|
1421
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A weakness has been identified in PHPGurukul Online Shopping Portal Project 2.1. This issue affects some unknown processing of the file /sub-category.php of the component Parameter Handler. This mani…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5552
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1422
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was identified in itsourcecode Online Cellphone System 1.0. Affected by this vulnerability is an unknown functionality of the file /cp/available.php of the component Parameter Handler…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5553
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1423
|
7.3 |
HIGH
Network
|
-
|
-
|
A security flaw has been discovered in code-projects Concert Ticket Reservation System 1.0. Affected by this issue is some unknown functionality of the file /ConcertTicketReservationSystem-master/pro…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5554
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1424
|
7.3 |
HIGH
Network
|
-
|
-
|
A weakness has been identified in code-projects Concert Ticket Reservation System 1.0. This affects an unknown part of the file /ConcertTicketReservationSystem-master/login.php of the component Param…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5555
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1425
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security vulnerability has been detected in badlogic pi-mono up to 0.58.4. This vulnerability affects the function discoverAndLoadExtensions of the file packages/coding-agent/src/core/extensions/lo…
|
CWE-74
CWE-94
Injection
Code Injection
|
CVE-2026-5556
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1426
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in badlogic pi-mono up to 0.58.4. This issue affects some unknown processing of the file packages/mom/src/slack.ts of the component pi-mom Slack Bot. The manipulation res…
|
CWE-287
CWE-288
Improper Authentication
Authentication Bypass Using an Alternate Path or Channel
|
CVE-2026-5557
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1427
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in PHPGurukul PHPGurukul Online Shopping Portal Project up to 2.1. Impacted is an unknown function of the file /pending-orders.php of the component Parameter Handler. This manip…
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5558
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1428
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability has been found in AntaresMugisho PyBlade 0.1.8-alpha/0.1.9-alpha. The affected element is the function _is_safe_ast of the file sandbox.py of the component AST Validation. Such manipu…
|
CWE-791
CWE-1336
Incomplete Filtering of Special Elements
Improper Neutralization of Special Elements Used in a Template Engine
|
CVE-2026-5559
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1429
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1. The impacted element is an unknown function of the file /payment-method.php of the component Parameter Handler. Performing …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-5560
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1430
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was determined in Campcodes Complete POS Management and Inventory System up to 4.0.6. This affects an unknown function of the file app/Http/Controllers/SettingsController.php of the c…
|
CWE-74
CWE-707
Injection
Improper Enforcement of Message or Data Structure
|
CVE-2026-5561
|
2026-04-25 03:14 |
2026-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
