|
A flaw has been found in itsourcecode Construction Management System 1.0. This affects an unknown part of the file /execute.php. This manipulation of the argument code causes sql injection. The attac…
Update
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7073
|
2026-04-29 10:00 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
242
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in itsourcecode Construction Management System 1.0. This vulnerability affects unknown code of the file /execute1.php. Such manipulation of the argument code leads to s…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7074
|
2026-04-29 10:00 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
243
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was found in itsourcecode Construction Management System 1.0. This issue affects some unknown processing of the file /locations.php. Performing a manipulation of the argument address …
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7075
|
2026-04-29 10:00 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
244
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was determined in itsourcecode Courier Management System 1.0. Impacted is an unknown function of the file /edit_branch.php. Executing a manipulation of the argument ID can lead to sql…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7076
|
2026-04-29 10:00 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245
|
7.3 |
HIGH
Network
|
-
|
-
|
A vulnerability was identified in itsourcecode Courier Management System 1.0. The affected element is an unknown function of the file /edit_parcel.php. The manipulation of the argument ID leads to sq…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7077
|
2026-04-29 10:00 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246
|
4.7 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in likeadmin-likeshop likeadmin_php up to 1.9.6. Affected by this issue is the function queryResult of the file server\app\adminapi\lists\tools\DataTableLists.php of th…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7083
|
2026-04-29 10:00 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247
|
7.3 |
HIGH
Network
|
-
|
-
|
A security flaw has been discovered in SourceCodester Pharmacy Sales and Inventory System 1.0. Impacted is an unknown function of the file /ajax.php?action=save_sales. Performing a manipulation of th…
New
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-7087
|
2026-04-29 10:00 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in HBAI-Ltd Toonflow-app up to 1.1.1. This affects the function fetch of the file src/routes/setting/vendorConfig/getCodeByLink.ts of the component getCodeByLink Endpoint. T…
New
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2026-7084
|
2026-04-29 10:00 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249
|
5.0 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in HBAI-Ltd Toonflow-app up to 1.1.1. This vulnerability affects the function z.url of the file src/routes/setting/about/downloadApp.ts of the component downloadApp End…
New
|
CWE-22
Path Traversal
|
CVE-2026-7085
|
2026-04-29 10:00 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250
|
4.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in HBAI-Ltd Toonflow-app up to 1.1.1. This issue affects the function updateStoryboardUrl of the file replaceUrl.ts of the component Storyboard Export. Such manipulatio…
New
|
CWE-22
Path Traversal
|
CVE-2026-7086
|
2026-04-29 10:00 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
